Question No. 1
Why would you create Entity classes?
To show relationships between tables or objects you are tracking that doesn’t otherwise exist
To be assigned to risk statements, which generate risks for every Entity listed in the Entity Class
To be assigned to Control Objectives, which generate Controls for every Entity listed in the Entity
To show relationships between Entities and Policies and map them directory to Citations
Reveal Solution Select one option, then reveal solution.
View discussion (0 Comments)
Question No. 2
What is the condition that must exist to edit the factor guidance of a published risk assessment
All assessment instance records are in the Monitor state
All assessment instance records are closed
All assessment instance records are deleted
States of the assessment instance records are irrelevant
All assessment instance records are canceled
Reveal Solution Select one option, then reveal solution.
View discussion (0 Comments)
Question No. 3
What minimum role is needed to bulk initiate risk assessments using the risk assessment scheduler?
sn_grc.business_user
sn_risk.user
sn_risk.admin
sn_risk.manager
Reveal Solution Select one option, then reveal solution.
View discussion (0 Comments)
Question No. 4
What methods are used to create common controls?
Convert a standard control
Create a common control as a child of a standard control
Create a common control
Create a common control as a child of a control objective
Reveal Solution Select one option, then reveal solution.
View discussion (0 Comments)
Question No. 5
What baseline criteria determine when notifications are triggered in relation to audit tasks? (Choose
Expiration
At 50% completion
Reassignment
Due date change
Reveal Solution Select all that apply, then reveal solution.
View discussion (0 Comments)
Question No. 6
Which of the following statements correctly describe the risk management lifecycle process?
Access, Identify and Plan, Control, Review
Control, Review, Assess, Identify and Plan
Identify and Plan, Assess, Control, Review
Identify and Plan, Review, Assess, Control
Reveal Solution Select one option, then reveal solution.
View discussion (0 Comments)
Question No. 7
The Risk Scoring values are entered on the Risk Statement. What records inherits the values from the
Risk Criteria Matrix
Risk Framework
Registered Risk
Risk Response Issue
Reveal Solution Select one option, then reveal solution.
View discussion (0 Comments)
Question No. 8
Which of the following extends from Document Table? (Choose two.)
Citation
Policy
Control Objective
Authority Document
Reveal Solution Select all that apply, then reveal solution.
View discussion (0 Comments)
Question No. 9
Which of the following statements is true of a Risk Response task?
Only one Risk Response task can be related to a Risk at a time
Only users with the risk_manager role or higher can be assigned to a Risk Response task
The risk admin role is required to assign the Risk Response task
The Risk Response task is automatically progressed through the states using a worflow
Reveal Solution Select one option, then reveal solution.
View discussion (0 Comments)
Question No. 10
What are the four values leveraged for the Inherent and Residual Risk Score Types?
Impact, Probability, SLE, ARO
Impact, Likelihood, SLE, ALE
Impact, Likelihood, SLE, Score
Impact, Likelihood, SLE, ARO
Reveal Solution Select one option, then reveal solution.
View discussion (0 Comments)
Question No. 11
Which of the following relationship sets are considered a many-to-many relationship? (Choose
Entity Type and Entity Class
Indicator Template and Entity Type
Control and Risk
Control Objective and Entity Type
Entity Type and Entity
Reveal Solution Select all that apply, then reveal solution.
View discussion (0 Comments)
Question No. 12
The Risk thresholds in the Risk Criteria Matrix (default values) do not line up with company needs.
Configure the Risk Criteria in ServiceNow
Identify Risk that will benefit from the default values
Demonstrate Risk scoring scenarios using the default values
Use the default values to determine new company approach
Reveal Solution Select one option, then reveal solution.
View discussion (0 Comments)
Question No. 13
An implementer has created a common control for entity
Entity X is pari ot entity type ABC. What
Set Entity Class to the Entity Type ABC
Set Entity Type ABC .is a Reliant Entity Type on the Control Objective
Set Entity Type ABC as a Reliant Entity Type on the common control
Set Entity Type ABC as a Reliant Entity Type on the Policy
Reveal Solution Select one option, then reveal solution.
View discussion (0 Comments)
Question No. 14
Which GRC tables extend from the Document table?
Authority Document
Control Objective
Citation
Policy
Reveal Solution Select all that apply, then reveal solution.
View discussion (0 Comments)
Question No. 15
Which table stored the links from Entity to Entity Types?
[sn_compliance_m2m_profile_profile_type]
[sn_risk_m2m_risk_profile]
[sn_compliance_m2m_policy_profile]
[sn_grc_m2m_profile_profile_type]
Reveal Solution Select one option, then reveal solution.
View discussion (0 Comments)