EMT Practice Test

1. Question Content...


Question List

Question1: Which of the following fields is used to identify an Event that is to be used for Security purposes?

Question2: Chief factors when configuring auto-assignment of Security Incidents are.

Question3: If the customer's email server currently has an account setup to report suspicious emails, then what happens next?

Question4: Which one of the following reasons best describes why roles for Security Incident Response (SIR) begin with
"sn_si"?

Question5: What parts of the Security Incident Response lifecycle is responsible for limiting the impact of a security incident?

Question6: Using the KB articles for Playbooks tasks also gives you which of these advantages?

Question7: Flow Triggers can be based on what? (Choose three.)

Question8: A Post Incident Review can contain which of the following? (Choose three.)

Question9: A flow consists of. (Choose two.)

Question10: Why is it important that the Platform (System) Administrator and the Security Incident administrator role be separated? (Choose three.)

Question11: What is the purpose of Calculator Groups as opposed to Calculators?

Question12: What role(s) are required to add new items to the Security Incident Catalog?

Question13: What is the fastest way for security incident administrators to remove unwanted widgets from the Security Incident Catalog?

Question14: There are several methods in which security incidents can be raised, which broadly fit into one of these categories:. (Choose two.)

Question15: Joe is on the SIR Team and needs to be able to configure Territories and Skills. What role does he need?

Question16: What is the name of the Inbound Action that validates whether an inbound email should be processed as a phishing email for URP v2?

Question17: What is the purpose of Calculator Groups as opposed to Calculators?

Question18: Which of the following process definitions allow only single-step progress through the process defined without allowing step skipping?

Question19: If the customer's email server currently has an account setup to report suspicious emails, then what happens next?

Question20: Which ServiceNow automation capability extends Flow Designer to integrate business processes with other systems?

Question21: How do you select which process definition to use?

Question22: In order to see the Actions in Flow Designer for Security Incident, what plugin must be activated?

Question23: If a desired pre-built integration cannot be found in the platform, what should be your next step to find a certified integration?