Summer Special 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: bestdeal

Free ServiceNow CIS-SIR Practice Exam with Questions & Answers

Questions 1

A flow consists of. (Choose two.)

Options:
A.

Scripts

B.

Actions

C.

Processes

D.

Actors

E.

Triggers

ServiceNow CIS-SIR Premium Access
Questions 2

Which of the following fields is used to identify an Event that is to be used for Security purposes?

Options:
A.

IT

B.

Classification

C.

Security

D.

CI

Questions 3

Select the one capability that restricts connections from one CI to other devices.

Options:
A.

Isolate Host

B.

Sightings Search

C.

Block Action

D.

Get Running Processes

E.

Get Network Statistics

F.

Publish Watchlist

Questions 4

Which of the following is an action provided by the Security Incident Response application?

Options:
A.

Create Outage state V1

B.

Create Record on Security Incident state V1

C.

Create Response Task set Incident state V1

D.

Look Up Record on Security Incident state V1

Questions 5

The EmailUserReportedPhishing script include processes inbound emails and creates a record in which table?

Options:
A.

ar_sn_si_phishing_email

B.

sn_si_incident

C.

sn_si_phishing_email_header

D.

sn_si_phishing_email

Questions 6

What factor, if any, limits the ability to close SIR records?

Options:
A.

Opened related INC records

B.

Best practice dictates that SIR records should be set to 'Resolved' never to 'Closed'

C.

Nothing, SIR records could be closed at any time

D.

All post-incident review QUESTION NO:ers have to be completed first

Questions 7

A pre-planned response process contains which sequence of events?

Options:
A.

Organize, Analyze, Prioritize, Contain

B.

Organize, Detect, Prioritize, Contain

C.

Organize, Prepare, Prioritize, Contain

D.

Organize, Verify, Prioritize, Contain

Questions 8

What parts of the Security Incident Response lifecycle is responsible for limiting the impact of a security incident?

Options:
A.

Post Incident Activity

B.

Detection & Analysis

C.

Preparation and Identification

D.

Containment, Eradication, and Recovery

Questions 9

If a desired pre-built integration cannot be found in the platform, what should be your next step to find a certified integration?

Options:
A.

Build your own through the REST API Explorer

B.

Ask for assistance in the community page

C.

Download one from ServiceNow Share

D.

Look for one in the ServiceNow Store

Questions 10

What are two of the audiences identified that will need reports and insight into Security Incident Response reports? (Choose two.)

Options:
A.

Analysts

B.

Vulnerability Managers

C.

Chief Information Security Officer (CISO)

D.

Problem Managers

Exam Code: CIS-SIR
Certification Provider: ServiceNow
Exam Name: Certified Implementation Specialist - Security Incident Response Exam
Last Update: Jul 9, 2025
Questions: 60

How to Pass CIS-SIR Exams

PDF + Testing Engine
$164.99
$66
Add to Cart
Testing Engine
$124.99
$50
Add to Cart
PDF (Q&A)
$104.99
$42
Add to Cart

ServiceNow Related Exams

CIS-FSM - ServiceNow Certified Field Service Management (FSM) Implementation Specialist
CIS-SP - ServiceNOW Certified Implementation Specialist - Service Provide
CIS-PPM - Certified Implementation Specialist - Project Portfolio Management (PPM)
CAS-PA - ServiceNow Certified Application Specialist - Performance Analytics Exam
CTA - ServiceNowCertified Technical Architect (CTA)
CAD - Certified Application Developer - ServiceNow
CIS-SAM - Certified Implementation Specialist - Software Asset Management Professional Exam
CSA - ServiceNow Certified System Administrator
CIS-SPM - Certified Implementation Specialist - Strategic Portfolio Management
CIS-VR - Certified Implementation Specialist - Vulnerability Response
CIS-RCI - Certified Implementation Specialist - Risk and Compliance
CIS-HAM - Certified Implementation Specialist - Hardware Asset Management
CIS-VRM - Certified Implementation Specialist -Vendor Risk Management
CIS-HR - Certified Implementation Specialist-Human Resources
CIS-EM - Certified Implementation Specialist-Event Management Exam
ServiceNow Free Access
Get ServiceNow Full Access

ServiceNow Free Exams
ServiceNow Free Exams
Get the best free ServiceNow exam study materials and practice tests at Examstrack. Perfect your ServiceNow preparation by visiting Examstrack.