CIS-VR Online Practice Questions and Answers
Vulnerability Response can be best categorized as a ____________, focused on identifying and remediating vulnerabilities as early as possible.
A. A proactive process
B. An iterative process
C. A tentative process
D. A reactive process
Where can you find information related to the Common Vulnerabilities and Exposures (CVE)?
A. Tenable
B. MITRE
C. NIST
D. Qualys
Which statement about patching is most correct?
A. Mature organizations abandon patching
B. Patch management and Vulnerability Response are interchangeable terms
C. Patching is one of many responses to a Vulnerability
D. As long as you are patching actively, Vulnerability Response isn't necessary
The Vulnerability Admin role (sn_vul.admin) can modify Vulnerability Application Properties and can be delegated to the following role(s):
A. ServiceNow Security Operations Admin (sn_sec.admin)
B. Security Admin (security.admin)
C. Vulnerability Response Admin (sn_vul_resp.admin)
D. All of the above E. None of the above
In ServiceNow, which plugin needs to be added to enable Vulnerability Integration with Qualys, Tenable, or Rapid7?
A. Vulnerability Response
B. Trusted Security Circles
C. Threat Intelligence
D. Security Incident Response
Ignoring a Vulnerable Item:
A. Permanently removes the item from the list of Active Vulnerable Items
B. Move the item to the Slushbucket
C. Has no impact on the list of Active Vulnerable Items
D. Temporarily removes the item from the list of Active Vulnerable Items
What do Vulnerability Exceptions require?
A. An Approval by default
B. An Exception Workflow
C. A GRC integration
D. A Filter Group
What system property allows for the auto creation of Vulnerability Groups based on the Vulnerable Item's Vulnerability?
A. sn_vul.autocreate_vul_filter_group
B. sn_vul.autocreate_vul_approval_group
C. sn_vul.autocreate_vul_group_item
D. sn_vul.autocreate_vul_centric_group
A common integration point with Vulnerability is:
A. Workflow Mappings
B. Risk Indicators within GRC
C. Service Catalog
D. Knowledge Base
Managers should have access to which role-based data access and visualizations? (Choose three.)
A. Aggregations for priority and workload
B. Time period views
C. Up-to-the-minute views
D. Drill-down to granularity
What Makes leads4pass.com Differ From Others?
There are tens of thousands of certification exam dumps provided on the internet. To keep the exam dumps valid, the exam questions latest and the exam answers accurate should be the first aim. Also, to make the exam PDF and exam VCE simulator easy to use is very important. Besides, leads4pass.com has 100% pass guarantee policy. Free exam demo is available. Customer support team is ready to help at any time when required.
All rights are reserved by leads4pass.com. Any changes, copy or trademarks abuse will be regarded as infringement. leads4pass.com will reserve the right to pursue accountability.
Copyright © 2004-2024 leads4pass.com.