2026 Best CIS-RCI Exam Preparation Material with New Dumps Questions [Q68-Q93]

Share

2026 Best CIS-RCI Exam Preparation Material with New Dumps Questions

Free CIS-RCI Exam Files Verified & Correct Answers Downloaded Instantly

NEW QUESTION # 68
What happens when you assign an Entity Type to a Risk Statement?

  • A. A risk is automatically generated for every Entity listed in the Entity Type
  • B. An assessment will be automatically generated to test each Entity listed in the Entity Type
  • C. A risk assessment is created automatically for every Entity listed in the Entity Type
  • D. The Entity is now going to present a risk score and controls are going to be tied to it

Answer: A

Explanation:
Reference:
id=community_QUESTIO N NO:&sys_id=59295985dbdc0c141cd8a345ca96191c


NEW QUESTION # 69
What dependency modeling feature can be used in the Classic UI to build relationships between Entity Classes?

  • A. Data Model Designer
  • B. GRC Workbench
  • C. Dependency Model Builder
  • D. GRC Tree Map

Answer: B


NEW QUESTION # 70
In which state is the Policy once all approvals are received?

  • A. Retired
  • B. Published
  • C. Review
  • D. Awaiting Approval
  • E. Draft

Answer: B


NEW QUESTION # 71
Which role(s) has the capability to create Policies? Choose two.)

  • A. Compliance User
  • B. Compliance admin
  • C. Risk Manager
  • D. Compliance Manager

Answer: B,D

Explanation:
Explanation/Reference: https://docs.servicenow.com/bundle/orlando-governance-risk-compliance/page/product/grc-policy- and-compliance/task/t_DefineAPolicy.html


NEW QUESTION # 72
What choices do implementers have when configuring an audience for policy acknowledgements?
Choose 3 answers

  • A. User Criteria
  • B. Define conditions against the User table
  • C. Seed specific groups
  • D. Select specific users
  • E. Define conditions against the Group table
  • F. ACLs

Answer: B,D,E


NEW QUESTION # 73
What is the minimum role needed to maintain entity types?
Choose 2 answers

  • A. Risk Admin
  • B. compliance user
  • C. Risk user
  • D. Compliance Admin
  • E. Risk Manager
  • F. Compliance Manager

Answer: E,F


NEW QUESTION # 74
Which GRC processes use the entity class?
Choose 2 answers

  • A. Advanced risk assessments
  • B. Classic risk assessments
  • C. Entity Upstream/Downstream relationships
  • D. Policy exceptions
  • E. Object-based risk assessments

Answer: A,E


NEW QUESTION # 75
Which of the following is the correct statement about Risk Scoring formulas?

  • A. Impact × Urgency = ALE
  • B. ALE × ARO = Compliance Score
  • C. ALE × ARO = SLE
  • D. SLE × ARO = ALE

Answer: C


NEW QUESTION # 76
What GRC module would you access in order to update Entity Types?

  • A. Risk > Entities
  • B. CMDB
  • C. Scoping > Entity Types
  • D. Scoping > Profiles

Answer: C

Explanation:
Reference: https://docs.servicenow.com/bundle/orlando-governance-risk-compliance/page/product
/grccommon/
concept/c_Scoping.html


NEW QUESTION # 77
What Is the maximum file size that can be uploaded to OneDrive for policy authoring?

  • A. 6MB
  • B. No Limit
  • C. 4 MB
  • D. 5 MB

Answer: C


NEW QUESTION # 78
When calculating compliance scores, what is true about the weighting of Controls? (Choose two.)

  • A. Controls are not weighted equally by default
  • B. The default value is 10
  • C. The weight cannot be changed
  • D. The weight of the Control is set when the Control is created

Answer: B,D


NEW QUESTION # 79
Which control states are included in the compliance score calculation?
Choose 3 answers

  • A. Review
  • B. Monitor
  • C. Attest
  • D. Retire
  • E. Draft

Answer: A,B,C


NEW QUESTION # 80
Who should be directly involved in GRC implementations? (Choose four.)

