
Pass Your Vulnerability Response Implementation CIS-VR Exam on Nov 30, 2025 with 62 Questions
CIS-VR Free Exam Study Guide! (Updated 62 Questions)
Achieving the CIS-VR certification demonstrates a high level of expertise in vulnerability response and is recognized by employers as a valuable credential. Individuals who hold this certification are able to effectively manage vulnerability response processes within their organizations and are able to provide valuable insights and guidance to their teams.
NEW QUESTION # 15
To get useful reporting regarding the most vulnerable CI's, which statement applies?
- A. You must purchase a separate PA module
- B. Your CI population must be huge
- C. Your CMDB must be up to date and useful
- D. You must have good KPI's defined
Answer: C
NEW QUESTION # 16
To facilitate the remediation of a Vulnerable Item what type of Item is most commonly used?
- A. Create a Problem
- B. Create a Security Incident
- C. Create a Change
- D. Create a KB article
Answer: C
NEW QUESTION # 17
This functionality provides a simple way to build criteria once, which can be reused in other platform areas.
- A. Favorites
- B. Filters
- C. Conditions
- D. Filte Group
Answer: D
Explanation:
"Create and use filter groups to locate records from any table on your instance. For example, you can create a group of all computers by the same manufacturer. You can also filter configuration items (CIs) that have similar vulnerabilities or that fall within a particular subnet IP address range." https://docs.servicenow.com/bundle/washingtondc-security-management/page/product/security-operations-common/task/create-filter-group.html
NEW QUESTION # 18
The components Installed with Vulnerability Response Include:
- A. Business Rules, Roles, Workflows
- B. Properties, Client Scripts, Wizards
- C. Tables, Scheduled Jobs, Security Operations Common
- D. Ul Pages. Business Rules, Vulnerability Scanners
Answer: C
Explanation:
https://docs.servicenow.com/bundle/vancouver-security-management/page/product/vulnerability-response/reference/installed-with-vr.html
NEW QUESTION # 19
What is the minimum role required to create and change Service Level Agreements for Vulnerability Response groups?
- A. sla_manager
- B. sn_vul.admin
- C. admin
- D. sn_vul.vulnerability_write
Answer: B
NEW QUESTION # 20
Which of the following best describes a Vulnerability Group?
- A. Groups Vis using a Filter against Vulnerable Item Fields
- B. The User Group assigned to resolving the Vulnerable Item
- C. Must have a corresponding filter group
- D. A Filter defining a sub-set of Cls to be treated as a group
Answer: C
NEW QUESTION # 21
Items in the ServiceNow Store are built and supported by:
- A. ServiceNow Technical Support
- B. ServiceNow Professional Services
- C. The company that created the Application
- D. An Implementation Partner
Answer: A
NEW QUESTION # 22
What is the ServiceNow application used for process automation?
- A. SLAs
- B. Workflows
- C. Knowledge Base
- D. Service Catalog
Answer: B
NEW QUESTION # 23
What do Vulnerability Exceptions require?
- A. A Filter Group
- B. A GRC integration
- C. An Exception Workflow
- D. An Approval by default
Answer: C
Explanation:
https://docs.servicenow.com/bundle/vancouver-security-management/page/product/vulnerability-response/task/a
NEW QUESTION # 24
A list of software weaknesses is known as:
- A. Common Weaknesses Enumeration (CWE)
- B. National Vulnerability Database (NVD)
- C. Common Vulnerability and Exposure (CVE)
- D. National Institute of Science and Technology (NIST)
Answer: A
Explanation:
Explanation
Explanation/Reference: https://docs.servicenow.com/bundle/orlando-security-management/page/product/vulnerability- response/concept/c_VulnerabilityResponse.html
NEW QUESTION # 25
In order to more easily manage large sets of Vulnerable Items, you would want to create:
- A. Filter Groups
- B. Vulnerability Groups
- C. Script Includes
- D. Vulnerability Sets
Answer: B
NEW QUESTION # 26
Which of the following best describes the Vulnerable item State Approval Workflow?
- A. It exists in the Security Operations Common scope so it can be modified by any Security Operations Admin
- B. It is read-only, you can only change the Assignment Group members for the approval
- C. It can only be modified by System Adminstrators
- D. It runs against the [sn_vul_change_approval] table
Answer: C
NEW QUESTION # 27
Vulnerability Response can be best categorized as a_______, focused on identifying and remediating vulnerabilities as early as possible.
