CIS VR Study Guide Exam UPDATED
ACTUAL QUESTIONS AND CORRECT
ANSWERS
What are the three core applications in ServiceNow Security Operations?
A. Vulnerability Response (VR), Security Information and Event Management (SIEM),
Security Posture Management (SPM)
B. Vulnerability Response, Security Incident Response (SIRI), Threat Intelligence (TI)
C. Vulnerability Response, Threat Database (TD), Security Response (SR) - CORRECT
ANSWER B
What are Maturity Level 2 outcomes? Select 2.
A. All remediation actions have a coinciding change request using the existing company
methodology in ServiceNow
B. Maturing of CMDB w/ scanner discovered assets
C. Complete vulnerability lifecycle management
D. Immediate Improved accountability
E. Complete customer defined deferral/risk acceptance methodology integrated into
ServiceNow - CORRECT ANSWER C, E
What are the responsibilities of a remediation owner? Select 3.
A. Approves exceptions, deferrals and closures of VI's and RT's
B. Has write access to the internal notes field on the solution record
C. Can view and update Vulnerable Items and Remediation Tasks
D. Assign remediation tasks
E. Can view all vulnerabilities and solutions
F. Manages unmatched CIs not found in the CMDB - CORRECT ANSWER B, C, F
Security Champion is responsible for the acknowledgement and assignment of relevant
Application Vulnerable Items (AVI)
, A. False
B. True - CORRECT ANSWER B
What are the properties of a Remediation Task? Select all that apply.
A. Extends from Task table
B. Service levels are tracked using remediation target rules
C. Created from Remediation Task rules or manually
D. Platform SLA's cannot be defined
E. Can be split - CORRECT ANSWER A, C, E
What are the components of application vulnerability response? Select all that apply.
A. No Remediation Tasks
B. Summary field on the AVIT form is editable
C. Extends from the Vulnerable Item table
D. State is managed in the source application
E. Business rules are separate from Vulnerable Item Business Rules - CORRECT
ANSWER A, D, E
What are the properties of a Vulnerable Item? Select 3.
A. Can relate to multiple Remediation Tasks
B. Does not extend from Task
C. SLA's can be defined
D. It is a specific Vulnerability that relates to a Configuration Item (CI)
E. Detections are not related or displayed - CORRECT ANSWER A, B, D
Qualys plugin does not create a new application with several modules for managing your
Qualys integration.
A. false
B. True - CORRECT ANSWER A
ACTUAL QUESTIONS AND CORRECT
ANSWERS
What are the three core applications in ServiceNow Security Operations?
A. Vulnerability Response (VR), Security Information and Event Management (SIEM),
Security Posture Management (SPM)
B. Vulnerability Response, Security Incident Response (SIRI), Threat Intelligence (TI)
C. Vulnerability Response, Threat Database (TD), Security Response (SR) - CORRECT
ANSWER B
What are Maturity Level 2 outcomes? Select 2.
A. All remediation actions have a coinciding change request using the existing company
methodology in ServiceNow
B. Maturing of CMDB w/ scanner discovered assets
C. Complete vulnerability lifecycle management
D. Immediate Improved accountability
E. Complete customer defined deferral/risk acceptance methodology integrated into
ServiceNow - CORRECT ANSWER C, E
What are the responsibilities of a remediation owner? Select 3.
A. Approves exceptions, deferrals and closures of VI's and RT's
B. Has write access to the internal notes field on the solution record
C. Can view and update Vulnerable Items and Remediation Tasks
D. Assign remediation tasks
E. Can view all vulnerabilities and solutions
F. Manages unmatched CIs not found in the CMDB - CORRECT ANSWER B, C, F
Security Champion is responsible for the acknowledgement and assignment of relevant
Application Vulnerable Items (AVI)
, A. False
B. True - CORRECT ANSWER B
What are the properties of a Remediation Task? Select all that apply.
A. Extends from Task table
B. Service levels are tracked using remediation target rules
C. Created from Remediation Task rules or manually
D. Platform SLA's cannot be defined
E. Can be split - CORRECT ANSWER A, C, E
What are the components of application vulnerability response? Select all that apply.
A. No Remediation Tasks
B. Summary field on the AVIT form is editable
C. Extends from the Vulnerable Item table
D. State is managed in the source application
E. Business rules are separate from Vulnerable Item Business Rules - CORRECT
ANSWER A, D, E
What are the properties of a Vulnerable Item? Select 3.
A. Can relate to multiple Remediation Tasks
B. Does not extend from Task
C. SLA's can be defined
D. It is a specific Vulnerability that relates to a Configuration Item (CI)
E. Detections are not related or displayed - CORRECT ANSWER A, B, D
Qualys plugin does not create a new application with several modules for managing your
Qualys integration.
A. false
B. True - CORRECT ANSWER A
