
合格させちゃうVulnerability Response Implementation CIS-VR試験簡単かつ正確なPDF問題 [2025年06月17日]
CIS-VR認証試験問題集解答を提供しています
質問 # 16
A list of software weaknesses is known as:
- A. National Vulnerability Database (NVD)
- B. Common Weaknesses Enumeration (CWE)
- C. National Institute of Science and Technology (NIST)
- D. Common Vulnerability and Exposure (CVE)
正解:B
質問 # 17
When an approval is rejected for a Vulnerable Item exception, what happens to the State field for that record?
- A. It is set to 'New'
- B. It is set to 'In Review'
- C. It reverts to 'Analysis'
- D. It will be set back to its previous value
正解:D
解説:
https://docs.servicenow.com/en-US/bundle/vancouver-security-management/page/product/vulnerability-response
質問 # 18
What do Vulnerability Exceptions require?
- A. An Approval by default
- B. A GRC integration
- C. A Filter Group
- D. An Exception Workflow
正解:A
質問 # 19
What is the best way to develop a complete list of Vulnerability Reports?
- A. Recommend that the client purchase the full Performance Analytics package.
- B. Ask the CISO.
- C. Work with the customer to identify the things that will be most useful to them.
- D. Use the standard out of the box reports only.
正解:B
質問 # 20
To facilitate the remediation of a Vulnerable Item what type of item is most commonly used?
- A. Create a Security Incident
- B. Create a Problem
- C. Create a KB article
- D. Create a Change
正解:A
質問 # 21
The Vulnerability Admin role (sn_vul.admin) can modify Vulnerability Application Properties and can be delegated to the following role(s):
- A. Vulnerability Response Admin (sn_vul_resp.admin)
- B. None of the above
- C. All of the above
- D. ServiceNow Security Operations Admin (sn_sec.admin)
- E. Security Admin (security.admin)
正解:D
質問 # 22
Items in the ServiceNow Store are built and supported by:
- A. The company that created the Application
- B. ServiceNow Technical Support
- C. An Implementation Partner
- D. ServiceNow Professional Services
正解:A
質問 # 23
To get useful reporting regarding the most vulnerable CI's, which statement applies?
- A. Your CI population must be huge.
- B. Your CMDB must be up to date and useful.
- C. You must have good KPi's defined.
- D. You must purchase a separate PA module.
正解:A
質問 # 24
Filter Groups can be used in Vulnerability Response to group what type of vulnerability records?
- A. Vulnerable Items
- B. Vulnerable Software
- C. Vulnerability groups
- D. Third Party Entries
正解:A
解説:
Explanation/Reference:
Reference https://docs.servicenow.com/bundle/orlando-security-management/page/product/vulnerability- response/concept/vulnerability-groups.html
質問 # 25
This functionality provides a simple way to build criteria once, which can be reused in other platform areas.
- A. Conditions
- B. Filters
- C. Favorites
- D. Filte Group
正解:D
解説:
"Create and use filter groups to locate records from any table on your instance. For example, you can create a group of all computers by the same manufacturer. You can also filter configuration items (CIs) that have similar vulnerabilities or that fall within a particular subnet IP address range." https://docs.servicenow.com/bundle/washingtondc-security-management/page/product/security-operations-common/task/create-filter-group.html
質問 # 26
sn_vul.itsm_popup is the property that is set to True or False based on the customer desire for a popup when creating a Problem or Change record from a Vulnerability or VI record.
- A. True
- B. False
正解:B
解説:
Explanation/Reference: https://docs.servicenow.com/bundle/istanbul-security-management/page/product/vulnerability- response/reference/r_PropVuln.html
質問 # 27
What is the ID associated with the Vulnerability Response plugln?
- A. com.snc.securityjncident
- B. com.snc.threat.feeds
- C. com.snc.threat.intelllgence
- D. com.snc.vulnerability
正解:B
質問 # 28
To ensure that Vulnerabilities are processed correctly, you can define a Service Level Agreement (SLA) for Vulnerability Response. To achieve this you would:
- A. Log in as a system admin, and using the globally scoped baseline SLA Modules
- B. Create a custom workflow to monitor the time between States
- C. Have the role of Vulnerability admin, but only in the Vulnerability Scope
- D. Make sure you have at least the sn_vul.vulnerability_write role and using the baseline SLA Application Modules
正解:C
解説:
https://docs.servicenow.com/bundle/vancouver-security-management/page/product/vulnerability-response/task/t_CreateVulnSLA.html
質問 # 29
What must Vulnerability Exceptions be supplied by default?
