ServiceNow CIS-TPRM - Certified Implementation Specialist - Third-party Risk Management Exam
Page: 2 / 12
Total 60 questions
Question #6 (Topic: Exam A)
What is the advantage of using both TPRM and GRC/IRM?
A. Non-compliant controls automatically adjust the risk score for a third-party entity
B. Primary third-party contacts can then see their overall non-compliant risk score
C. All compliance controls are automatically visible to the third-party risk manager
D. Third-party Risk engagements automatically match with Audit engagements
Answer: A
Question #7 (Topic: Exam A)
As a final step before closing the Third-party Risk Assessment, what task(s) would the Risk Assessor typically do?
A. Flag questions for follow up
B. Review comments and evaluates the risk
C. Create issues within the assessment
D. Perform a tiering assessment
Answer: B
Question #8 (Topic: Exam A)
How are Third-party Risk questionnaires and document requests displayed on the Third-party Portal?
A. As separate requests and can be assigned to different third-party contacts
B. As a single assessment assigned to a single engagement contact
C. As separate requests and can only be assigned to the same third-party contact
D. As a single assessment assigned to a single third-party contact
Answer: A
Question #9 (Topic: Exam A)
What other record is created when an element classification is created?
A. Classification component definition
B. Classification component criteria
C. Engagement component definition
D. Engagement component criteria
Answer: B
Question #10 (Topic: Exam A)
To what do third parties have direct access?
A. Update and respond to issues and tasks
B. View other third party’s assessment responses
C. Modify issue remediation workflow
D. View other third party’s issues and tasks
Answer: A
