Summer Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: exc65

As a customer reaches greater GRC maturity, what can we expect to see occurring across their organization? (Choose three.)

A.

Single Risk and Control frameworks across enterprise available to all stakeholders

B.

Reliance on spreadsheet management for risk reporting

C.

Continuous real-time monitoring of control performance

D.

Cross-functional process automation

E.

Reactive strategies for GRC activities

How does GRC: Policy and Compliance Management track compliance to Authority Documents?

A.

Citations are mapped to entity-scoped controls, which are tested as compliant or non-compliant.

B.

Authority Documents are mapped to individual policies, which are either marked compliant or non-compliant.

C.

Authority Documents are mapped to control objectives and compliance is checked when controls are tested as compliant or non-compliant.

D.

Citations are mapped to control objectives, and compliance is checked when controls are tested as compliant or non-compliant.

Which of the following extends from items?

A.

Citation

B.

Controls

C.

Issue

D.

Policy

What are some characteristics of the ServiceNow Store? (Choose four.)

A.

Some applications are certified by ServiceNow

B.

All applications are certified by ServiceNow

C.

Applications may be developed by ServiceNow Technology Partners

D.

It houses both paid and free applications and integrations

E.

Applications are built om the ServiceNow platform

F.

Applications are certified by other developers

Service Level Agreements can be used for the which of the following? (Choose two.)

A.

Risk Issues

B.

Risk

C.

Risk Statement

D.

Risk Response Task

E.

Risk Framework

To allow other applications to request a policy exception, you must complete the integration registry form. In addition to providing the name of the registry entry, what additional information is needed to complete the form?

A.

You must indicate the audience for requesting policy exceptions

B.

You must indicate the intended Service Portal

C.

You must indicate the policy exception target table

D.

You must indicate the allowed policy acknowledgement campaigns

What ensures that every time you create an Entity from a specific table, the Class of the Entity is set according to the rule?

A.

Entity class rules

B.

Entity business rules

C.

Entity class assignment

D.

Entity type rules

What new related list was added to the risk statement and entity records after migrating to advanced risk assessment?

A.

Aggregated risk related list

B.

Risk assessments related list

C.

Risk tolerance related list

D.

Assessment instances related list

For classic risk assessment, while a Risk is in the Assess state, reviewers can do which of the following? (Choose two.)

A.

Answer the assessment, moving the Risk to Respond

B.

Set the Risk to Monitor

C.

Delete the Risk

D.

Set the Risk back to Draft

Setting up entity classes is required when using which GRC features? (Choose two.)

A.

Setting up an object-based risk assessment

B.

Adding to the policy exception integration registry

C.

Assessing the impact of a regulatory feed

D.

Leveraging classic risk assessments

E.

Leveraging advanced risk assessments