11.11 Special Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: scxmas70

  1. Home
  2. ServiceNow
  3. Risk and Compliance
  4. CIS-RCI - Certified Implementation Specialist - Risk and Compliance

CIS-RCI Exam Dumps - Certified Implementation Specialist - Risk and Compliance

Question # 4

In which state can reviewers either send the Policy back to draft or forward it by requesting approval?

A.

Retired

B.

Published

C.

Awaiting Approval

D.

Review

Full Access
Question # 5

A control objective has been related to a risk statement and they've been scoped with the same entity type. What can we expect to occur?

A.

Risks for this risk statement will be moved back into a Review state since there are new factors impacting risk likelihood.

B.

A control for this control objective, with a matching entity, will be related to the registered risk for this risk statement as a mitigating control.

C.

The control objective will be marked as compliant since it is mitigating the related risk statement.

D.

Risk scores will automatically decrease for the risk statement's risks since there are now mitigating controls.

Full Access
Question # 6

You are working with your customer to determine necessary audit management workflow configurations. What

should they know about the approval process for audit engagements? (Choose three.)

A.

If the engagement is approved and there are remaining open tasks or issues, it automatically moves into

the Follow Up state.

B.

If the engagement is approved and there are no remaining open tasks or issues, it automatically moves

into the Closed state.

C.

If the engagement is rejected, it automatically moves back to the Fieldwork state.

D.

If the engagement is approved and there are remaining open tasks or issues, it automatically moves into

the Fieldwork state.

E.

If the engagement is rejected, it automatically moves into the Scope state.

Full Access
Question # 7

Control indicators may be triggered or scheduled in which state?

A.

Retired

B.

Monitor

C.

Review

D.

Attest

E.

Draft

Full Access
Question # 8

Which table stored the links from Entity to Entity Types?

A.

[sn_compliance_m2m_profile_profile_type]

B.

[sn_risk_m2m_risk_profile]

C.

[sn_compliance_m2m_policy_profile]

D.

[sn_grc_m2m_profile_profile_type]

Full Access
Question # 9

Which one of the following is not a trigger for issue creation?

A.

Manual issue created by any manager or admin role as well as by audit user

B.

Indicator failure

C.

Risk assessment returns the inherent and residual risk impact as ‘Very High’

D.

Attestation returns the result as ‘Not Implemented’

E.

Control effectiveness is ‘Ineffective’ and the state of control test is ‘Closed Complete’

Full Access
Question # 10

What is the minimum role required to create a risk assessment methodology (RAM)?

A.

sn_compliance.admin

B.

sn_risk.user

C.

sn_risk.manager

D.

sn_risk.admin

Full Access
Question # 11

The Entity Type table has a many-to-many relationship with which tables? (Choose two.)

A.

Risk Statement

B.

Policy

C.

Control

D.

Risk

Full Access
Question # 12

What GRC module would you access in order to update Entity Types?

A.

Risk > Entities

B.

Scoping > Profiles

C.

Scoping > Entity Types

D.

CMDB

Full Access
Question # 13

Which of the following are scoped applications related to the Risk and Compliance applications? (Choose

four.)

A.

GRC: GRC Profiles

B.

GRC: Attestation Design

C.

GRC: UCF Compliance

D.

GRC: Policy and Compliance

E.

GRC: Performance Analytics

F.

GRC: Risk Management

Full Access
Question # 14

The content table (sn_grcs_content) is a parent table of:

A.

sn_grc_profile

B.

sn_risk_framework

C.

sn_risk_definition

D.

sn_risk_risk

Full Access
Question # 15

Which role reviews the risk response and moves the Risk record into the Monitor state at the appropriate time?

A.

Risk Manager

B.

Risk User

C.

Risk Reader

D.

Risk Owner

Full Access
Question # 16

Which of the following tables exist within the GRC: Profiles application scope? (Choose three.)

A.

sn_grc_profile_type

B.

sn_grc_indicator

C.

sn_grc_compliance_policy_statement

D.

sn_grc_risk_definition

E.

sn_grc_profile_class

Full Access
Question # 17

An external audit team needs to view all of your published policies and controls? Which role can you give the team members?

A.

sn_audit_manager

B.

sn_compliance_user

C.

sn_audit.external_auditor

D.

sn_risk_user

Full Access
Question # 18

What are some of the baseline tables commonly leveraged in Entity filters? (Choose three.)

A.

Company [core_company]

B.

Services [cmdb_ci_service]

C.

Location [cmn_location]

D.

Risk [sn_risk_risk]

E.

Audit Engagement [sn_audit_engagement]

Full Access

Hot Exams

ADM-201 Dumps
Sales-Cloud-Consultant Dumps
Service-Cloud-Consultant Dumps
Platform-App-Builder Dumps
AZ-500 Dumps
Associate-Cloud-Engineer Dumps
350-701 Dumps
CKA Dumps
SY0-601 Dumps
NCSE-Core Dumps
PDP9 Dumps
DP-203 Dumps