
2026 Best CIS-RCI Exam Preparation Material with New Dumps Questions
Free CIS-RCI Exam Files Verified & Correct Answers Downloaded Instantly
NEW QUESTION # 68
What happens when you assign an Entity Type to a Risk Statement?
- A. A risk is automatically generated for every Entity listed in the Entity Type
- B. An assessment will be automatically generated to test each Entity listed in the Entity Type
- C. A risk assessment is created automatically for every Entity listed in the Entity Type
- D. The Entity is now going to present a risk score and controls are going to be tied to it
Answer: A
Explanation:
Reference:
id=community_QUESTIO N NO:&sys_id=59295985dbdc0c141cd8a345ca96191c
NEW QUESTION # 69
What dependency modeling feature can be used in the Classic UI to build relationships between Entity Classes?
- A. Data Model Designer
- B. GRC Workbench
- C. Dependency Model Builder
- D. GRC Tree Map
Answer: B
NEW QUESTION # 70
In which state is the Policy once all approvals are received?
- A. Retired
- B. Published
- C. Review
- D. Awaiting Approval
- E. Draft
Answer: B
NEW QUESTION # 71
Which role(s) has the capability to create Policies? Choose two.)
- A. Compliance User
- B. Compliance admin
- C. Risk Manager
- D. Compliance Manager
Answer: B,D
Explanation:
Explanation/Reference: https://docs.servicenow.com/bundle/orlando-governance-risk-compliance/page/product/grc-policy- and-compliance/task/t_DefineAPolicy.html
NEW QUESTION # 72
What choices do implementers have when configuring an audience for policy acknowledgements?
Choose 3 answers
- A. User Criteria
- B. Define conditions against the User table
- C. Seed specific groups
- D. Select specific users
- E. Define conditions against the Group table
- F. ACLs
Answer: B,D,E
NEW QUESTION # 73
What is the minimum role needed to maintain entity types?
Choose 2 answers
- A. Risk Admin
- B. compliance user
- C. Risk user
- D. Compliance Admin
- E. Risk Manager
- F. Compliance Manager
Answer: E,F
NEW QUESTION # 74
Which GRC processes use the entity class?
Choose 2 answers
- A. Advanced risk assessments
- B. Classic risk assessments
- C. Entity Upstream/Downstream relationships
- D. Policy exceptions
- E. Object-based risk assessments
Answer: A,E
NEW QUESTION # 75
Which of the following is the correct statement about Risk Scoring formulas?
- A. Impact × Urgency = ALE
- B. ALE × ARO = Compliance Score
- C. ALE × ARO = SLE
- D. SLE × ARO = ALE
Answer: C
NEW QUESTION # 76
What GRC module would you access in order to update Entity Types?
- A. Risk > Entities
- B. CMDB
- C. Scoping > Entity Types
- D. Scoping > Profiles
Answer: C
Explanation:
Reference: https://docs.servicenow.com/bundle/orlando-governance-risk-compliance/page/product
/grccommon/
concept/c_Scoping.html
NEW QUESTION # 77
What Is the maximum file size that can be uploaded to OneDrive for policy authoring?
- A. 6MB
- B. No Limit
- C. 4 MB
- D. 5 MB
Answer: C
NEW QUESTION # 78
When calculating compliance scores, what is true about the weighting of Controls? (Choose two.)
- A. Controls are not weighted equally by default
- B. The default value is 10
- C. The weight cannot be changed
- D. The weight of the Control is set when the Control is created
Answer: B,D
NEW QUESTION # 79
Which control states are included in the compliance score calculation?
Choose 3 answers
- A. Review
- B. Monitor
- C. Attest
- D. Retire
- E. Draft
Answer: A,B,C
NEW QUESTION # 80
Who should be directly involved in GRC implementations? (Choose four.)
- A. Business Analyst
- B. CMDB process owner
- C. Chief Executive
- D. Risk and compliance experts
- E. Board of directors
- F. ServiceNow platform experts
Answer: A,B,E,F
NEW QUESTION # 81
What would you use in order to accommodate a customer's unique process around policy approvals? For example, each policy needs a second layer of approval.
