We conducted an interview with Sahil Malvi, who recently secured an entry-level position as a SOC Analyst. Here are the details:
This is Sahil Malvi, an EXTC engineer from India, Mumbai, a dedicated learner of cybersecurity.
Cybersecurity didn't just happen to be my choice - it found me in the second year of my engineering degree. I initially leaned toward data analytics as I navigated through different areas to specialize in. However, I was faced with a recurring challenge: the need to constantly revisit and reinforce what I was learning. I didn't discover my true passion until I embarked on my first cybersecurity challenge, a brute force attack on September 27, 2021. It was this first challenge that opened my eyes to the fascinating world of cybersecurity. I was drawn to hash types and tools like John the Ripper, Hashcat, and Hydra. From that moment on, there was no turning back - cybersecurity was my calling, and I was eagerly embarking on the journey.
Eventually, it became normal for me to balance my college obligations during the day and dedicate my evenings to practice and study. Concentrated study sessions, sometimes lasting from midnight to 3:00 in the morning, were especially beneficial on Friday and Saturday nights. During my senior year, I remember deciding to prioritize my education over a college trip. It wasn't easy, but my sincere desire to understand digital forensics incident response motivated me. My goal has always been to become an expert in every aspect of computer forensics. I have enthusiastically embraced every opportunity to learn more, even if it means missing out on social gatherings.
Interviews were usually manageable not too difficult. However, getting a job in the digital forensics field as a fresh graduate in India has been a major challenge. During the interviews, a common focus was on port numbers and situational questions. Thanks to my hands-on experience with LetsDefend, I found it easier to tackle these questions. The practical experience I gained through the platform allowed me to navigate through hypothetical scenarios with confidence. It showed my preparedness and understanding of the subject matter.
During the technical interview process, LetsDefend was my go-to manual as I had already completed most of the courses and I used to read it before the round to review everything that I had learned. The hands-on labs were fantastic, and I especially enjoyed the challenges that involved the use of the PDF analyzer, the memory analysis, and the Windows Forensics. Completing these challenges on my own, without the aid of any written material or videos, boosted my confidence and helped me to answer any questions that arose.
I can not say that I really did. In India, you can only evaluate if you are experienced.
It is important to have a clear understanding of all areas of security, not only Red Team and VAPT. The field of cybersecurity is vast. It can be overwhelming to understand where to start, what to learn, and which aspects are important. This is why a deep understanding is especially important for Blue Teams whose roles extend beyond Red Team activities.
You can follow the Sahil Malvi on LinkedIn