CIS-RCI Certified Implementation Specialist - Risk and Compliance Questions and Answers

What GRC module would you access in order to update Entity Types?

Jim is an Audit Manager. In addition to Audit Manager, which roles should be assigned to ensure he can

manage the audit process as well as other GRC functions related to audit? (Choose two.)

Which table stored the links from Entity to Entity Types?

All of the following are PARENT tables which exist within the GRC Entities application scope EXCEPT.

The content table (sn_grcs_content) is a parent table of:

What is the minimum role required for creating a policy acknowledgement campaign?

What minimum role is needed to bulk initiate risk assessments using the risk assessment scheduler?

To allow other applications to request a policy exception, you must complete the integration registry form. In addition to providing the name of the registry entry, what additional information is needed to complete the form?

Common controls from UCF import into which table in ServiceNow?

Which GRC tables serve as primary parent tables for the GRC applications? (Choose three.)

Unified Compliance Framework (UCF) uses a slightly different nomenclature structure than ServiceNow. Common controls from UCF import into which table in ServiceNow?

Which of the following is the correct statement about Risk Scoring formulas?

On which records is the entity a required field? (Choose two.)

For a particular risk assessment methodology (RAM), the control effectiveness score is calculated based on an individual assessment of controls. What are options for control identification? (Choose three.)

Which is not a type of key compliance indicator?