What is the minimum role required to create and change Service Level Agreements for Vulnerability Response groups?
A. sla_manager
B. admin
C. sn_vul.vulnerability_write
D. sn_vul.admin
Changes made within a named Update Set in a different application scope:
A. Will be captured
B. Will throw errors
C. Will not be captured
D. Will be partially captured
In regard to the Security Operations Process, which of the following statements defines the "Identify" phase?
A. What processes and assets need protection?
B. What techniques can identify incidents?
C. What safeguards are available?
D. What techniques can restore capabilities?
E. What techniques can contain impacts of incidents?
If a customer expects to ingest 2 million vulnerabilities during its initial load, which instance size should you recommend?
A. L
B. XL
C. XXL
D. Ultra
Which of the following provides a list of software weaknesses?
A. Third Party Entries
B. NVD
C. CWE
D. Vulnerable Items
Which statement about patching is most correct?
A. Mature organizations abandon patching
B. Patch management and Vulnerability Response are interchangeable terms
C. Patching is one of many responses to a Vulnerability
D. As long as you are patching actively, Vulnerability Response isn't necessary
What must Vulnerability Exceptions be supplied by default?
A. A reason for the exception
B. Integrations with GRC to handle the exception
C. Requirement Actions for the exception
D. A manual approval authority for the exception
Which of the following is the property that controls whether Vulnerability Groups are created by default based on Vulnerabilities in the system?
A. sn_vul.autocreate_vul_centric_group
B. sn_vul.autocreate_groups
C. sn_vul.autocreate_vul_grouping
D. sn_vul.create_default_vul_groups
Managers should have access to which role-based data access and visualizations? (Choose three.)
A. Aggregations for priority and workload
B. Time period views
C. Up-to-the-minute views
D. Drill-down to granularity
What type of data would the CIO/CISO want on the dashboard?
A. Aggregations for priority and workload
B. Drill-down to granularity
C. Single, clear indicators of organizational health
D. Up to the minute views