HELPDESK PRACTICAL QUESTIONS

Taasisi ya serikali inataka kuboresha huduma zake za TEHAMA kwa kutumia Cloud Computing.

Kama mtaalamu wa Help Desk, eleza na chora mchoro wa usanifu (architecture) wa mfumo wa Cloud-Based Management System utakavyofanya kazi kwenye taasisi hiyo.

Ufafanuzi wako uonyeshe:

1. Sehemu kuu za mfumo (Clients, Cloud Services, Database, Network).

2. Namna Help Desk Team itakavyosaidia kudhibiti na kusimamia watumiaji.

3. Faida za kutumia Cloud Architecture kwenye taasisi.

Ticket Handling Scenario

Swali 1:

Mfanyakazi mmoja wa idara ya fedha ametuma maombi kupitia mfumo wa Help Desk Portal akisema hawezi kuingia kwenye akaunti yake ya e-GA Mail.

Eleza hatua utakazochukua kuanzia ticket inavyopokelewa hadi kufungwa.

Ticket Escalation Scenario

Swali 2:

Tume ya taasisi inaripoti kuwa mfumo wa Online Payment Portal hauwazii kufanya malipo kwa zaidi ya saa 1. Umegundua tatizo linahusisha database connection timeout.

Eleza hatua za escalation utakazofanya.

Problem-Solving Scenario (General Understanding)

Swali 3:

Unapogundua kompyuta ya mtumiaji inarestart mara kwa mara, bila error ya wazi, eleza hatua unazochukua kufahamu tatizo hilo kabla ya kuwasiliana na technical team.

Knowledge of Severity Levels

Swali 4:

Orodhesha aina 4 za severity levels zinazoweza kuwepo kwenye mfumo wa Help Desk na toa mfano wa kila moja.

Knowledge Base (KB) Scenario

Swali 6:

Baada ya kutatua tatizo la mfumo wa Payroll Portal kushindwa ku-validate data za watumishi, unashauriwa kuandika taarifa kwenye Knowledge Base (KB) ya taasisi.

Eleza umuhimu wa taarifa hiyo na mfano wa jinsi unavyoiandika kwenye mfumo.

_________________________________________________________________

FOR ANY ENQUIRIES

👇

WhatsApp: +255 692 127 931

___________________________________________________________________________________

                                                                ***ALL THE BEST*** 

NB: "ANYTHING CAN HAPPEN"

Read More

PROGRAMMING PRACTICAL QUESTIONS

 

PROGRAMMING PRACTICAL QUESTION       

As an application developer, you are assigned by the Public Service Recruitment Secretariat to develop a simplified system that manages job listings, applications, and application evaluations. Your system should simulate the core features involved in connecting candidates with job opportunities

 

PART 1. Authorization and Authentication

 

You are required to implement a secure authentication and authorization service for a web application. The system should support user registration, secure login, role-based access control, session management. Additionally, APIs exposed to third-party services must be secured using API key authentication.

 

Functional Requirements:

 

a)     User Registration & Login

 

•        Implement a secure registration endpoint that stores user credentials using password hashing (e.g., borypt)

 

•        Provide a login endpoint that returns a session token or JWT on successful authentication

 

b)    Password Reset Functionality

 

c)     Role-Based Access Control (RBAC)

 

•        Users can have roles such as admin, editor, and viewer

 

•        Access to specific routes or resources must be restricted based on user roles

 

d)    Session Management

 

•        Store session tokens securely.

 

•        Implement session expiration and logout functionality.

 

e)      API Key Authentication

 

 

PART 2: Job Recruitment System

 

Requirements:

 

Implement a program (in any language of your choice) with the following functionalities:

 

I.          Job Listings Management

 

•        Add jobs with details such as title, department, location, ang salary

 

•        View all active job postings.

 

II.          Candidate Application Handling

 

Allow a candidate to apply for a specific job by submitting.

 

•        Name, Email, Position ID

 

•        Resume text or brief profile summary

 

•        Store applications in-memory

III.          Location Based Priority

 

As part of the application review process, you are required to assign additional priority points to candidates based on the location of the job they are applying for (not the candidate's location). This ensures a consistent and deterministic evaluation process during interviews or automated scoring.

 

Scoring Rules Based on Job Location:

 

•        Jobs located in "Remote" settings: +3 points

 

•        Jobs based in "DAR ES SALAAM": +2 points

 

•        Jobs in any other location: +1 point

 

These points are added to the candidate's resume score to compute a final evaluation score.

 

 

 

IV.        Application Review

 

Simulate the evaluation of each candidate's applicant score based on resume quality and job location-based priority

 

a)     Resume Quality Score

 

Assign a score between 1 and 10 to evaluate the candidate’s resume. This score can be mocked randomly or fixed for simulation process.

 

b)      Location Priority Score

 

Use the job's location (not the candidate's location) to determine priority points:

 

•        Jobs located in "Remote" settings: +3 points

 

•        Jobs based in "DAR ES SALAAM": +2 points

 

•        Jobs in any other location: +1 point

 

c)       Final Score Calculation

 

 

 

d)    Review Summary Output

 

After processing each application, display a summary that indicates:

 

i.                 Candidate Name

 

ii.               Position Applied For

 

iii.             Resume Score

 

iv.             Location Priority Points

 

v.               Final Score

Constraits:

 

•        Use classes or modules for separation of concern

 

•        Store jobs and applications in-database.

 

•          Ensure each candidate can apply only once per job

 

Sample Input Flow:

 

1. Add Job "Software Engineer", IT, Remote, Tsh 1,200,000.

 

2. Add Job: "HR Officer", Human Resources, DAR

 

3. Apply: Ally Mdoka, amdoka@example.com, Job Python and Java."

 

4.  View Summary

 

 

 

1.     Software Engineer (Remote) - Tsh. 1,200,000

 

2.       HR Officer (DAR ES SALAAM) – Tsh. 750,000

 

Application Received: Name: Ally Mdoka Position: Software Engineer Resume Score: 7 Location Priority: 3

 

Final Score: 10

 

Application processed successfully.

 

Implementation Guidelines:

 

•        Use any modern back-end franework (e.g., Laravet, Django, Flask, Ex Spring Boot).

 

•        For Frontend use (Angular, React or Vue js)

 

•        Use a relational database (PostgreSQL or MySQL)

 

•        Passwords must be hashed and never stored in plain text.

 

•        Provide proper error handling and logging for authentication

____________________________________________________________________________

FOR ANY ENQUIRIES

👇

WhatsApp: +255 692 127 931

___________________________________________________________________________________

                                                                ***ALL THE BEST*** 

NB: AM HERE FOR YOU.

Read More

ICT OFFICER - SECURITY MANAGEMENT PRACTICAL

1.     You are given a web application which uses MERN stack to perform a vulnerability scan.

 

i.          State the discovered vulnerabilities.

 

ii.           State the implication of the vulnerabilities and provide recommendations

 

iii.           Exploit the discovered vulnerabilities on the web application (OWASP Top 10 – there was an SQL injection, XSS, CSRF, and others)

 

2.     You are given an IP address to perform a network scan (nmap) to identify:

 

i.          Open ports, services running on open ports, OS running on open ports.

 

ii.           You also required to discover vulnerabilities on open ports, state their implications (effects) and recommend ways to deal with them.

 

iii.           Exploit the vulnerabilities identified above.

 

3.     You are given an API that has vulnerabilities, you are to perform a vulnerability scan and state the discovered vulnerabilities on the API endpoints and exploit them.

 

4.     I don’t recall the 4^th question

 

MDAs and LGAs (ICT Officer – Security) 2023

 

1.     Given a hacker’s directory, scan to find the victim’s OS, vulnerabilities, etc.

 

2.     Given a web application, perform a vulnerability scanning and penetration test of it and write a report.

 

3.     Given an image that has a malicious payload, discover the payload and write a report.

 

4.     Given a login page, perform a password attack.

 

TCRA (ICT Officer – Cyber Security) 2024

 

1.     Given an android application, perform a vulnerability assessment of the application. State the discovered vulnerabilities, their implications, and provide recommendations.

 

2.     Given a local area network:

i.     Discover hosts on the network.

 

ii.      Scan each host for open ports

 

iii.      Scan each host for services running and OS

 

iv.     Find associated vulnerabilities in the open ports for each host, state their implications and provide recommendations.

 

v.     Perform a penetration testing using the discovered vulnerabilities above (at least 2)

 

3.     You are given two .pcap files and you are required to answer questions about discovered IP address, MAC address, etc.

 

4.     Given a web application:

 

i.     Perform a vulnerability scan, state discovered vulnerabilities, and provide recommendations for each.

 

ii.      Use the discovered vulnerabilities to gain access into the web application and provide admin credentials (do not use brute force).

 

iii.      Exploit the vulnerabilities in the web application. 

__________________________________________________________________________________

FOR ANY ENQUIRIES

👇

WhatsApp: +255 692 127 931

___________________________________________________________________________________

                                                                ***ALL THE BEST*** 

NB: ANYTHING CAN HAPPEN.

Read More