• Home
  • Articles
  • 2023 Updated Verified CIS-VRM Downloadable Printable Exam Dumps [Q35-Q59]

2023 Updated Verified CIS-VRM Downloadable Printable Exam Dumps [Q35-Q59]

Share

2023 Updated Verified CIS-VRM Downloadable Printable Exam Dumps

The Ultimate ServiceNow CIS-VRM Dumps PDF Review


To become certified, candidates must pass the CIS-VRM certification exam, which consists of 60 multiple-choice questions. CIS-VRM exam is timed and must be completed within 90 minutes. A passing score of 70% or higher is required to earn the certification.

 

NEW QUESTION # 35
What is the definition of 'Risk Management'?

  • A. Policies/Standards/Procedures established to ensure an organization is aligned with corporate strategy and expectations are clearly defined
  • B. The elimination of vulnerable surface area in an enterprise environment
  • C. Process to identify, assess, and respond to risks, threats and vulnerabilities that could compromise the business
  • D. The process of conforming to standards, policies, and remediation of audit findings

Answer: C


NEW QUESTION # 36
Which statements most accurately describe assignments to vendor contacts? (Choose two.)

  • A. Individual sections in the questionnaire or document request can be assigned
  • B. A questionnaire or document request cannot be assigned to multiple vendor contacts
  • C. A questionnaire can only be completed by assigned vendor contacts
  • D. A questionnaire can be read by vendor contacts that are not assigned

Answer: A,C


NEW QUESTION # 37
The assessment page provides an area to import what kind of a completed questionnaire?

  • A. SIG
  • B. SOX
  • C. GDPR
  • D. SOC1 & SOC2

Answer: B


NEW QUESTION # 38
What are the baseline mandatory fields when creating a new Vendor Contact? (Choose three.)

  • A. Department
  • B. Email
  • C. Name (First and Last)
  • D. Vendor
  • E. Role

Answer: B,C,E


NEW QUESTION # 39
The Vendor records are stored in which table?

  • A. Department [cmn_department]
  • B. Task [task]
  • C. Company [core_company]
  • D. User [sys_user]

Answer: C


NEW QUESTION # 40
What is the minimum role required to create a new Vendor Risk Issue?

  • A. Vendor Assessment Reviewer [sn_vdr_risk_asmt.vendor_assessment_reviewer]
  • B. Vendor Risk Assessor [sn_vdr_risk_asmt.vendor_assessor]
  • C. System Administrator [admin]
  • D. Vendor Risk Manager [sn_vdr_risk_asmt.vendor_risk_manager]

Answer: C


NEW QUESTION # 41
Which of these options can be used in data cleansing when importing vendor data? (Choose three.)

  • A. UI Policies
  • B. Fix Scripts
  • C. Data Import or Data Source Transform
  • D. Data Policies
  • E. Access Control Lists
  • F. Field Normalization Rules

Answer: B,C,F


NEW QUESTION # 42
In the baseline, what component sends reminder notifications about assessments?

  • A. Events fired by a Business Rule
  • B. A Scheduled Job
  • C. A Workflow
  • D. Reminder notifications are triggered on-demand

Answer: B


NEW QUESTION # 43
Which statement best describes the SIG Lite?

  • A. The SIG Lite is a company specific questionnaire
  • B. The SIG Lite is a ServiceNow developed questionnaire
  • C. The SIG Lite assesses service providers that store or manage highly sensitive or regulated information
  • D. The SIG Lite assesses basic levels of due diligence and provides a broad but high-level understanding about internal security controls

Answer: D


NEW QUESTION # 44
In the Vendor Portal, who can reassign Assessments?

  • A. Vendor Business Owner
  • B. Vendor Manager
  • C. Primary Contact
  • D. Vendor

Answer: B


NEW QUESTION # 45
What third-party vendor security evaluation solutions are commonly integrated with VRM out-of-the-box? (Choose two.)

  • A. Bitsight
  • B. Security Scorecard
  • C. MyScoreMetrics
  • D. Vendor Insights

Answer: A,B


NEW QUESTION # 46
Which GRC records can be related to an Entity? (Choose three.)

