ServiceNow Exam CIS-RCI Topic 2 Question 40 Discussion

Actual exam question for ServiceNow's CIS-RCI exam

Question #: 40
Topic #: 2

For a particular risk assessment methodology (RAM), the control effectiveness score is calculated based on an individual assessment of controls. What are options for control identification? (Choose three.)

AControls are identified from library and ad-hoc

BControls are identified from indicator results

CControls are identified from library

DControls are identified ad-hoc

EControls are identified from related issues

Show Suggested Answer

Suggested Answer: A

by Lisha at Feb 25, 2023, 03:31 AM

Limited Time Offer

25%

Off

Get Premium CIS-RCI Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Apolonia

2 days ago

Wait, why can't I choose B and E? Shouldn't we also consider controls from indicator results and related issues? This question is tricky.

upvoted 0 times

...

Jackie

15 days ago

I believe controls can also be identified from related issues, so option E should be considered as well.

upvoted 0 times

...

Arlette

16 days ago

I think the correct options are A, C, and D. Identifying controls from a library and ad-hoc makes sense for a risk assessment methodology.

upvoted 0 times

Elke

4 days ago

I agree, controls from a library and ad-hoc are important for a risk assessment methodology.

upvoted 0 times

...

Curtis

17 days ago

I agree with Latia, controls can be identified from library, ad-hoc, and indicator results.

upvoted 0 times

...

Latia

19 days ago

I think options A, C, and D are possible for control identification.

upvoted 0 times

...