ServiceNow cis-vrm practice test

certified implementation specialist - vendor risk management

Last exam update: Jan 14 ,2025
Page 1 out of 6. Viewing questions 1-10 out of 59

Question 1

Where can the score for each Assessment Metric or Metric Category be configured?

  • A. Assessment Metric Category record
  • B. Assessment Template record
  • C. Assessment record
  • D. Assessment Metric Type record
Mark Question:
Answer:

b

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 2

The Vendor records are stored in which table?

  • A. Company [core_company]
  • B. Department [cmn_department]
  • C. Task [task]
  • D. User [sys_user]
Mark Question:
Answer:

a

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 3

What is the minimum role required to create a new Vendor Risk Issue?

  • A. Vendor Risk Assessor [sn_vdr_risk_asmt.vendor_assessor]
  • B. Vendor Assessment Reviewer [sn_vdr_risk_asmt.vendor_assessment_reviewer]
  • C. Vendor Risk Manager [sn_vdr_risk_asmt.vendor_risk_manager]
  • D. System Administrator [admin]
Mark Question:
Answer:

d

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 4

What third-party vendor security evaluation solutions are commonly integrated with VRM out-of-the-box? (Choose two.)

  • A. MyScoreMetrics
  • B. Vendor Insights
  • C. Bitsight
  • D. Security Scorecard
Mark Question:
Answer:

cd

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 5

A Vendor Risk Assessment that consists of a SIG Lite questionnaire and two document requests are displayed as how many total requests in the Vendor Portal?

  • A. 2
  • B. 3
  • C. 0
  • D. 1
Mark Question:
Answer:

b

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 6

A vendor is assessed and responds to a question which impacts one of the Controls applied to them. When is the Control Status updated?

  • A. When the Vendor Risk Assessment State is Responses Received
  • B. When the Vendor Risk Assessment State is Finalizing with Vendor or Closed
  • C. When the Vendor Risk Assessment response is saved
  • D. When all Questions in the Vendor Risk Assessment have a response
Mark Question:
Answer:

b

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 7

To what type of assessment record can a vendor contact respond?

  • A. Vendor tiering assessment
  • B. Vendor risk assessment
  • C. Customer assessment
  • D. External monitoring assessment
Mark Question:
Answer:

b

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 8

On the Contact record, there is a field for the Vendor name. This is which field (with a label change) from the sys_user table?

  • A. sn_vendor
  • B. company_name
  • C. company
  • D. vendor_name
Mark Question:
Answer:

d

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 9

What is the advantage of using both VRM and GRC/IRM?

  • A. Vendor Risk engagements automatically match with Audit engagements
  • B. All compliance controls are automatically visible to the vendor risk manage
  • C. Primary vendor contacts can then see their overall non compliant risk score
  • D. Non compliant controls automatically adjust the risk score for a vendor entity
Mark Question:
Answer:

c

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 10

In the baseline, what component sends reminder notifications about assessments?

  • A. Reminder notifications are triggered on-demand
  • B. Events fired by a Business Rule
  • C. A Scheduled Job
  • D. A Workflow
Mark Question:
Answer:

c

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000
To page 2