- A. Add a new related list to keep track of who has already approved it and who hasn't approved yet
- B. Create a new field and create notifications
- C. Add a UI Action to track who the stakeholders are
- D. Create a new workflow in the workflow editor
Answer: B
NEW QUESTION # 82
Where does a policy get published to when it is approved?
- A. Knowledge Base
- B. Knowledge Summit
- C. Authoritative Records
- D. ServiceNow Library
Answer: A
NEW QUESTION # 83
What happens when you assign an Entity Type to a Control Objective?
- A. The Entity Type presents a compliance score and controls tied to it
- B. An assessment is automatically generated to test each Entity listed in the Entity Type
- C. A policy is created automatically for every Entity listed in the Entity Type
- D. A control is automatically generated for every Entity listed in the Entity Type
Answer: D
NEW QUESTION # 84
Which state is the policy in after being approved by all approvers?
- A. Retired
- B. Published
- C. Review
- D. Awaiting Approval
- E. Draft
Answer: B
NEW QUESTION # 85
What must an implementer configure to allow users to submit a policy exception from a non-GRC application like Security Operations?
Choose 2 answers
- A. Exception risk rules
- B. verification rules
- C. Integration registry
- D. Approval rules
- E. Exception questionnaire
Answer: A,C
NEW QUESTION # 86
What tables are a pan of the GRC: Advanced Risk scope?
Choose 2 answers
- A. Risk Assessment Methodology
- B. Risk Criteria Matrix
- C. Manual Factor
- D. Risk Framework
Answer: A,B
NEW QUESTION # 87
The Tablename.config:
- A. Displays the table in list view within the Content Frame
- B. Displays the configuration list view of the table in the Content Frame
- C. Displays the table in list view within a separate browser tab
- D. Displays the configuration list view of the table in the browser tab
Answer: D
NEW QUESTION # 88
An external audit team needs to view all of your published policies and controls? Which role can you give the team members?
- A. sn_audit_manager
- B. sn_risk_user
- C. sn_compliance_user
- D. sn_audit.external_auditor
Answer: D
NEW QUESTION # 89
What type of customers may you encounter? (Choose three.)
- A. Organization with little to nothing in place already (implementing one or more core ServiceNow GRC applications)
- B. Organization implementing ServiceNow GRC to help ease their Help Desk organization (using other tools to manage other processes)
- C. Organization implementing ServiceNow GRC to help ease their Customer Service organization (using other tools to manage other processes)
- D. Organization recently acquired and had some bad audit findings (using ServiceNow GRC to help restart their process)
- E. Organization undergoing a full GRC transformation (implementing all three core ServiceNow GRC applications at once or in a phased approach)
Answer: A,C,D
NEW QUESTION # 90
What are the risk response options available when responding on an advanced risk assessment?
Choose 2 answers
- A. Required to create at least one risk response task
- B. Skipped entirely based on attributes defined in the RAM
- C. Create one or multiple risk response tasks
- D. Required to create a mitigation response task
Answer: B,C
NEW QUESTION # 91
The content table (sn_grcs_content) is a parent table of:
- A. sn_risk_definition
- B. sn_risk_framework
- C. sn_risk_risk
- D. sn_grc_profile
Answer: D
NEW QUESTION # 92
The Citation table is a child table of which parent?
- A. Content
- B. Item
- C. Authority Document
- D. Document
Answer: C
Explanation:
Reference:
id=community_QUESTIO N NO:&sys_id=ad77b570db309bcc2e247a9e0f96192f
NEW QUESTION # 93
......
Instant Download CIS-RCI Dumps Q&As Provide PDF&Test Engine: https://www.vcedumps.com/CIS-RCI-examcollection.html
Fast Exam Updates CIS-RCI dumps with PDF Test Engine Practice: https://drive.google.com/open?id=1CzoaoS0pUT4EutLGuYOwEUWScFj5uxe1
