Free Practice Questions for the ServiceNow Risk and Compliance CIS-RCI Exam (2026 Updated)
At Marks4sure, we are dedicated to providing IT professionals with the most accurate and reliable preparation materials for the ServiceNow CIS-RCI exam. To support your certification journey, we have made a selection of our premium 2026 Risk and Compliance practice questions and answers available completely free. You can take this practice test as many times as you need. Every question includes a detailed, expertly verified explanation to ensure you fully grasp the core security concepts before test day.
CIS-RCI Report Card
What three records need to be set-up when integrating with a provider RSS feed? (Choose three.)
Which of the following tables exist within the GRC: Profiles application scope? (Choose three.)
What table can be related to the Citation table with a many-to-many relationship?
What minimum role is needed to bulk initiate risk assessments using the risk assessment scheduler?
What feature is available in the GRC: Advanced Risk application but not available when using GRC: Risk Management classic risk assessment functionality?
What Is the maximum file size that can be uploaded to OneDrive for policy authoring?
What is associated with the control objective, that is active with the setting to create controls automatically enabled, to generate controls?
Which scheduled jobs in the GRC: Profiles scope help manage the population of Entity records? (Choose two.)
When reviewing the Control Objective Table form with your customer, what are the most common choice lists to be configured? (Choose three.)
What are the risk response options available when responding on an advanced risk assessment?
Choose 2 answers
Entities can belong 10 more than one of this classification. What is the classification?
You are working with your customer to determine necessary audit management workflow configurations. What
should they know about the approval process for audit engagements? (Choose three.)
What is the minimum role required to create a risk assessment methodology (RAM)?
What are some of the drivers for customers to get the GRC suite of applications? (Choose four.)
Setting up entity classes is required when using which GRC features? (Choose two.)
All of the following are PARENT tables which exist within the GRC Entities application scope EXCEPT.
The advanced planning capability enables integration of Advanced Audit with PPM. If the advanced planning capability is selected when the audit plan is created, what extra related lists display on the engagement record in addition to the related lists displayed with basic planning? (Choose three.)
The consolidated assessment feature can be used on which of the following? (Choose two.)
What happens to standard control records when the entity is transformed to a reliant entity?
Critical parts of a successful GRC implementation are understanding the customers current: (Choose three.)
What dependency modeling feature can be used in the Classic UI to build relationships between Entity Classes?
What can assessors do when a risk is in the state of Assess on a classic risk assessment?
Choose 2 answers
Which filter navigation syntax displays the table in list view within a separate browser tab?
For a particular risk assessment methodology (RAM), the control effectiveness score is calculated based on an individual assessment of controls. What are options for control identification? (Choose three.)
