New Year Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: cramtick70

CIS-RCI Certified Implementation Specialist - Risk and Compliance Questions and Answers

Questions 4

What GRC module would you access in order to update Entity Types?

Options:

A.

Risk > Entities

B.

Scoping > Profiles

C.

Scoping > Entity Types

D.

CMDB

Buy Now
Questions 5

Jim is an Audit Manager. In addition to Audit Manager, which roles should be assigned to ensure he can

manage the audit process as well as other GRC functions related to audit? (Choose two.)

Options:

A.

sn_grc.manager

B.

sn_audit.user

C.

sn_grc.user

D.

sn_grc.reader

E.

sn_grc.developer

Buy Now
Questions 6

Which table stored the links from Entity to Entity Types?

Options:

A.

[sn_compliance_m2m_profile_profile_type]

B.

[sn_risk_m2m_risk_profile]

C.

[sn_compliance_m2m_policy_profile]

D.

[sn_grc_m2m_profile_profile_type]

Buy Now
Questions 7

All of the following are PARENT tables which exist within the GRC Entities application scope EXCEPT.

Options:

A.

Item

B.

Document

C.

Content

D.

Indicator

Buy Now
Questions 8

The content table (sn_grcs_content) is a parent table of:

Options:

A.

sn_grc_profile

B.

sn_risk_framework

C.

sn_risk_definition

D.

sn_risk_risk

Buy Now
Questions 9

What is the minimum role required for creating a policy acknowledgement campaign?

Options:

A.

sn_risk.user

B.

sn_compliance.user

C.

sn_compliance.admin

D.

sn_compliance.manager

E.

sn_control.owner

Buy Now
Questions 10

What minimum role is needed to bulk initiate risk assessments using the risk assessment scheduler?

Options:

A.

sn_grc.business_user

B.

sn_risk.user

C.

sn_risk.admin

D.

sn_risk.manager

Buy Now
Questions 11

To allow other applications to request a policy exception, you must complete the integration registry form. In addition to providing the name of the registry entry, what additional information is needed to complete the form?

Options:

A.

You must indicate the audience for requesting policy exceptions

B.

You must indicate the intended Service Portal

C.

You must indicate the policy exception target table

D.

You must indicate the allowed policy acknowledgement campaigns

Buy Now
Questions 12

Common controls from UCF import into which table in ServiceNow?

Options:

A.

sn_compliance_policy

B.

sn_compliance_policy_statement

C.

sn_compliance_policy_exception

D.

sn_complilance_authority_document

Buy Now
Questions 13

Which GRC tables serve as primary parent tables for the GRC applications? (Choose three.)

Options:

A.

Content

B.

Item

C.

Asset

D.

Task

E.

Document

Buy Now
Questions 14

Unified Compliance Framework (UCF) uses a slightly different nomenclature structure than ServiceNow. Common controls from UCF import into which table in ServiceNow?

Options:

A.

Control Objective [sn_compliance_policy_statement]

B.

Authority Document [sn_compliance_authority_document]

C.

Control [sn_compliance_control]

D.

Citation [sn_compliance_citation]

Buy Now
Questions 15

Which of the following is the correct statement about Risk Scoring formulas?

Options:

A.

SLE × ARO = ALE

B.

ALE × ARO = Compliance Score

C.

ALE × ARO = SLE

D.

Impact × Urgency = ALE

Buy Now
Questions 16

On which records is the entity a required field? (Choose two.)

Options:

A.

Risk

B.

Control

C.

Policy

D.

Control objective

E.

Risk statement

Buy Now
Questions 17

For a particular risk assessment methodology (RAM), the control effectiveness score is calculated based on an individual assessment of controls. What are options for control identification? (Choose three.)

Options:

A.

Controls are identified from library and ad-hoc

B.

Controls are identified from indicator results

C.

Controls are identified from library

D.

Controls are identified ad-hoc

E.

Controls are identified from related issues

Buy Now
Questions 18

Which is not a type of key compliance indicator?

Options:

A.

Performance Analytics

B.

Manual

C.

Scripted

D.

Reference

E.

Basic

Buy Now
Exam Code: CIS-RCI
Exam Name: Certified Implementation Specialist - Risk and Compliance
Last Update: Dec 25, 2024
Questions: 121
CIS-RCI pdf

CIS-RCI PDF

$25.5  $84.99
CIS-RCI Engine

CIS-RCI Testing Engine

$30  $99.99
CIS-RCI PDF + Engine

CIS-RCI PDF + Testing Engine

$40.5  $134.99