- A. A manual approval authority for the exception
- B. Requirement Actions for the exception
- C. Integrations with GRC to handle the exception
- D. A reason for the exception
正解:B
質問 # 30
Which of the following can NOT be used for building Vulnerability Groups?
- A. Condition Builder
- B. Vulnerability
- C. Advanced Scripts
- D. Filter Groups
正解:C
解説:
Explanation/Reference: https://docs.servicenow.com/bundle/orlando-security-management/page/product/vulnerability- response/concept/vulnerability-groups.html
質問 # 31
in regard to the Security Operations Process, which of the following statements defines the "identify" phase?
- A. What techniques can restore capabilities?
- B. What techniques can identify incidents?
- C. What techniques can contain impacts of incidents?
- D. What safeguards are available?
- E. What processes and assets need protection?
正解:D
質問 # 32
The components Installed with Vulnerability Response Include:
- A. Ul Pages. Business Rules, Vulnerability Scanners
- B. Business Rules, Roles, Workflows
- C. Properties, Client Scripts, Wizards
- D. Tables, Scheduled Jobs, Security Operations Common
正解:D
解説:
https://docs.servicenow.com/bundle/vancouver-security-management/page/product/vulnerability-response/refere
質問 # 33
Ignoring a Vulnerable item:
- A. Has no impact on the list of Active Vulnerable Items
- B. Move the item to the Slushbucket
- C. Temporarily removes the item from the list of Active Vulnerable items
- D. Permanently removes the item from the list of Active Vulnerable items
正解:D
質問 # 34
Qualys asset tags can be loaded into a table related to the configuration item and used to support business processes or reporting. Set the Qualys Host parameter of asset_tags to a value of __________ to have asset tag information from Qualys be included in the XML payload.
- A. 0
- B. 1
- C. 2
- D. 3
正解:A
質問 # 35
Which of the following can NOT be used for building Vulnerability Groups?
- A. Condition Builder
- B. Vulnerability
- C. Advanced Scripts
- D. Filter Groups
正解:D
質問 # 36
Vulnerability Response can be best categorized as a_______, focused on identifying and remediating vulnerabilities as early as possible.
- A. A reactive process
- B. A tentative process
- C. A proactive process
- D. An iterative process
正解:B
質問 # 37
In order for Vulnerability admins to configure integrations, they must have the following Role(s):
- A. admin and sn_vul_qualys.admin
- B. sn_vul.admin only
- C. sn_vul.vulnerability_write
- D. admin only
正解:B
質問 # 38
When an approval is rejected for a Vulnerable Item exception, what happens to the State field for that record?
- A. It is set to 'New'
- B. It is set to 'In Review'
- C. It reverts to 'Analysis'
- D. It will be set back to its previous value
正解:D
解説:
https://docs.servicenow.com/en-US/bundle/vancouver-security-management/page/product/vulnerability-response/concept/vr-exception-management.html
質問 # 39
If a customer expects to ingest 2 million vulnerabilities during it's initial load, which instance size should you recommend?
- A. XL
- B. Ultra
- C. XXL
- D. L
正解:C
解説:
Note: Request an instance size based on the following guidelines: * Instance size XL for less than 1 million vulnerabilities * Instance size XXL for 1 - 2.5 million vulnerabilities * Instance size Ultra for more than 2.5 million vulnerabilities
質問 # 40
What type of data would the CIO/CISO want on the dashboard?
- A. Drill-down to granularity
- B. Aggregations for priority and workload
- C. Single, clear indicators of organizational health
- D. Up to the minute views
正解:B
質問 # 41
......
検証済みで更新されたCIS-VR問題集と解答で100%一発合格保証の問題集:https://drive.google.com/open?id=1PL4j3JG62LusKLbp_kb2DdBRBgrEL-fk
更新されたCIS-VR試験練習テスト問題:https://jp.fast2test.com/CIS-VR-premium-file.html