Online CIS-VRM Dumps Help You Understand Questions Well

If you're interested in pursuing the CIS-Vendor Risk Management certification, it's important to understand the exam format and the types of questions you can expect. This is where CIS-VRM questions come in. CIS-VRM exam dumps questions are designed to simulate the actual certification exam, providing you with a deeper understanding of the exam format and what to expect on test day. By taking practice exams and reviewing CIS-VRM questions, you can identify areas where you may need to focus your studying. Study free CIS-VRM exam dumps below.

Page 1 of 2

1. What is the definition of ‘Risk Management’?

Policies/Standards/Procedures established to ensure an organization is aligned with corporate strategy and expectations are clearly defined

The process of conforming to standards, policies, and remediation of audit findings

The elimination of vulnerable surface area in an enterprise environment

Process to identify, assess, and respond to risks, threats and vulnerabilities that could compromise the business

 Loading...

2. A Vendor Risk Task can be created from which of the following records?

Policy, Assessment, Vendor

Risk, Policy, Assessment

Policy, Vendor Risk issue, Assessment

Vendor Risk Issue, Assessment, Vendor

 Loading...

3. A Vendor Risk Assessment that consists of a SIG Lite questionnaire and two document requests are displayed as how many total requests in the Vendor Portal?

2

3

0

1

 Loading...

4. Who is able to change the password for the vendor contact? (Choose two.)

Vendor Contract Relationship Manager

sys_admin

Vendor contact via the Forgot Password link

Vendor Risk Reviewer

 Loading...

5. Which statement accurately describes the visibility and audit history of actions and communications in the Vendor Risk Management application?

The vendor and assessor interactions are captured in the Vendor Risk Issue record and are only visible from the portal view

The Vendor Risk Issues created and the activity and history are lost from the Vendor Assessment Portal when the associated vendor contact changes

The Vendor Risk Issues created and the activity and history will remain in the Vendor Assessment Portal even when vendor contacts change

The vendor and assessor interactions are captured in the Vendor Risk Issue record and are only visible from the platform view

 Loading...

6. Where can the score for each Assessment Metric or Metric Category be configured?

Assessment Metric Category record

Assessment Template record

Assessment record

Assessment Metric Type record

 Loading...

7. A Document Request Template is a record in which table?

Document request item [sn_document_template]

Vendor risk assessment [sn_vdr_risk_asmt_assessment]

Assessment metric category [asmt_metric_category]

Assessment metric type [asmt_metric type]

 Loading...

8. What are the baseline mandatory fields when creating a new Vendor Contact? (Choose three.)

Name (First and Last)

Vendor

Department

Email

Role

 Loading...

9. A Vendor Risk Manager needs to run a report displaying Critical Vendors. On which table would this person run a report?

Company [core_company]

Vendor Risk Issue [sn_var_asmt_issue]

Vendor Contact (vm_vdr_contact]

Vendor Risk Assessment [sn_vdr_risk_asmt_assessment]

 Loading...

10. What third-party vendor security evaluation solutions are commonly integrated with VRM out-of-the-box? (Choose two.)

MyScoreMetrics

Vendor Insights

Bitsight

Security Scorecard

 Loading...

Page 2 of 2

11. What are some of the purposes of a Vendor Risk Issue? (Choose two.)

Log access-related incidents for the vendor portal

Indicate vendors that need further assessment

Accept risks identified in the assessment

Track remediation of compliance gaps

 Loading...

12. Vendor Risk Tasks are saved to which one of the following tables?

[task]

[planned_task]

[sn_vendor_risk_task]

[sn_vdr_risk_asmt_task]

 Loading...

13. Which of the following is the main benefit of using the Vendor Portal?

Assessments are performed via the Vendor Portal and spreadsheets

More efficiently communicating Assessments with a single contact

Assessments are shared through the Vendor Portal and email

More efficiently completing Assessments via the Vendor Portal

 Loading...

14. On which of the following tables can you create vendor risk reports? (Choose three.)

Company [core_company]

Vendor Risk Assessment [sn_vdr_risk_asmt_assessment]

Vendor Risk Issue [sn_vdr_risk_asmt_issue]

Vendor Contact [vm_vendor_contact]

Vendor Activity [vm_vendor_activity]

 Loading...

15. Which functions can be performed in the Vendor Portal? (Choose three.)

Assessment response

Contact Management

Issue remediation

Schedule web meetings

Requests via virtual agent

 Loading...

16. In order to evaluate a vendor on a recurring basis, configure a record in this table:

Repeating Surveys

Assessment Metric

Repeating Assessments

Assessment Metric Type

 Loading...

17. The VRM issue management process is frequently unique to an organization.

What two ServiceNow provided building blocks were covered in this course to help with customer needs that might arise during the lifecycle of VRM issues? (Choose two.)

Flow Designer

Service Management

Workflow Editor

Incident Management

 Loading...

18. Before any changes to the configuration of an application are made, it is recommended that the correct update set and application scope are selected.

What role is required for this functionality?

The Vendor Administrator role is required for this functionality

The Data Administrator role is required for this functionality

The User Administrator role is required for this functionality

The System Administrator role is required for this functionality

 Loading...

 Loading...