Black Friday Special Limited Time Flat 70% Discount offer - Ends in 0d 00h 00m 00s - Coupon code: 70spcl

Activedumpsnet Logo
  1. Home
  2. ServiceNow
  3. Risk and Compliance
  4. CIS-RCI - Certified Implementation Specialist - Risk and Compliance

ServiceNow CIS-RCI Certified Implementation Specialist - Risk and Compliance Exam Practice Test

Page: 1 / 12
Total 121 questions
Get CIS-RCI Full Access Download CIS-RCI PDF

Certified Implementation Specialist - Risk and Compliance Questions and Answers

Question 1

What would you leverage in order to provide users with an alternate user experience to view policies, create

policy exceptions, and search for controls?

Options:

A.

Help Desk Portal

B.

Catalog Portal

C.

Access Portal

D.

Service Portal

Question 2

Which of the following are the classic risk score types that ServiceNow tracks? (Choose three.)

Options:

A.

Residual

B.

Inherent

C.

Calculated

D.

Operational

E.

Digital

Question 3

Which of the following tables exist within the GRC: Profiles application scope? (Choose three.)

Options:

A.

Document

B.

Policy

C.

Risk

D.

Content

E.

Indicator

Question 4

The Entity Type table has a many-to-many relationship with which tables? (Choose two.)

Options:

A.

Risk Statement

B.

Policy

C.

Control

D.

Risk

Question 5

What are some of the features of scoped applications for GRC? (Choose three.)

Options:

A.

Requires an entitlement for all environments

B.

All components have a namespace prefix for identification

C.

Provides access to all global data

D.

Ability to view all components from the sys_metadata table

E.

Ability to restrict access to available data

Question 6

Which table stored the links from Entity to Entity Types?

Options:

A.

[sn_compliance_m2m_profile_profile_type]

B.

[sn_risk_m2m_risk_profile]

C.

[sn_compliance_m2m_policy_profile]

D.

[sn_grc_m2m_profile_profile_type]

Question 7

What are the terms for level of risk before and after any actions are taken? (Choose two.)

Options:

A.

Operational risk

B.

Digital risk

C.

Inherent risk

D.

Calculated risk

E.

Residual risk

F.

Solutioned risk

Question 8

What type of customers may you encounter? (Choose three.)

Options:

A.

Organization recently acquired and had some bad audit findings (using ServiceNow GRC to help restart

their process)

B.

Organization with little to nothing in place already (implementing one or more core ServiceNow GRC

applications)

C.

Organization undergoing a full GRC transformation (implementing all three core ServiceNow GRC

applications at once or in a phased approach)

D.

Organization implementing ServiceNow GRC to help ease their Customer Service organization (using

other tools to manage other processes)

E.

Organization implementing ServiceNow GRC to help ease their Help Desk organization (using other tools

to manage other processes)

Question 9

The SOX content pack includes a series of policies, control, risks. How are all of these components linked

together?

Options:

A.

Mapping File

B.

Manually

C.

Automatically

D.

Batch import

Question 10

What would you use in order to accommodate a customer’s unique process around policy approvals? For example, each policy needs a second layer of approval.

Options:

A.

Create a new field and create notifications

B.

Add a new related list to keep track of who has already approved it and who hasn’t approved yet

C.

Add a UI Action to track who the stakeholders are

D.

Create a new workflow in the workflow editor

Question 11

Entity Types are applied to which types of records? (Choose three.)

Options:

A.

Risk Statement

B.

Issue

C.

Risk

D.

Control Objective

E.

Policy

F.

Control

Question 12

Which of the following relationship sets are considered a many-to-many relationship? (Choose three.)

Options:

A.

Entity Type and Entity Class

B.

Indicator Template and Entity Type

C.

Control and Risk

D.

Control Objective and Entity Type

E.

Entity Type and Entity

Question 13

Which of the following extends from Content Table? (Choose two.)

Options:

A.

Citation

B.

Policy

C.

Control Objective

D.

Authority Document

Question 14

What GRC module would you access in order to update Entity Types?

Options:

A.

Risk > Entities

B.

Scoping > Profiles

C.

Scoping > Entity Types

D.

CMDB

Question 15

Risk criteria typically include definitions of different levels of what? (Choose two.)

Options:

A.

Impact

B.

Likelihood

C.

Criticality

D.

Importance

E.

Priority

Question 16

The Calculated Risk Score utilizes data from the Inherent and Residual Risk scores to determine an adjusted ALE and Score. What other data drives the adjustments?

Options:

A.

Audit Scores

B.

Attestation Score

C.

Configuration Test Score

D.

Control and Indicator Failure Factors

Question 17

What are some of the baseline tables commonly leveraged in Entity filters? (Choose three.)

Options:

A.

Company [core_company]

B.

Services [cmdb_ci_service]

C.

Location [cmn_location]

D.

Risk [sn_risk_risk]

E.

Audit Engagement [sn_audit_engagement]

Question 18

Which table extends from the Content Table?

Options:

A.

Risk Record

B.

Risk Framework

C.

Risk Response Task

D.

Risk Statement

Load More CIS-RCI Questions 
Page: 1 / 12
Total 121 questions
Get CIS-RCI Full Access Download CIS-RCI PDF