Is the CIS-VRM practice exam free?

Yes. ExamCademy offers all 60 CIS-VRM practice questions for free with a registered account. No payment needed. Optional supporter features add AI explanations and spaced repetition study tools.

How accurate are the CIS-VRM practice questions?

All CIS-VRM questions are community-created and reviewed by moderators to align with ServiceNow's published exam objectives. The community continuously reports and fixes issues to keep content accurate and up to date.

How should I study for the CIS-VRM exam?

Start by browsing practice questions to identify weak areas. Use spaced repetition (Learn Mode) to focus study time on topics you struggle with. Combine practice questions with official ServiceNow documentation and hands-on experience for best results.

CIS-VRM Practice Exam — Free 60+ Questions

60Practice Questions

3Study Modes

FreeTo Get Started

Sort:

Question 1

Question 2

Question 3

Question 4

Question 5

Question 6

Question 7

Question 8

Question 9

Question 10

Question 11

Question 12

Question 13

Question 14

Question 15

Question 16

Question 17

Question 18

Question 19

Question 20

Question 21

Question 22

Question 23

Question 24

That's the end of the Preview

This exam has 60 community-verified practice questions. Create a free account to access all questions, comments, and explanations.

Log In / Sign Up

Page 1 of 3 • Questions 1-25 of 60

1 2 3

→

Know a question that should be here? Contribute to this exam

Before any changes to the configuration of an application are made, it is recommended that the correct update set and application scope are selected. What role is required for this functionality?

A The Vendor Administrator role is required for this functionality
B The Data Administrator role is required for this functionality
C The User Administrator role is required for this functionality
D The System Administrator role is required for this functionality

What is the definition of ‘Risk Management’?

A Policies/Standards/Procedures established to ensure an organization is aligned with corporate strategy and expectations are clearly defined
B The process of conforming to standards, policies, and remediation of audit findings
C The elimination of vulnerable surface area in an enterprise environment
D Process to identify, assess, and respond to risks, threats and vulnerabilities that could compromise the business

Which of the following is the main benefit of using the Vendor Portal?

A Assessments are performed via the Vendor Portal and spreadsheets
B More efficiently communicating Assessments with a single contact
C Assessments are shared through the Vendor Portal and email
D More efficiently completing Assessments via the Vendor Portal

Which statement best describes the role assignment of vendor contacts in Vendor Risk Management?

A When vendor contacts are created, they are automatically assigned the snc_internal role and the snc_external role
B When vendor contacts are created, they must be manually assigned the snc_external role
C When vendor contacts are created, they are automatically assigned the snc_internal role
D When vendor contacts are created, they are automatically assigned the snc_external role

What can a vendor contact do in the Vendor Portal? (Choose four.)

A Update answers to returned questionnaires
B Communicate or share information with other vendors of the assessing organization
C Create new issues and tasks for the vendor risk assessor team
D Review and respond to issues created by the assessing organization
E Manage vendor contacts and task assignments within the vendor organization
F Respond to assessments sent by the assessing organization

To what type of assessment record can a vendor contact respond?

A Vendor tiering assessment
B Vendor risk assessment
C Customer assessment
D External monitoring assessment

What are the features of Vendor Risk Issues? (Choose two.)

A Generate audit tasks for the vendor risk team
B Can only be seen by the customer’s vendor risk team
C Provide vendor direct access to update and respond to Issues
D Can be generated on-demand or automatically due to an incorrect answer

Who is able to change the password for the vendor contact? (Choose two.)

A Vendor Contract Relationship Manager
B sys_admin
C Vendor contact via the Forgot Password link
D Vendor Risk Reviewer

Which GRC records can be related to an Entity? (Choose three.)

A Entity Types
B Vendors
C Risks
D Policies
E Controls

A vendor is assessed and responds to a question which impacts one of the Controls applied to them. When is the Control Status updated?

A When the Vendor Risk Assessment State is Responses Received
B When the Vendor Risk Assessment State is Finalizing with Vendor or Closed
C When the Vendor Risk Assessment response is saved
D When all Questions in the Vendor Risk Assessment have a response

A Vendor Risk Manager needs to run a report displaying Critical Vendors. On which table would this person run a report?

A Company [core_company]
B Vendor Risk Issue [sn_var_asmt_issue]
C Vendor Contact (vm_vdr_contact]
D Vendor Risk Assessment [sn_vdr_risk_asmt_assessment]

Key data sources for Vendor Risk reporting include which of the following tables? (Choose two.)

A Vendor Risk Assessment [sn_vdr_risk_asmt_assessment]
B Questionnaire Templates [asmt_metric_type]
C Vendor Benchmark Scores [sn_vdr_client_score]
D Survey Scores [snc_survey_scores]
E Vendor Risk Issue [sn_vdr_risk_asmt_issue]

If clean data is not provided by the customer, what baseline solutions are available within the platform? (Choose three.)

A Integration hub ETL plugin
B Field normalization plugin
C Service graph connector
D System definition fix scripts module
E System import transform map scripts

On the Contact record, there is a field for the Vendor name. This is which field (with a label change) from the sys_user table?

A sn_vendor
B company_name
C company
D vendor_name

All Assessment Metrics within a Metric Category are scored, are rolled up, and get a score of.

A 0-5
B 0-100
C 0-20
D 0-10

The Template Designer contains which of the following elements? (Choose two.)

A Option to create an Assessment Template and assign to a vendor
B Properties for the supported question data types
C Options to weight questions or sections
D Design canvas for creating the questions and answers

A Document Request Template is a record in which table?

A Document request item [sn_document_template]
B Vendor risk assessment [sn_vdr_risk_asmt_assessment]
C Assessment metric category [asmt_metric_category]
D Assessment metric type [asmt_metric type]

Vendor Risk Tasks are saved to which one of the following tables?

A [task]
B [planned_task]
C [sn_vendor_risk_task]
D [sn_vdr_risk_asmt_task]

Vendor Risk Issues are usually created in which stage of an Assessment?

A Responses Received
B Generating Observations
C Submitted to Vendor
D Finalizing with Vendor

How are Vendor Risk questionnaires and document requests displayed on the Vendor Portal?

A As separate requests and can be assigned to different vendor contacts
B As separate requests and can only be assigned to the same vendor contact
C As a single assessment assigned to a single vendor contact
D As a single assessment assigned to a single engagement contact

Which functions can be performed in the Vendor Portal? (Choose three.)

A Assessment response
B Contact Management
C Issue remediation
D Schedule web meetings
E Requests via virtual agent

What are the baseline mandatory fields when creating a new Vendor Contact? (Choose three.)

A Name (First and Last)
B Vendor
C Department
D Email
E Role

Which of these must be true in order for a vendor risk issue to be visible in the Vendor Portal?

A There must be at least one secondary contact for the vendor
B The primary vendor contact must have the sn_vdr_issues role
C Issues are always visible in the vendor portal
D The Visible in vendor portal field must have a value of true

Which statements most accurately describe assignments to vendor contacts? (Choose two.)

A Individual sections in the questionnaire or document request can be assigned
B A questionnaire or document request cannot be assigned to multiple vendor contacts
C A questionnaire can be read by vendor contacts that are not assigned
D A questionnaire can only be completed by assigned vendor contacts

CIS-VRMPreview

About the CIS-VRM Exam

Question 1

Question 2

Question 3

Question 4

Question 5

Question 6

Question 7

Question 8

Question 9

Question 10

Question 11

Question 12

Question 13

Question 14

Question 15

Question 16

Question 17

Question 18

Question 19

Question 20

Question 21

Question 22

Question 23

Question 24

That's the end of the Preview

CIS-VRMPreview

About the CIS-VRM Exam

Mode Selection

Question 1

Question 2

Question 3

Question 4

Question 5

Question 6

Question 7

Question 8

Question 9

Question 10

Question 11

Question 12

Question 13

Question 14

Question 15

Question 16

Question 17

Question 18

Question 19

Question 20

Question 21

Question 22

Question 23

Question 24

That's the end of the Preview