
[2025年02月最新リリース]CIS-VR試験問題はあなたをパスさせる
ServiceNow CIS-VR試験基本問題とアンサー
質問 # 23
What do Vulnerability Exceptions require?
- A. An Exception Workflow
- B. An Approval by default
- C. A GRC integration
- D. A Filter Group
正解:A
解説:
https://docs.servicenow.com/bundle/vancouver-security-management/page/product/vulnerability-response/task/a
質問 # 24
SLAs are used to ensure VUL are processed in a timely matter. Which field is used to determine the expected timeframe for remediating a VIT?
- A. Remediation status
- B. Remediation target
- C. Updated
- D. Closed
正解:B
解説:
Explanation/Reference: https://docs.servicenow.com/bundle/orlando-security-management/page/product/vulnerability- response/concept/time-to-remediate-rules.html
質問 # 25
To ensure that Vulnerabilities are processed correctly, you can define a Service Level Agreement (SLA) for Vulnerability Response. To achieve this you would:
- A. Create a custom workflow to monitor the time between States
- B. Log in as a system admin, and using the globally scoped baseline SLA Modules
- C. Make sure you have at least the sn_vul.vulnerability_write role and using the baseline SLA Application Modules
- D. Have the role of Vulnerability admin, but only in the Vulnerability Scope
正解:D
解説:
https://docs.servicenow.com/bundle/vancouver-security-management/page/product/vulnerability-response/task/t_CreateVulnSLA.html
質問 # 26
sn_vul.itsm_popup is the properly that is set to True or False based on the customer desire for a popup when creating a Problem or Change record from a Vulnerability or VI record.
- A. False
- B. True
正解:B
質問 # 27
When an approval is rejected for a Vulnerable Item exception, what happens to the State field for that record?
- A. It is set to 'New'
- B. It reverts to 'Analysis'
- C. It will be set back to its previous value
- D. It is set to 'In Review'
正解:C
解説:
https://docs.servicenow.com/en-US/bundle/vancouver-security-management/page/product/vulnerability-response
質問 # 28
The components Installed with Vulnerability Response Include:
- A. Tables, Scheduled Jobs, Security Operations Common
- B. Properties, Client Scripts, Wizards
- C. Ul Pages. Business Rules, Vulnerability Scanners
- D. Business Rules, Roles, Workflows
正解:D
質問 # 29
What do Vulnerability Exceptions require?
- A. An Exception Workflow
- B. An Approval by default
- C. A GRC integration
- D. A Filter Group
正解:A
解説:
https://docs.servicenow.com/bundle/vancouver-security-management/page/product/vulnerability-response/task/add-exception-approver.html
質問 # 30
Which one of the following record types can be considered the intersection of Vulnerability source information and CMDB CI records?
- A. Vulnerability Task
- B. Vulnerable Item (VI)
- C. CMDB_CI_Vuln
- D. Vulnerability
正解:B
解説:
Explanation/Reference: https://docs.servicenow.com/bundle/orlando-security-management/page/product/vulnerability- response/reference/vulnerable-item-fields.html
質問 # 31
Where can you find information related to the Common Vulnerabilities and Exposures (CVE)?
- A. Qualys
- B. MITRE
- C. Tenable
- D. NIST
正解:D
解説:
Explanation/Reference: https://docs.servicenow.com/bundle/orlando-security-management/page/product/vulnerability- response/concept/c_VulnerabilityResponse.html
質問 # 32
Ignoring a Vulnerable item:
- A. Temporarily removes the item from the list of Active Vulnerable items
- B. Move the item to the Slushbucket
- C. Has no impact on the list of Active Vulnerable Items
- D. Permanently removes the item from the list of Active Vulnerable items
正解:D
質問 # 33
This functionality provides a simple way to build criteria once, which can be reused in other platform areas.
- A. Filters
- B. Favorites
- C. Conditions
- D. Filte Group
正解:D
解説:
"Create and use filter groups to locate records from any table on your instance. For example, you can create a group of all computers by the same manufacturer. You can also filter configuration items (CIs) that have similar vulnerabilities or that fall within a particular subnet IP address range."https://docs.servicenow.com/bundle/washingtondc-security-management/page/product/security-operation
質問 # 34
What is the purpose of Scoped Applications?
- A. Suppliers can only charge for applications when they are scoped
- B. Scoped applications are scalable, Global applications are not
- C. Scoping encapsulates and protects data and functionality
- D. An application needs to be scoped in order to be deployed as a plugin
正解:C
解説:
Explanation/Reference: https://docs.servicenow.com/bundle/orlando-application-development/page/build/applications/ concept/c_ApplicationScope.html
質問 # 35
What type of data would the CIO/CISO want on the dashboard?
- A. Up to the minute views
- B. Drill-down to granularity
- C. Single, clear indicators of organizational health
- D. Aggregations for priority and workload
正解:C
質問 # 36
Qualys asset tags can be loaded into a table related to the configuration item and used to support business processes or reporting. Set the Qualys Host parameter of asset_tags to a value of___to have asset taginformation from Qualys be included in the XML payload.