- A. An iterative process
- B. A tentative process
- C. A reactive process
- D. A proactive process
Answer: B
NEW QUESTION # 28
The components Installed with Vulnerability Response Include:
- A. Properties, Client Scripts, Wizards
- B. Tables, Scheduled Jobs, Security Operations Common
- C. Business Rules, Roles, Workflows
- D. Ul Pages. Business Rules, Vulnerability Scanners
Answer: C
NEW QUESTION # 29
What type of data would the CIO/CISO want on the dashboard?
- A. Up to the minute views
- B. Aggregations for priority and workload
- C. Drill-down to granularity
- D. Single, clear indicators of organizational health
Answer: B
NEW QUESTION # 30
What is the minimum role required to create and change Service Level Agreements for Vulnerability Response groups?
- A. sla_manager
- B. sn_vul.admin
- C. admin
- D. sn_vul.vulnerability_write
Answer: B
Explanation:
https://docs.servicenow.com/bundle/washingtondc-security-management/page/product/vulnerability-response/task/t_CreateVulnSLA.html
NEW QUESTION # 31
Which of the following best describes the Vulnerable Item State Approval Workflow?
- A. It exists in the Security Operations Common scope so it can be modified by any Security Operations Admin
- B. It runs against the [sn_vul_change_approval] table
- C. It is read-only, you can only change the Assignment Group members for the approval
- D. It can only be modified by System Administrators
Answer: B
Explanation:
Explanation/Reference: https://community.servicenow.com/community?
id=community_question&sys_id=ea57a122db1edb8058dcf4621f961983
NEW QUESTION # 32
Changes made within a named Update Set in a different application scope:
- A. Will be captured
- B. Will not be captured
- C. Will throw errors
- D. Will be partially captured
Answer: A
NEW QUESTION # 33
SLAs are used to ensure VUL are processed in a timely matter. Which field is used to determine the expected timeframe for remediating a VIT?
- A. Closed
- B. Remediation target
- C. Remediation status
- D. Updated
Answer: B
Explanation:
Explanation/Reference: https://docs.servicenow.com/bundle/orlando-security-management/page/product/vulnerability- response/concept/time-to-remediate-rules.html
NEW QUESTION # 34
A list of software weaknesses is known as:
- A. Common Weaknesses Enumeration (CWE)
- B. National Vulnerability Database (NVD)
- C. Common Vulnerability and Exposure (CVE)
- D. National Institute of Science and Technology (NIST)
Answer: A
NEW QUESTION # 35
Which of the following best describes a Vulnerability Group?
- A. Groups VIs using a Filter against Vulnerable Item Fields
- B. The User Group assigned to resolving the Vulnerable Item
- C. Must have a corresponding filter group
- D. A Filter defining a sub-set of CIs to be treated as a group
Answer: C
Explanation:
Explanation/Reference: https://docs.servicenow.com/bundle/orlando-security-management/page/product/vulnerability- response/concept/vulnerability-groups.html
NEW QUESTION # 36
In order for Vulnerability admins to configure integrations, they must have the following Role(s):
- A. sn_vul.admin only
- B. admin only
- C. admin and sn_vul_qualys.admin
- D. sn_vul.vulnerability_write
Answer: A
NEW QUESTION # 37
What Business Rule creates a Configuration Item from a Vulnerable Item record?
- A. Create CI from Vulnerable item Details
- B. Create CI from Closed Item Details
- C. Determine CI from Network Details
- D. Create CI from Vulnerable Group Details
Answer: C
Explanation:
Determine CI from Network Details exists on sn_vul_vulnerable_item table which run on insert and update with the condition "Configuration item is empty", "IP address is not empty" OR "DNS name is not empty" OR "NETBIOS name is not empty".
NEW QUESTION # 38
The components installed with Vulnerability Response include:
- A. Business Rules, Roles, Workflows
- B. Properties, Client Scripts, Wizards
- C. Tables, Scheduled Jobs, Security Operations Common
- D. UI Pages, Business Rules, Vulnerability Scanners
Answer: C
Explanation:
Explanation/Reference: https://docs.servicenow.com/bundle/orlando-security-management/page/product/vulnerability- response/reference/installed-with-vr.html
NEW QUESTION # 39
......
CIS-VR Dumps for Vulnerability Response Implementation Certified Exam Questions and Answer: https://pass4sure.examcost.com/CIS-VR-practice-exam.html

