How many free CIS-TPRM practice questions are available?

We offer 15 free CIS-TPRM practice questions covering all exam domains. These questions include detailed explanations to help you understand the concepts.

How many questions are on the actual CIS-TPRM exam?

The CIS-TPRM exam contains 60 questions. You have 90 minutes to complete it with a passing score of 70%.

Are these questions similar to the real CIS-TPRM exam?

Yes, our practice questions are designed to match the format, difficulty, and content areas of the actual CIS-TPRM certification exam. Each question includes references to official ServiceNow documentation.

Home→Practice Questions→CIS-TPRM

CIS-TPRM Practice Questions

Certified Implementation Specialist - Third-Party Risk Management

60 practice questions across 6 topics • 15 free

Exam Overview

Exam Questions

90 min

Duration

70%

Passing Score

$315

Exam Cost

60+

Practice Questions

Free Questions

Practice Questions

60 questions from 6 topics

knowledge

What is the primary purpose of the Third-party Risk Management (TPRM) application in ServiceNow?

ATo manage internal employee performance reviews

BTo identify, assess, and mitigate risks associated with third-party relationships

CTo handle customer service incidents and requests

DTo manage software asset licenses and compliance

👆 Click an option above to select your answer

knowledgeSelect all that apply

Which of the following are key capabilities of the Third-party Risk Management application? (Choose THREE)

AOnboarding, Offboarding, and Renewals workflows

BAssessment management

CChange Advisory Board scheduling

DContinuous risk monitoring

EService Level Agreement tracking

👆 Click an option above to select your answer

knowledge

Which user role is responsible for leading thorough risk assessments of third parties and developing mitigation strategies?

AContract negotiator

BTPRM Admin

CRisk Manager

DDue diligence requester

👆 Click an option above to select your answer

knowledge

Which role is required to configure TPRM properties?

Asn_vdr_risk_asmt.vendor_assessor

Bsn_vdr_risk_asmt.vendor_risk_admin

Csn_vdr_risk_asmt.vendor_risk_manager

Dsn_vdr_risk_asmt.vendor_contact

👆 Click an option above to select your answer

knowledgeSelect all that apply

Which applications must be activated to fully implement TPRM? (Choose THREE)

AThird-party Risk Management app [com.sn_vdr_risk_asmt]

BDue diligence request workflow application [com.sn_tprm_dd]

CVendor Risk Management Workspace application [sn_vrm_ws]

DCustomer Service Management [com.sn_csm]

EField Service Management [com.sn_fsm]

👆 Click an option above to select your answer

understanding

What is the purpose of the 'Organization name' property [sn_vdr_risk_asmt.company.name] in TPRM?

ATo set the default currency for assessments

BThird-party contacts see this name in all references on the Third-party portal

CTo configure email notification headers

DTo set the company logo on reports

👆 Click an option above to select your answer

knowledge

Which role is required to create an external assessment in TPRM?

Asn_vdr_risk_asmt.vendor_contact

Bsn_vdr_risk_asmt.vendor_risk_manager or sn_vdr_risk_asmt.vendor_assessor

Csn_vdr_risk_asmt.vendor_risk_admin only

Dadmin only

👆 Click an option above to select your answer

understanding

What is the purpose of a question bank in TPRM?

ATo store financial data about third parties

BTo reuse questions in any assessment by adding them to questionnaires

CTo manage user authentication credentials

DTo store third-party contact information

👆 Click an option above to select your answer

knowledgeSelect all that apply

Which of the following can be associated with an external assessment? (Choose THREE)

AQuestionnaire templates

BDocument request templates

CAssessment templates

DChange request records

EIncident records

👆 Click an option above to select your answer

knowledge

What is the primary purpose of the Third-party portal in TPRM?

ATo manage internal employee onboarding

BTo provide third-party contacts a secure interface to respond to assessments and manage tasks

CTo generate financial reports for executives

DTo configure system properties and settings

👆 Click an option above to select your answer

understandingSelect all that apply

Which of the following tasks can third-party contacts perform through the Third-party portal? (Choose THREE)

ARespond to questionnaires for assessments

BDelegate tasks to other contacts

CConfigure TPRM system properties

DManage their contact information

EAssign TPRM roles to internal users

👆 Click an option above to select your answer

knowledge

What is the purpose of third-party elements in TPRM?

ATo store login credentials for third-party contacts

BTo identify and assess additional entities related to an engagement, such as data centers or applications

CTo manage email notification templates

DTo configure workflow automation rules

👆 Click an option above to select your answer

understandingSelect all that apply

Which roles can monitor third-party risk using the Vendor Management Workspace? (Choose THREE)

ATPR managers

BTPR assessors

CThird-party assessment reviewers

DThird-party contacts

EDue diligence requesters only

👆 Click an option above to select your answer

understanding

What happens when TPRM is integrated with GRC: Policy and Compliance Management?

AThird-party financial data is automatically generated

BThe compliance status of controls and control objectives is updated based on questionnaire responses

CChange requests are automatically created for each assessment

DIncidents are automatically linked to third-party assessments

👆 Click an option above to select your answer

knowledgeSelect all that apply

Which risk intelligence provider integrations are supported by ServiceNow for TPRM? (Choose TWO)

AEcoVadis for sustainability ratings

BMicrosoft Defender for endpoint security

CShared Assessments SIG questionnaire

DSalesforce for CRM data

ESAP for financial data

👆 Click an option above to select your answer

Practice by Topic

Focus on specific areas to strengthen your weak points

Third-party Risk Management Fundamentals14 Q Core Configuration8 Q Assessment Configuration20 Q Third-party Portal7 Q Third-party Supporting Processes7 Q Other Application Relationships4 Q

Exam Domains

Third-party Risk Management Fundamentals

23%

TPRM overview, key capabilities, user roles (Risk Manager, Assessors, Admins, Contract Negotiators), due diligence types (Information Security, Financial, Legal, Operational, Compliance, Reputation), risk profiles, engagement types, and the due diligence workflow

Core Configuration

14%

Application activation, TPRM properties configuration, role assignment, user group management, authentication policies, email communication setup, and data import from other systems

Assessment Configuration

33%

External assessments, internal assessments (IRQ), questionnaire templates, document request templates, question banks, Smart Assessment Engine (SAE), template migration, scoring rules, event-driven management, and control objectives

Third-party Portal

12%

Portal overview, third-party contact management, task delegation, questionnaire response formats (Excel, SIG), progress tracking, and portal access configuration

Third-party Supporting Processes

12%

Third-party elements, element collection process, entity generation, engagement assignment, monitoring third-party risk, and Vendor Management Workspace

Other Application Relationships

Integration with GRC Policy and Compliance Management, risk intelligence provider integrations (EcoVadis, SIG, BitSight, Security Scorecard), provider-based submission rules, and ESG integrations

More Study Resources

Explore additional materials to boost your exam preparation

Certification Details View Exam Prep