- A. 0
- B. 1
- C. 2
- D. 3
正解:A
質問 # 37
In order to more easily manage large sets of Vulnerable Items, you would want to create:
- A. Filter Groups
- B. Script Includes
- C. Vulnerability Groups
- D. Vulnerability Sets
正解:C
質問 # 38
ServiceNow Vulnerability Response tables typically start with which prefix?
- A. vul_
- B. sn_vul_
- C. snvr_
- D. snvuln_
正解:B
解説:
Explanation/Reference: https://docs.servicenow.com/bundle/jakarta-security-management/page/product/vulnerability- response/reference/r_TblVnlnlMgmt.html
質問 # 39
Which module within the Vulnerability Response application could be used to get information from the National Vulnerability Database (NVD) at any moment?
- A. NVD Auto-Update
- B. NVD Patch
- C. On-Demand Update
- D. Vulnerable Software
正解:A
解説:
Explanation/Reference: https://docs.servicenow.com/bundle/orlando-security-management/page/product/vulnerability- response/concept/c_NVDAndCWEDataImport.html#c_NVDAndCWEDataImport
質問 # 40
If fixing a Vulnerable Item outweighs the benefits, the correct course of action is:
- A. Record the accepted risk and Close/Defer the Vulnerable Item
- B. Deprioritize the Vulnerable item Records (VlT) to push them further down the list so it can be ignored
- C. Add the Cl to the Vulnerability Scanners exclusions Related List
- D. Mark the CI inactive in the CMDB and notify the CI owner
正解:D
質問 # 41
Which of the following is the property that controls whether Vulnerability Groups are created by default based on Vulnerabilities in the system?
- A. sn_vul.autocreate_vul_grouping
- B. sn_vul.autocreate_groups
- C. sn_vul.create_default_vul_groups
- D. sn_vul.autocreate_vul_centric_group
正解:D
解説:
"When true, automatically creates a Remediation Task when a vulnerable item is created for a vulnerability entry that does not yet have a group (for Vulnerability Centric functionality)"
質問 # 42
This functionality provides a simple way to build criteria once, which can be reused in other platform areas.
- A. Favorites
- B. Filters
- C. Filte Group
- D. Conditions
正解:A
質問 # 43
The components Installed with Vulnerability Response Include:
- A. Business Rules, Roles, Workflows
- B. Properties, Client Scripts, Wizards
- C. Ul Pages. Business Rules, Vulnerability Scanners
- D. Tables, Scheduled Jobs, Security Operations Common
正解:D
解説:
https://docs.servicenow.com/bundle/vancouver-security-management/page/product/vulnerability-response/reference/installed-with-vr.html
質問 # 44
What must Vulnerability Exceptions be supplied by default?
- A. Integrations with GRC to handle the exception
- B. A manual approval authority for the exception
- C. Requirement Actions for the exception
- D. A reason for the exception
正解:C
質問 # 45
Select the three components of a Fitter Condition: Choose 3 answers
- A. Field
- B. Operator
- C. Value
- D. Sum
正解:D
質問 # 46
A common Integration point with Vulnerability is:
- A. Workflow Mappings
- B. Knowledge Base
- C. Risk Indicators within GRC
- D. Service Catalog
正解:A
質問 # 47
When an approval is rejected for a Vulnerable Item exception, what happens to the State field for that record?
- A. It is set to 'New'
- B. It reverts to 'Analysis'
- C. It will be set back to its previous value
- D. It is set to 'In Review'
正解:C
解説:
https://docs.servicenow.com/en-US/bundle/vancouver-security-management/page/product/vulnerability-response/concept/vr-exception-management.html
質問 # 48
......
ServiceNow CIS-VR (認定実装スペシャリスト - 脆弱性レスポンス) 認定試験は、ServiceNow プラットフォームを使用して脆弱性レスポンスソリューションを実装および管理するスキルと専門知識を検証する業界で認められた認定試験です。この認定試験は、IT セキュリティとリスク管理、脆弱性管理、およびインシデント対応に従事するプロフェッショナルに最適です。試験では、候補者の脆弱性レスポンスワークフローの設定と管理、サードパーティツールとの統合、および脆弱性評価と修復の能力がテストされます。
ServiceNow認定実装スペシャリスト-脆弱性対応(CIS-VR)認定試験は、ServiceNowプラットフォームの脆弱性対応モジュールを実装および管理する責任を持つ個人を対象としています。この認定試験は、ServiceNow脆弱性対応アプリケーションを構成、管理、使用してセキュリティ脆弱性を特定、評価、および修復するための候補者の知識とスキルを検証します。
2025年最新のリアルな無料ServiceNow CIS-VR試験問題集問題と解答:https://jp.fast2test.com/CIS-VR-premium-file.html
CIS-VR練習テストエンジン購入前に試そう62試験問題:https://drive.google.com/open?id=1PL4j3JG62LusKLbp_kb2DdBRBgrEL-fk