Free CIS-VRM Sample Questions — Certified Implementation Specialist - Vendor Risk Management

What is the minimum role required to create a new Vendor Risk Issue?

• A. Vendor Risk Assessor [sn_vdr_risk_asmt.vendor_assessor]
• B. Vendor Assessment Reviewer [sn_vdr_risk_asmt.vendor_assessment_reviewer]
• C. Vendor Risk Manager [sn_vdr_risk_asmt.vendor_risk_manager]
• D. System Administrator [admin]

In the baseline, what component sends reminder notifications about assessments?

• A. Reminder notifications are triggered on-demand
• B. Events fired by a Business Rule
• C. Scheduled Job
• D. Workflow

What can a vendor contact do in the Vendor Portal? (Choose four.)

• A. Update answers to returned questionnaires
• B. Communicate or share information with other vendors of the assessing organization
• C. Create new issues and tasks for the vendor risk assessor team
• D. Review and respond to issues created by the assessing organization
• E. Manage vendor contacts and task assignments within the vendor organization
• F. Respond to assessments sent by the assessing organization

For each questionnaire template/assessment metric type, how many vendor risk areas can be designated?

• A. One
• B. As many as desired
• C. None
• D. Two

Baseline email notifications that help to automate the vendor risk management process are installed with which plugin?

• A. GRC: Vendor Risk Management
• B. GRC: Audit Management
• C. GRC: Risk Management
• D. GRC: Policy and Compliance Management

In order to evaluate a vendor on a recurring basis, configure a record in this table:

• A. Repeating Surveys
• B. Assessment Metric
• C. Repeating Assessments
• D. Assessment Metric Type

When an assessor creates an issue or task from the vendor record, it is grouped with other issues or tasks for what ServiceNow entity?

• A. Vendor
• B. All vendors
• C. Assessment
• D. Remediation plan

A vendor is assessed and responds to a question which impacts one of the Controls applied to them. When is the Control Status updated?

• A. When the Vendor Risk Assessment State is Responses Received
• B. When the Vendor Risk Assessment State is Finalizing with Vendor or Closed
• C. When the Vendor Risk Assessment response is saved
• D. When all Questions in the Vendor Risk Assessment have a response

On the Contact record, there is a field for the Vendor name. This is which field (with a label change) from the sys_user table?

• A. sn_vendor
• B. company_name
• C. company
• D. vendor_name

In addition to the “Design canvas”, which elements does the Template Designer contain? (Choose three.)

• A. Header bar which contains tabs that display different view and a menu of various functions
• B. Controls for the supported question data types
• C. FAQ Page and Tour option
• D. Question and Categories tabs that contain question/categories that were added to the Question Bank
• E. Risk criteria to identity conditions and risk areas

A Vendor Risk Task can be created from which of the following records?

• A. Policy, Assessment, Vendor
• B. Risk, Policy, Assessment
• C. Policy, Vendor Risk issue, Assessment
• D. Vendor Risk Issue, Assessment, Vendor

What is the definition of ‘Risk Management’?

• A. Policies/Standards/Procedures established to ensure an organization is aligned with corporate strategy and expectations are clearly defined
• B. The process of conforming to standards, policies, and remediation of audit findings
• C. The elimination of vulnerable surface area in an enterprise environment
• D. Process to identify, assess, and respond to risks, threats and vulnerabilities that could compromise the business

If clean data is not provided by the customer, what baseline solutions are available within the platform? (Choose three.)

• A. Integration hub ETL plugin
• B. Field normalization plugin
• C. Service graph connector
• D. System definition fix scripts module
• E. System import transform map scripts

What are individual questions within a questionnaire or document request referred to as?

• A. Metrics
• B. Ratings
• C. Templates
• D. Tiers

Which of the following statements are true about the Template Designer? (Choose two.)

• A. Question weight can be set in the Template Designer
• B. Correct answers can be set in the Template Designer
• C. Questions can be mandatory in the Template Designer
• D. Dependencies between questions cannot be set in the Template Designer
• E. Questions cannot be mandatory in the Template Designer