ServiceNow cis-rc practice test
certified implementation specialist - risk and compliance
Last exam update: Dec 18 ,2024
Page 1 out of 15. Viewing questions 1-10 out of 142
Question 1
Who should be directly involved in GRC implementations? (Choose three.)
-
A.
Board of directors
-
B.
Chief Executive
-
C.
ServiceNow platform experts
-
D.
HR analysts
-
E.
Risk and compliance experts
-
F.
CMDB process owner
Question 2
Which of the following tables are within the GRC: Policy and Compliance Management application scope? (Choose two.)
-
A.
Authority Document
-
B.
Assessment
-
C.
Policy Exception
-
D.
Audit Task
Question 3
What types of tasks are specific to the Audit module? (Choose three.)
-
A.
Control Attestation
-
B.
Interview
-
C.
Walkthrough
-
D.
Control Test
-
E.
Tabletop Exercise
-
F.
Remediation
Question 4
What GRC module would you access in order to update Entity Types?
-
A.
Risk > Entities
-
B.
Scoping > Profiles
-
C.
Scoping > Entity Types
-
D.
CMDB
Question 5
On which records is the entity a required field? (Choose two.)
-
A.
Risk
-
B.
Control
-
C.
Policy
-
D.
Control objective
-
E.
Risk statement
Question 6
Critical parts of a successful GRC implementation are understanding the customers current: (Choose three.)
-
A.
Regulatory requirements
-
B.
Risk and Compliance personas
-
C.
GRC processes
-
D.
Data breaches
-
E.
Audit failures
Question 7
What are some of the features of scoped applications for GRC? (Choose three.)
-
A.
Requires an entitlement for all environments
-
B.
All components have a namespace prefix for identification
-
C.
Provides access to all global data
-
D.
Ability to view all components from the sys_metadata table
-
E.
Ability to restrict access to available data
Question 8
Entity Types are applied to which types of records? (Choose three.)
-
A.
Risk Statement
-
B.
Issue
-
C.
Risk
-
D.
Control Objective
-
E.
Policy
-
F.
Control
Question 9
The Citation table is a child table of which parent?
-
A.
Content
-
B.
Authority Document
-
C.
Item
-
D.
Document
Question 10
Which role is not part of ServiceNow GRC?
-
A.
Risk User
-
B.
Risk Developer
-
C.
Risk Manager
-
D.
Risk Reader