CIS-VR Online Practice Questions and Answers

SLAs are used to ensure VUL are processed in a timely matter. Which field is used to determine the expected timeframe for remediating a VIT?

A. Updated

B. Remediation status

C. Remediation target

D. Closed

Changes made within a named Update Set in a different application scope:

A. Will be captured

B. Will throw errors

C. Will not be captured

D. Will be partially captured

In regard to the Security Operations Process, which of the following statements defines the "Identify" phase?

A. What processes and assets need protection?

B. What techniques can identify incidents?

C. What safeguards are available?

D. What techniques can restore capabilities?

E. What techniques can contain impacts of incidents?

A list of software weaknesses is known as:

A. National Vulnerability Database (NVD)

B. Common Vulnerability and Exposure (CVE)

C. National Institute of Science and Technology (NIST)

D. Common Weaknesses Enumeration (CWE)

Qualys asset tags can be loaded into a table related to the configuration item and used to support business processes or reporting. Set the Qualys Host parameter of asset_tags to a value of __________ to have asset tag information from Qualys be included in the XML payload.

A. 1

B. 3

C. 2

D. 0

In order for Vulnerability admins to configure integrations, they must have the following Role(s):

A. admin only

B. sn_vul.admin only

C. sn_vul.vulnerability_write

D. admin and sn_vul_qualys.admin

This functionality provides a simple way to build criteria once, which can be reused in other platform areas.

A. Conditions

B. Favorites

C. Filter Group

D. Filters

What option can be used to close out a Vulnerable Item Record or initiate the Exception Process?

A. Complete

B. Update

C. Close/Defer

D. Save

Which of the following can NOT be used for building Vulnerability Groups?

A. Vulnerability

B. Filter Groups

C. Condition Builder

D. Advanced Scripts

Managers should have access to which role-based data access and visualizations? (Choose three.)

A. Aggregations for priority and workload

B. Time period views

C. Up-to-the-minute views

D. Drill-down to granularity