  • A. Business Analyst
  • B. CMDB process owner
  • C. Chief Executive
  • D. Risk and compliance experts
  • E. Board of directors
  • F. ServiceNow platform experts

Answer: A,B,E,F


NEW QUESTION # 81
What would you use in order to accommodate a customer's unique process around policy approvals? For example, each policy needs a second layer of approval.

  • A. Add a new related list to keep track of who has already approved it and who hasn't approved yet
  • B. Create a new field and create notifications
  • C. Add a UI Action to track who the stakeholders are
  • D. Create a new workflow in the workflow editor

Answer: B


NEW QUESTION # 82
Where does a policy get published to when it is approved?

  • A. Knowledge Base
  • B. Knowledge Summit
  • C. Authoritative Records
  • D. ServiceNow Library

Answer: A


NEW QUESTION # 83
What happens when you assign an Entity Type to a Control Objective?

  • A. The Entity Type presents a compliance score and controls tied to it
  • B. An assessment is automatically generated to test each Entity listed in the Entity Type
  • C. A policy is created automatically for every Entity listed in the Entity Type
  • D. A control is automatically generated for every Entity listed in the Entity Type

Answer: D


NEW QUESTION # 84
Which state is the policy in after being approved by all approvers?

  • A. Retired
  • B. Published
  • C. Review
  • D. Awaiting Approval
  • E. Draft

Answer: B


NEW QUESTION # 85
What must an implementer configure to allow users to submit a policy exception from a non-GRC application like Security Operations?
Choose 2 answers

  • A. Exception risk rules
  • B. verification rules
  • C. Integration registry
  • D. Approval rules
  • E. Exception questionnaire

Answer: A,C


NEW QUESTION # 86
What tables are a pan of the GRC: Advanced Risk scope?
Choose 2 answers

  • A. Risk Assessment Methodology
  • B. Risk Criteria Matrix
  • C. Manual Factor
  • D. Risk Framework

Answer: A,B


NEW QUESTION # 87
The Tablename.config:

  • A. Displays the table in list view within the Content Frame
  • B. Displays the configuration list view of the table in the Content Frame
  • C. Displays the table in list view within a separate browser tab
  • D. Displays the configuration list view of the table in the browser tab

Answer: D


NEW QUESTION # 88
An external audit team needs to view all of your published policies and controls? Which role can you give the team members?

  • A. sn_audit_manager
  • B. sn_risk_user
  • C. sn_compliance_user
  • D. sn_audit.external_auditor

Answer: D


NEW QUESTION # 89
What type of customers may you encounter? (Choose three.)

  • A. Organization with little to nothing in place already (implementing one or more core ServiceNow GRC applications)
  • B. Organization implementing ServiceNow GRC to help ease their Help Desk organization (using other tools to manage other processes)
  • C. Organization implementing ServiceNow GRC to help ease their Customer Service organization (using other tools to manage other processes)
  • D. Organization recently acquired and had some bad audit findings (using ServiceNow GRC to help restart their process)
  • E. Organization undergoing a full GRC transformation (implementing all three core ServiceNow GRC applications at once or in a phased approach)

Answer: A,C,D


NEW QUESTION # 90
What are the risk response options available when responding on an advanced risk assessment?
Choose 2 answers

  • A. Required to create at least one risk response task
  • B. Skipped entirely based on attributes defined in the RAM
  • C. Create one or multiple risk response tasks
  • D. Required to create a mitigation response task

Answer: B,C


NEW QUESTION # 91
The content table (sn_grcs_content) is a parent table of:

  • A. sn_risk_definition
  • B. sn_risk_framework
  • C. sn_risk_risk
  • D. sn_grc_profile

Answer: D


NEW QUESTION # 92
The Citation table is a child table of which parent?

  • A. Content
  • B. Item
  • C. Authority Document
  • D. Document

Answer: C

Explanation:
Reference:
id=community_QUESTIO N NO:&sys_id=ad77b570db309bcc2e247a9e0f96192f


NEW QUESTION # 93
......

Instant Download CIS-RCI Dumps Q&As Provide PDF&Test Engine: https://www.vcedumps.com/CIS-RCI-examcollection.html

Fast Exam Updates CIS-RCI dumps with PDF Test Engine Practice: https://drive.google.com/open?id=1CzoaoS0pUT4EutLGuYOwEUWScFj5uxe1