  • A. Controls
  • B. Risks
  • C. Entity Types
  • D. Vendors
  • E. Policies

Answer: B,C,E


NEW QUESTION # 47
Roles preceded by sn_vdr_risk are for which scope?

  • A. GRC: Vendor Risk Remediation
  • B. GRC: Vendor Risk Core
  • C. GRC: Risk Management
  • D. GRC: Vendor Risk Management

Answer: D


NEW QUESTION # 48
During the Generating Observations phase of the Vendor Risk Assessment, what action might be taken by the Risk Assessor?

  • A. Answer questions the vendor forgot to answer
  • B. Create issues from the assessment if necessary
  • C. Update the vendor risk score
  • D. Email the vendor

Answer: B


NEW QUESTION # 49
Vendor Risk Issues are usually created in which stage of an Assessment?

  • A. Generating Observations
  • B. Submitted to Vendor
  • C. Finalizing with Vendor
  • D. Responses Received

Answer: B


NEW QUESTION # 50
What can a vendor contact do in the Vendor Portal? (Choose four.)

  • A. Update answers to returned questionnaires
  • B. Review and respond to issues created by the assessing organization
  • C. Manage vendor contacts and task assignments within the vendor organization
  • D. Respond to assessments sent by the assessing organization
  • E. Create new issues and tasks for the vendor risk assessor team
  • F. Communicate or share information with other vendors of the assessing organization

Answer: A,B,C,D


NEW QUESTION # 51
Vendor Risk Tasks are saved to which one of the following tables?

  • A. [sn_vdr_risk_asmt_task]
  • B. [task]
  • C. [planned_task]
  • D. [sn_vendor_risk_task]

Answer: D


NEW QUESTION # 52
Where can the score for each Assessment Metric or Metric Category be configured?

  • A. Assessment record
  • B. Assessment Metric Category record
  • C. Assessment Template record
  • D. Assessment Metric Type record

Answer: C


NEW QUESTION # 53
If clean data is not provided by the customer, what baseline solutions are available within the platform? (Choose three.)

  • A. System import transform map scripts
  • B. System definition fix scripts module
  • C. Field normalization plugin
  • D. Service graph connector
  • E. Integration hub ETL plugin

Answer: B,C,E


NEW QUESTION # 54
Baseline email notifications that help to automate the vendor risk management process are installed with which plugin?

  • A. GRC: Audit Management
  • B. GRC: Risk Management
  • C. GRC: Policy and Compliance Management
  • D. GRC: Vendor Risk Management

Answer: C


NEW QUESTION # 55
Which functions can be performed in the Vendor Portal? (Choose three.)

  • A. Issue remediation
  • B. Requests via virtual agent
  • C. Schedule web meetings
  • D. Contact Management
  • E. Assessment response

Answer: B,D,E


NEW QUESTION # 56
Which of the following statements are true about the Template Designer? (Choose two.)

  • A. Question weight can be set in the Template Designer
  • B. Questions cannot be mandatory in the Template Designer
  • C. Questions can be mandatory in the Template Designer
  • D. Dependencies between questions cannot be set in the Template Designer
  • E. Correct answers can be set in the Template Designer

Answer: A,C


NEW QUESTION # 57
What are the features of Vendor Risk Issues? (Choose two.)

  • A. Can only be seen by the customer's vendor risk team
  • B. Can be generated on-demand or automatically due to an incorrect answer
  • C. Generate audit tasks for the vendor risk team
  • D. Provide vendor direct access to update and respond to Issues

Answer: B,D


NEW QUESTION # 58
When an assessor creates an issue or task from the vendor record, it is grouped with other issues or tasks for what ServiceNow entity?

  • A. Remediation plan
  • B. Assessment
  • C. Vendor
  • D. All vendors

Answer: B


NEW QUESTION # 59
......

Achive your Success with Latest CIS-VRM Exam: https://www.actualcollection.com/CIS-VRM-exam-questions.html

Related Articles

more
ServiceNow CIS-VRM Certification Practice Exam

Copyright © 2026 ActualCollection NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy