ServiceNow - Vulnerability Response Exam
UPDATED ACTUAL QUESTIONS AND
CORRECT ANSWERS
What is the best way to develop a complete list of Vulnerability Reports?
A. Recommend that the client purchase the full Performance Analytics package
B. Ask the CISO
C. Work with the customer to identify the things that will be most useful to them
D. Use the standard out-of-the-box reports only - CORRECT ANSWER C
The three levels of users you will likely encounter that will need access to data displayed in
the Vulnerability Response dashboard are: (Choose three.)
A. Security Analysts
B. Customers
C. CIO/CISO
D. Fulfillers - CORRECT ANSWER A, B, C
What type of data would the CIO/CISO want on the dashboard?
A. Aggregations for priority and workload
B. Drill-down to granularity
C. Single, clear indicators of organizational health
D. Up to the minute views - CORRECT ANSWER C
To get useful reporting regarding the most vulnerable CI's, which statement applies?
A. You must purchase a separate PA module
,B. Your CI population must be huge
C. You must have good KPI's defined
D. Your CMDB must be up to date and useful - CORRECT ANSWER D
(CHECK ANSWER) Managers should have access to which role-based data access and
visualizations? (Choose three.)
A. Aggregations for priority and workload
B. Time period views
C. Up-to-the-minute views
D. Drill-down to granularity - CORRECT ANSWER A, B, D
What role is required to view the Vulnerability Overview Dashboard?
A. sn_vul.vulnerability.read
B. sn_vul.manager
C. sn_vul.ciso
D. sn_vul.vulnerability.write - CORRECT ANSWER A
(CHECK ANSWER) To ensure that Vulnerabilities are processed correctly, you can define a
Service Level Agreement (SLA) for Vulnerability Response. To achieve this, you would:
A. Create a custom workflow to monitor the time between States
B. Log in as a system admin, and using the globally scoped baseline SLA Modules
C. Have the role of Vulnerability admin, but only in the Vulnerability Scope
D. Make sure you have at least the sn_vul.vulnerability_write role and using the baseline
SLA Application Modules - CORRECT ANSWER D
Which of the following best describes the Vulnerable Item State Approval Workflow?
, A. It is read-only, you can only change the Assignment Group members for the approval
B. It exists in the Security Operations Common scope so it can be modified by any Security
Operations Admin
C. It can only be modified by System Administrators
D. It runs against the [sn_vul_change_approval] table - CORRECT ANSWER D
What is the ServiceNow application used for process automation?
A. Knowledge Base
B. Workflows
C. SLAs
D. Service Catalog - CORRECT ANSWER B
Which of the following is a common integration point between Vulnerability and GRC?
A. Security Incident Response
B. Change
C. Problem
D. Risk Indicators - CORRECT ANSWER A
A common integration point with Vulnerability is:
A. Workflow Mappings
B. Risk Indicators within GRC
C. Service Catalog
D. Knowledge Base - CORRECT ANSWER B
If fixing a Vulnerable Item outweighs the benefits, the correct course of action is:
UPDATED ACTUAL QUESTIONS AND
CORRECT ANSWERS
What is the best way to develop a complete list of Vulnerability Reports?
A. Recommend that the client purchase the full Performance Analytics package
B. Ask the CISO
C. Work with the customer to identify the things that will be most useful to them
D. Use the standard out-of-the-box reports only - CORRECT ANSWER C
The three levels of users you will likely encounter that will need access to data displayed in
the Vulnerability Response dashboard are: (Choose three.)
A. Security Analysts
B. Customers
C. CIO/CISO
D. Fulfillers - CORRECT ANSWER A, B, C
What type of data would the CIO/CISO want on the dashboard?
A. Aggregations for priority and workload
B. Drill-down to granularity
C. Single, clear indicators of organizational health
D. Up to the minute views - CORRECT ANSWER C
To get useful reporting regarding the most vulnerable CI's, which statement applies?
A. You must purchase a separate PA module
,B. Your CI population must be huge
C. You must have good KPI's defined
D. Your CMDB must be up to date and useful - CORRECT ANSWER D
(CHECK ANSWER) Managers should have access to which role-based data access and
visualizations? (Choose three.)
A. Aggregations for priority and workload
B. Time period views
C. Up-to-the-minute views
D. Drill-down to granularity - CORRECT ANSWER A, B, D
What role is required to view the Vulnerability Overview Dashboard?
A. sn_vul.vulnerability.read
B. sn_vul.manager
C. sn_vul.ciso
D. sn_vul.vulnerability.write - CORRECT ANSWER A
(CHECK ANSWER) To ensure that Vulnerabilities are processed correctly, you can define a
Service Level Agreement (SLA) for Vulnerability Response. To achieve this, you would:
A. Create a custom workflow to monitor the time between States
B. Log in as a system admin, and using the globally scoped baseline SLA Modules
C. Have the role of Vulnerability admin, but only in the Vulnerability Scope
D. Make sure you have at least the sn_vul.vulnerability_write role and using the baseline
SLA Application Modules - CORRECT ANSWER D
Which of the following best describes the Vulnerable Item State Approval Workflow?
, A. It is read-only, you can only change the Assignment Group members for the approval
B. It exists in the Security Operations Common scope so it can be modified by any Security
Operations Admin
C. It can only be modified by System Administrators
D. It runs against the [sn_vul_change_approval] table - CORRECT ANSWER D
What is the ServiceNow application used for process automation?
A. Knowledge Base
B. Workflows
C. SLAs
D. Service Catalog - CORRECT ANSWER B
Which of the following is a common integration point between Vulnerability and GRC?
A. Security Incident Response
B. Change
C. Problem
D. Risk Indicators - CORRECT ANSWER A
A common integration point with Vulnerability is:
A. Workflow Mappings
B. Risk Indicators within GRC
C. Service Catalog
D. Knowledge Base - CORRECT ANSWER B
If fixing a Vulnerable Item outweighs the benefits, the correct course of action is:
