Amazon
Avaya
Cisco
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL
Juniper
Microsoft
NVIDIA
Okta
Palo Alto Networks
Salesforce
SAP
ServiceNow
All Vendors
  1. Home
  2. ServiceNow
  3. CIS-SIR

ServiceNow Certified Implementation Specialist - Security Incident Response CIS-SIR Exam Questions in PDF

Free ServiceNow CIS-SIR Dumps Questions (page: 3)

CIS-SIR PDF — 125 Questions

A flow consists of one or more actions and a what?

  1. Change formatter
  2. Catalog Designer
  3. NIST Ready State
  4. Trigger

Answer(s): D


Reference:

https://docs.servicenow.com/bundle/quebec-servicenow-platform/page/administer/flow-designer/ concept/flows.html



Flow Triggers can be based on what? (Choose three.)

  1. Record changes
  2. Schedules
  3. Subflows
  4. Record inserts
  5. Record views

Answer(s): A,B,C



Which one of the following users is automatically added to the Request Assessments list?

  1. Any user that adds a worknote to the ticket
  2. The analyst assigned to the ticket
  3. Any user who has Response Tasks on the incident
  4. The Affected User on the incident

Answer(s): C



For Customers who don't use 3rd-party systems, what ways can security incidents be created? (Choose three.)

  1. Security Service Catalog
  2. Security Incident Form
  3. Inbound Email Parsing Rules
  4. Leveraging an Integration
  5. Alert Management

Answer(s): A,B,C



What does a flow require?

  1. Security orchestration flows
  2. Runbooks
  3. CAB orders
  4. A trigger

Answer(s): D



Knowledge articles that describe steps an analyst needs to follow to complete Security incident tasks might be associated to those tasks through which of the following?

  1. Work Instruction Playbook
  2. Flow
  3. Workflow
  4. Runbook
  5. Flow Designer

Answer(s): D


Reference:

https://docs.servicenow.com/bundle/paris-security-management/page/product/security-incident- response/task/perform-addtl-tasks-on-si.html



Which of the following process definitions allow only single-step progress through the process defined without allowing step skipping?

  1. SANS Stateful
  2. NIST Stateful
  3. SANS Open
  4. NIST Open

Answer(s): B



If the customer’s email server currently has an account setup to report suspicious emails, then what happens next?

  1. an integration added to Exchange keeps the ServiceNow platform in sync
  2. the ServiceNow platform ensures that parsing and analysis takes place on their mail server
  3. the customer’s systems are already handling suspicious emails
  4. the customer should set up a rule to forward these mails onto the ServiceNow platform

Answer(s): D


Reference:

https://docs.servicenow.com/bundle/paris-security-management/page/product/security-incident- response/concept/urp-about.html



Viewing page 3 of 17

Share your comments for ServiceNow CIS-SIR exam with other users:

E
Eknath
10/4/2023 1:21:00 AM

good exam questions

INDIA
N
Nizam
6/16/2023 7:29:00 AM

I have to say this is really close to real exam. Passed my exam with this.

EUROPEAN UNION
P
poran
11/20/2023 4:43:00 AM

good analytics question

Anonymous
A
Antony
11/23/2023 11:36:00 AM

this looks accurate

INDIA
E
Ethan
8/23/2023 12:52:00 AM

question 46, the answer should be data "virtualization" (not visualization).

Anonymous
N
nSiva
9/22/2023 5:58:00 AM

its useful.

UNITED STATES
R
Ranveer
7/26/2023 7:26:00 PM

Pass this exam 3 days ago. The PDF version and the Xengine App is quite useful.

SOUTH AFRICA
S
Sanjay
8/15/2023 10:22:00 AM

informative for me.

UNITED STATES
T
Tom
12/12/2023 8:53:00 PM

question 134s answer shoule be "dlp"

JAPAN
A
Alex
11/7/2023 11:02:00 AM

in 72 the answer must be [sys_user_has_role] table.

Anonymous
F
Finn
5/4/2023 10:21:00 PM

i appreciated the mix of multiple-choice and short answer questions. i passed my exam this morning.

IRLAND
A
AJ
7/13/2023 8:33:00 AM

great to find this website, thanks

UNITED ARAB EMIRATES
C
Curtis Nakawaki
6/29/2023 9:11:00 PM

examination questions seem to be relevant.

UNITED STATES
U
Umashankar Sharma
10/22/2023 9:39:00 AM

planning to take psm test

Anonymous
E
ED SHAW
7/31/2023 10:34:00 AM

please allow to download

UNITED STATES
A
AD
7/22/2023 11:29:00 AM

please provide dumps

UNITED STATES
A
Ayyjayy
11/6/2023 7:29:00 AM

is the answer to question 15 correct ? i feel like the answer should be b

BAHRAIN
B
Blessious Phiri
8/12/2023 11:56:00 AM

its getting more technical

Anonymous
J
Jeanine J
7/11/2023 3:04:00 PM

i think these questions are what i need.

UNITED STATES
A
Aderonke
10/23/2023 2:13:00 PM

helpful assessment

UNITED KINGDOM
T
Tom
1/5/2024 2:32:00 AM

i am confused about the answers to the questions. do you know if the answers are correct?

KOREA REPUBLIC OF
V
Vinit N.
8/28/2023 2:33:00 AM

hi, please make the dumps available for my upcoming examination.

UNITED STATES
S
Sanyog Deshpande
9/14/2023 7:05:00 AM

good practice

UNITED STATES
T
Tyron
9/8/2023 12:12:00 AM

so far it is really informative

Anonymous
B
beast
7/30/2023 2:22:00 PM

hi i want it please please upload it

Anonymous
M
Mirex
5/26/2023 3:45:00 AM

am preparing for exam ,just nice questions

Anonymous
E
exampei
8/7/2023 8:05:00 AM

please upload c_tadm_23 exam

TURKEY
A
Anonymous
9/12/2023 12:50:00 PM

can we get tdvan4 vantage data engineering pdf?

UNITED STATES
A
Aish
10/11/2023 5:51:00 AM

want to clear the exam.

INDIA
S
Smaranika
6/22/2023 8:42:00 AM

could you please upload the dumps of sap c_sac_2302

INDIA
B
Blessious Phiri
8/15/2023 1:56:00 PM

asm management configuration is about storage

Anonymous
L
Lewis
7/6/2023 8:49:00 PM

kool thumb up

UNITED STATES
M
Moreece
5/15/2023 8:44:00 AM

just passed the az-500 exam this last friday. most of the questions in this exam dumps are in the exam. i bought the full version and noticed some of the questions which were answered wrong in the free version are all corrected in the full version. this site is good but i wish the had it in an interactive version like a test engine simulator.

Anonymous
T
Terry
5/24/2023 4:41:00 PM

i can practice for exam

Anonymous
AI Tutor 👋 I’m here to help!