Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

GRC: Risk and Compliance > Risk 25% > Flashcards

Risk 25% Flashcards

1
Q

Which of the following tables are in the GRC: Risk Scope? (Select all that apply)

a. Issue
b. Risk Framework
c. Risk Statement
d. Citation

A

b. Risk Framework

c. Risk Statement

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

A risk statement can be created outside of a Risk Framework

a. Yes
b. No

A

a. Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q
  • Risk Statements can reference more than one Risk Framework
    a. Yes
    b. No
A

b. No

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q
  • What are the 3 Risk Score Types?
    a. Qualitative
    b. Residual
    c. Quantitative
    d. Calculated
    e. Inherent
A

b. Residual
d. Calculated
e. Inherent

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Default values for Inherent and Residual risks are entered on the Risk Statement

a. Yes
b. No

A

a. Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Calculated Risk scores appear one the Risk once it is generated

a. Yes
b. No

A

a. Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q
  • Which of the following are Risk Score Methods? Choose 2
    a. Calculated
    b. Quantitative
    c. Single Loss Expectancy
    d. Qualitative
    e. Likelihood
A

b. Quantitative

d. Qualitative

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q
  • Which of the following are components of a Risk Score? Choose 4
    a. Annualized Rate of Occurrence (ARO)
    b. Likelihood
    c. Annualized Loss Expectancy (SLE)
    d. Score
    e. Impact
    f. Single Loss Expectancy (ALE)
A

b. Likelihood
d. Score
e. Impact
f. Single Loss Expectancy (ALE)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

For Calculated Risk, only the ALE and Risk score exist

a. Yes
b. No

A

a. Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Can you nest or stack Risk Frameworks?

a. Yes
b. No

A

a. No

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Can you nest or stack Risk Statements?

a. Yes
b. No

A

a. Yes

Only if using the Advanced Risk application.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Can a Risk Manager update Entity Types and Entities?

a. Yes
b. No

A

a. Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Entity Types can be applied at what level to generate Registered Risks?
A. Risk Framework
b. Risk Statement / Risk Template
c. Both

A

c. Both

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

A risk response if automatically generated when the type of response is saved.

a. Yes
b. No

A

a. Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Data from the ServiceNow Security Operations applications can impact a Risk.

a. Yes
b. No

A

a. Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What tables hold the records that are used to manage registered risks through its lifecycle?

a. Policies
b. Controls
c. Risks
d. Risk Statements

A

b. Controls
c. Risks

NOT Policies or Risk Statements

17
Q

Which Risk-related tables have a state workflow ? (select all that apply)​

a. Risk Statement
b. Risk Event
c. Risk Response
d. Registered Risk

A

b. Risk Event
c. Risk Response
d. Registered Risk

NOT a Risk Statement

18
Q

What is the name of the Risk Statement table?

a. sn_risk_definition
b. sn_risk_statement
c. sn_risk_risk_statement
d. sn_grc_risk_statement

A

a. sn_risk_definition

19
Q

Tables in the Advanced Risk scoped application are prefixed with what?​

a. sn_risk_advanced
b. sn_advanced_risk
c. sn_adv_risk
d. sn_grc_risk_advanced

A

a. sn_risk_advanced

20
Q
  • Real-world or “actual” ALE is contained in which ALE field in ServiceNow?
    a. Inherent
    b. Residual
    c. Calculated
A

c. Calculated

21
Q

A Risk indicator can be related to a control.

a. True
b. False

A

b. False

22
Q

Advanced Risk is available to customers who have subscribed to the following:

a. Standard
b. Premium
c. Enterprise

A

c. Enterprise

23
Q

What are the two major pieces of Advanced Risk Functionality:

a. Risk Events
b. Risk rollup/ hierarchy
c. Peg add some other tricky choices here

A

a. Risk Events

b. Risk rollup / hierarchy

24
Q
  • Single Loss Expectancy (SLE) represents which of the following:
    a. Impact
    b. Likelihood
A

a. Impact

25
Q

Annualized Rate of Occurrence (ARO) represents which of the following:

a. Impact
b. Likelihood

A

b. Likelihood

26
Q

The default Risk Score Method for ServiceNow is Quantitative.

a. Yes
b. No

A

b. No

Qualitative is the default

27
Q
  • Which of the following are true statements regarding Rollups in Advanced Risk?
    a. Rollups can be managed by creating upstream and downstream relationships between Entities.
    b. Rollups can also be managed by creating upstream and downstream relationships between Risk Statements.
    c. Both
A

c. Both

GRC: Risk and Compliance (7 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions