Pass Your Vulnerability Response Implementation CIS-VR Exam on Nov 30, 2025 with 62 Questions [Q15-Q39]

Share

Pass Your Vulnerability Response Implementation CIS-VR Exam on Nov 30, 2025 with 62 Questions

CIS-VR Free Exam Study Guide! (Updated 62 Questions)


Achieving the CIS-VR certification demonstrates a high level of expertise in vulnerability response and is recognized by employers as a valuable credential. Individuals who hold this certification are able to effectively manage vulnerability response processes within their organizations and are able to provide valuable insights and guidance to their teams.

 

NEW QUESTION # 15
To get useful reporting regarding the most vulnerable CI's, which statement applies?

  • A. You must purchase a separate PA module
  • B. Your CI population must be huge
  • C. Your CMDB must be up to date and useful
  • D. You must have good KPI's defined

Answer: C


NEW QUESTION # 16
To facilitate the remediation of a Vulnerable Item what type of Item is most commonly used?

  • A. Create a Problem
  • B. Create a Security Incident
  • C. Create a Change
  • D. Create a KB article

Answer: C


NEW QUESTION # 17
This functionality provides a simple way to build criteria once, which can be reused in other platform areas.

  • A. Favorites
  • B. Filters
  • C. Conditions
  • D. Filte Group

Answer: D

Explanation:
"Create and use filter groups to locate records from any table on your instance. For example, you can create a group of all computers by the same manufacturer. You can also filter configuration items (CIs) that have similar vulnerabilities or that fall within a particular subnet IP address range." https://docs.servicenow.com/bundle/washingtondc-security-management/page/product/security-operations-common/task/create-filter-group.html


NEW QUESTION # 18
The components Installed with Vulnerability Response Include:

  • A. Business Rules, Roles, Workflows
  • B. Properties, Client Scripts, Wizards
  • C. Tables, Scheduled Jobs, Security Operations Common
  • D. Ul Pages. Business Rules, Vulnerability Scanners

Answer: C

Explanation:
https://docs.servicenow.com/bundle/vancouver-security-management/page/product/vulnerability-response/reference/installed-with-vr.html


NEW QUESTION # 19
What is the minimum role required to create and change Service Level Agreements for Vulnerability Response groups?

  • A. sla_manager
  • B. sn_vul.admin
  • C. admin
  • D. sn_vul.vulnerability_write

Answer: B


NEW QUESTION # 20
Which of the following best describes a Vulnerability Group?

  • A. Groups Vis using a Filter against Vulnerable Item Fields
  • B. The User Group assigned to resolving the Vulnerable Item
  • C. Must have a corresponding filter group
  • D. A Filter defining a sub-set of Cls to be treated as a group

Answer: C


NEW QUESTION # 21
Items in the ServiceNow Store are built and supported by:

  • A. ServiceNow Technical Support
  • B. ServiceNow Professional Services
  • C. The company that created the Application
  • D. An Implementation Partner

Answer: A


NEW QUESTION # 22
What is the ServiceNow application used for process automation?

  • A. SLAs
  • B. Workflows
  • C. Knowledge Base
  • D. Service Catalog

Answer: B


NEW QUESTION # 23
What do Vulnerability Exceptions require?

  • A. A Filter Group
  • B. A GRC integration
  • C. An Exception Workflow
  • D. An Approval by default

Answer: C

Explanation:
https://docs.servicenow.com/bundle/vancouver-security-management/page/product/vulnerability-response/task/a


NEW QUESTION # 24
A list of software weaknesses is known as:

  • A. Common Weaknesses Enumeration (CWE)
  • B. National Vulnerability Database (NVD)
  • C. Common Vulnerability and Exposure (CVE)
  • D. National Institute of Science and Technology (NIST)

Answer: A

Explanation:
Explanation
Explanation/Reference: https://docs.servicenow.com/bundle/orlando-security-management/page/product/vulnerability- response/concept/c_VulnerabilityResponse.html


NEW QUESTION # 25
In order to more easily manage large sets of Vulnerable Items, you would want to create:

  • A. Filter Groups
  • B. Vulnerability Groups
  • C. Script Includes
  • D. Vulnerability Sets

Answer: B


NEW QUESTION # 26
Which of the following best describes the Vulnerable item State Approval Workflow?

  • A. It exists in the Security Operations Common scope so it can be modified by any Security Operations Admin
  • B. It is read-only, you can only change the Assignment Group members for the approval
  • C. It can only be modified by System Adminstrators
  • D. It runs against the [sn_vul_change_approval] table

Answer: C


NEW QUESTION # 27
Vulnerability Response can be best categorized as a_______, focused on identifying and remediating vulnerabilities as early as possible.

