How many free CIS-VR practice questions are available?

We offer 15 free CIS-VR practice questions covering all exam domains. These questions include detailed explanations to help you understand the concepts.

How many questions are on the actual CIS-VR exam?

The CIS-VR exam contains 60 questions. You have 90 minutes to complete it with a passing score of 70%.

Are these questions similar to the real CIS-VR exam?

Yes, our practice questions are designed to match the format, difficulty, and content areas of the actual CIS-VR certification exam. Each question includes references to official ServiceNow documentation.

Home→Practice Questions→CIS-VR

CIS-VR Practice Questions

Certified Implementation Specialist - Vulnerability Response

60 practice questions across 5 topics • 15 free

Exam Overview

Exam Questions

90 min

Duration

70%

Passing Score

$315

Exam Cost

60+

Practice Questions

Free Questions

Practice Questions

60 questions from 5 topics

knowledge

What are the two primary goals of the ServiceNow Vulnerability Response application?

AReplace third-party scanners and automate patch deployment

BHelp security teams handle vulnerability data and help operations teams resolve vulnerabilities

CGenerate vulnerability reports and manage firewall rules

DMonitor network traffic and block malicious IPs

👆 Click an option above to select your answer

knowledgeSelect all that apply

Which two personas typically use the Vulnerability Response application? (Choose two.)

AVulnerability Analyst

BNetwork Administrator

CRemediation Owner

DDatabase Administrator

👆 Click an option above to select your answer

understanding

Which workspace does the Vulnerability Analyst persona primarily use to monitor and create remediation tasks?

AIT Remediation Workspace

BSecurity Incident Response Workspace

CVulnerability Manager Workspace

DConfiguration Compliance Workspace

👆 Click an option above to select your answer

knowledge

What is a vulnerable item (VIT) in ServiceNow Vulnerability Response?

AA vulnerability definition from the NVD database

BAn asset (CI) that is determined to have a vulnerability

CA scanner integration configuration

DA remediation task assigned to a team

👆 Click an option above to select your answer

knowledgeSelect all that apply

Which two data sources does Vulnerability Response use to import vulnerability data? (Choose two.)

ANational Vulnerability Database (NVD)

BMicrosoft Active Directory

CThird-party scanner integrations

DServiceNow App Store reviews

👆 Click an option above to select your answer

understanding

What happens when vulnerability detections from third-party scanners are imported into Vulnerability Response?

AThey are stored without any CI matching

BThey are reconciled with assets in the CMDB

CThey automatically create change requests

DThey are immediately closed as resolved

👆 Click an option above to select your answer

knowledge

What is the default assignment rule included in the Vulnerability Response base system?

AAssign to IT Operations

BAssign to CI support group

CAssign to Security Team

DAssign to Remediation Manager

👆 Click an option above to select your answer

knowledgeSelect all that apply

What are the three methods to assign vulnerable items using the 'Assign using' field? (Choose three.)

AUser group

BUser group field

CEmail notification

DScript

ECalendar schedule

👆 Click an option above to select your answer

understanding

When is a vulnerable item (VIT) evaluated against assignment rules?

AOnly when manually triggered by an administrator

BWhen a new VIT is opened, imported, or reopened

CEvery hour via a scheduled job

DOnly when the VIT is closed

👆 Click an option above to select your answer

knowledge

What is the purpose of an exception rule in Vulnerability Response?

ATo permanently delete vulnerable items

BTo automatically request an exception for VIs matching specific conditions

CTo bypass scanner integrations

DTo generate vulnerability reports

👆 Click an option above to select your answer

knowledge

What role is required to create an exception rule in Vulnerability Response?

Asn_vul.remediation_owner

Bsn_vul.vulnerability_analyst

Csn_vul.vulnerability_admin

Dsn_vul.vulnerability_read

👆 Click an option above to select your answer

understanding

What happens when an exception rule is approved?

AAll matching VIs are immediately closed

BA remediation task is created in the Deferred state

CThe rule is deleted from the system

DA change request is automatically created

👆 Click an option above to select your answer

knowledgeSelect all that apply

Which roles are required to view the Vulnerability Management (PA) dashboard? (Choose two.)

Asn_vul.vulnerability_admin or sn_vul.vulnerability_analyst

Bsn_vul.remediation_owner

Cpa_viewer

Ditil

👆 Click an option above to select your answer

knowledgeSelect all that apply

Which tabs are included in the Vulnerability Management (PA) dashboard? (Choose three.)

AOverview

BBusiness Services

CScanner Configurations

DExceptions

EIntegration Status

👆 Click an option above to select your answer

understanding

What does the 'VIs Mean Time to Remediation (MTTR)' indicator show?

AThe total number of VIs remediated

BThe mean time to remediate (close) a vulnerable item, as a 30-day running average

CThe number of VIs past their remediation target

DThe percentage of VIs meeting SLA targets

👆 Click an option above to select your answer

Practice by Topic

Focus on specific areas to strengthen your weak points

Vulnerability Response Applications and Modules15 Q Getting Data into Vulnerability Response15 Q Tools to Manage Vulnerability Response14 Q Automating Vulnerability Response12 Q Vulnerability Response Dashboards and Reports4 Q

Exam Domains

Vulnerability Response Applications and Modules

25%

ServiceNow Security Operations overview, Introduction to Vulnerability Response, VR with the ServiceNow Platform, Application Vulnerability Response, and Container Vulnerability Response

Getting Data into Vulnerability Response

25%

Definition of vulnerabilities and vulnerable items, integrating with vulnerability scanners and data sources, Application and Container VR integrations, vulnerability solution and enrichment management

Tools to Manage Vulnerability Response

23%

Vulnerability Workspaces, classification rules, assignment rules, remediation task rules, remediation target rules, and vulnerability calculators

Automating Vulnerability Response

20%

Handling vulnerability exceptions and false positives, using workflows for process automation, and vulnerability close-out

Vulnerability Response Dashboards and Reports

Data visualization overview, dashboards and reporting, and Performance Analytics

More Study Resources

Explore additional materials to boost your exam preparation

Certification Details View Exam Prep