EMT Practice Test

1. Question Content...


Question List

Question1: What table, along with the Policy table, is linked to the Control Objective table by a many-to-many relationship?

Question2: Which of the following tables exist within the GRC: Profiles application scope? (Choose three.)

Question3: What are some of the baseline tables commonly leveraged in Entity filters? (Choose three.)

Question4: Which table extends from the Content Table?

Question5: What would you use in order to accommodate a customer's unique process around policy approvals? For example, each policy needs a second layer of approval.

Question6: What table, along with the Policy table, is linked to the Control Objective table by a many-to-many relationship?

Question7: Which tables extend the Content (sn_grc_content) table? (Choose two.)

Question8: The SOX content pack includes a series of policies, control, risks. How are all of these components linked together?

Question9: Which role is not part of ServiceNow GRC?

Question10: UCF has a collection of what? Select all UCF terms.
(Choose three.)

Question11: Policies can be automatically published after which of the following occurs?

Question12: Which of the following extends from Content Table? (Choose two.)

Question13: Which of the following are the classic risk score types that ServiceNow tracks? (Choose three.)

Question14: Which GRC application would you use to determine where the organization is the most vulnerable or has the most exposure?

Question15: Which role reviews the risk response and moves the Risk record into the Monitor state at the appropriate time?

Question16: The 'Add to Update Set' utility is available for download via:

Question17: For classic risk assessment, indicator failure factor represents the impact of risk indicator failures on what score?

Question18: All of the following are PARENT tables which exist within the GRC Entities application scope EXCEPT.

Question19: Praveen is a Risk Manager. Why would he want to utilize Entity Types and Entities? (Choose three.)

Question20: The 'Add to Update Set' utility is available for download via:

Question21: For Control records, who can modify the Control in the Draft state?

Question22: What GRC module would you access in order to update Entity Types?

Question23: What is a risk register?

Question24: Which of the following records does not have a lifecycle?

Question25: Common controls from UCF import into which table in ServiceNow?

Question26: For classic risk assessment, what are the risk components that apply to the Qualitative method? (Choose two.)

Question27: Which filter navigation syntax displays the table in list view within a separate browser tab?

Question28: Service Level Agreements can be used for the which of the following? (Choose two.)

Question29: Which role(s) has the capability to create Policies? Choose two.)

Question30: A control objective has been related to a risk statement and they've been scoped with the same entity type.
What can we expect to occur?

Question31: What is the minimum role required for creating a policy acknowledgement campaign?

Question32: Which of the following statements correctly describe the risk management lifecycle process?

Question33: The Risk Scoring values are entered on the Risk Statement. What records inherits the values from the Risk Statement?

Question34: Risk criteria typically include definitions of different levels of what? (Choose two.)

Question35: The SOX content pack includes a series of policies, control, risks. How are all of these components linked together?

Question36: What new related list was added to the risk statement and entity records after migrating to advanced risk assessment?

Question37: When calculating compliance scores, what is true about the weighting of Controls? (Choose two.)

Question38: An Entity can belong to one or multiple of which of the following?

Question39: Which of the following are triggers for automatic creation of an issue? (Choose two.)

Question40: What is the condition that must exist to edit the factor guidance of a published risk assessment methodology (RAM)?

Question41: What are the four values leveraged for the Inherent and Residual Risk Score Types?

Question42: Which of the following are ServiceNow classic risk score types? (Choose three.)

Question43: Which role is not part of ServiceNow GRC?

Question44: As a customer reaches greater GRC maturity, what can we expect to see occurring across their organization?
(Choose three.)