  • A. An iterative process
  • B. A tentative process
  • C. A reactive process
  • D. A proactive process

Answer: B


NEW QUESTION # 28
The components Installed with Vulnerability Response Include:

  • A. Properties, Client Scripts, Wizards
  • B. Tables, Scheduled Jobs, Security Operations Common
  • C. Business Rules, Roles, Workflows
  • D. Ul Pages. Business Rules, Vulnerability Scanners

Answer: C


NEW QUESTION # 29
What type of data would the CIO/CISO want on the dashboard?

  • A. Up to the minute views
  • B. Aggregations for priority and workload
  • C. Drill-down to granularity
  • D. Single, clear indicators of organizational health

Answer: B


NEW QUESTION # 30
What is the minimum role required to create and change Service Level Agreements for Vulnerability Response groups?

  • A. sla_manager
  • B. sn_vul.admin
  • C. admin
  • D. sn_vul.vulnerability_write

Answer: B

Explanation:
https://docs.servicenow.com/bundle/washingtondc-security-management/page/product/vulnerability-response/task/t_CreateVulnSLA.html


NEW QUESTION # 31
Which of the following best describes the Vulnerable Item State Approval Workflow?

  • A. It exists in the Security Operations Common scope so it can be modified by any Security Operations Admin
  • B. It runs against the [sn_vul_change_approval] table
  • C. It is read-only, you can only change the Assignment Group members for the approval
  • D. It can only be modified by System Administrators

Answer: B

Explanation:
Explanation/Reference: https://community.servicenow.com/community?
id=community_question&sys_id=ea57a122db1edb8058dcf4621f961983


NEW QUESTION # 32
Changes made within a named Update Set in a different application scope:

  • A. Will be captured
  • B. Will not be captured
  • C. Will throw errors
  • D. Will be partially captured

Answer: A


NEW QUESTION # 33
SLAs are used to ensure VUL are processed in a timely matter. Which field is used to determine the expected timeframe for remediating a VIT?

  • A. Closed
  • B. Remediation target
  • C. Remediation status
  • D. Updated

Answer: B

Explanation:
Explanation/Reference: https://docs.servicenow.com/bundle/orlando-security-management/page/product/vulnerability- response/concept/time-to-remediate-rules.html


NEW QUESTION # 34
A list of software weaknesses is known as:

  • A. Common Weaknesses Enumeration (CWE)
  • B. National Vulnerability Database (NVD)
  • C. Common Vulnerability and Exposure (CVE)
  • D. National Institute of Science and Technology (NIST)

Answer: A


NEW QUESTION # 35
Which of the following best describes a Vulnerability Group?

  • A. Groups VIs using a Filter against Vulnerable Item Fields
  • B. The User Group assigned to resolving the Vulnerable Item
  • C. Must have a corresponding filter group
  • D. A Filter defining a sub-set of CIs to be treated as a group

Answer: C

Explanation:
Explanation/Reference: https://docs.servicenow.com/bundle/orlando-security-management/page/product/vulnerability- response/concept/vulnerability-groups.html


NEW QUESTION # 36
In order for Vulnerability admins to configure integrations, they must have the following Role(s):

  • A. sn_vul.admin only
  • B. admin only
  • C. admin and sn_vul_qualys.admin
  • D. sn_vul.vulnerability_write

Answer: A


NEW QUESTION # 37
What Business Rule creates a Configuration Item from a Vulnerable Item record?

  • A. Create CI from Vulnerable item Details
  • B. Create CI from Closed Item Details
  • C. Determine CI from Network Details
  • D. Create CI from Vulnerable Group Details

Answer: C

Explanation:
Determine CI from Network Details exists on sn_vul_vulnerable_item table which run on insert and update with the condition "Configuration item is empty", "IP address is not empty" OR "DNS name is not empty" OR "NETBIOS name is not empty".


NEW QUESTION # 38
The components installed with Vulnerability Response include:

  • A. Business Rules, Roles, Workflows
  • B. Properties, Client Scripts, Wizards
  • C. Tables, Scheduled Jobs, Security Operations Common
  • D. UI Pages, Business Rules, Vulnerability Scanners

Answer: C

Explanation:
Explanation/Reference: https://docs.servicenow.com/bundle/orlando-security-management/page/product/vulnerability- response/reference/installed-with-vr.html


NEW QUESTION # 39
......

CIS-VR Dumps for Vulnerability Response Implementation Certified Exam Questions and Answer: https://pass4sure.examcost.com/CIS-VR-practice-exam.html