Continuous Monitoring Flashcards

1
Q

SN’s IRM solution is the only GRC solution capable of continuously monitoring risks and controls associated with…?

A

people, processes, and systems

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What content pack contains an authority document for CIS controls, Associated citations, policy, and control objectives for 191 CIS controls, and 191 indicator templates mapped to UCF IDs?

A

Technology controls content pack

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Continuous monitoring is supported by GRC with _____

A

indicators

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What application improves continuous compliance monitoring by aggregating test results from integrations with configuration scanning applications?

A

Configuration Compliance - SecOps Application

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

which property must be set to true for entities and controls to be automatically generated and test results linked to those generated controls?

A

sn_compliance.auto_create_profile_and_Control

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

control objectives must be linked to __________for entities and controls to be automatically generated and test results linked to those generated controls

A

configuration tests

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What application improves continuous risk monitoring by aggregating vulnerability scan results and mitigating actions taken by the SecOps team?

A

Vulnerability Response - SecOps Application

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Baseline provides which 3 elements to facilitate continuous monitoring for risk?

A

Risk statements and risk defined in the risk register, Risk indicators to link select KRIs in VR to defined risks, and risk dashboards to actively monitor and mitigate risks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly