What courses do I need for CIS-TPRM?

Required courses: . Recommended: .

What is on the CIS-TPRM exam?

The CIS-TPRM exam covers 6 domains: Third-party Risk Management Fundamentals (23%), Core Configuration (14%), Assessment Configuration (33%), Third-party Portal (12%), Third-party Supporting Processes (12%), Other Application Relationships (6%).

CIS-TPRM Exam Preparation

Certified Implementation Specialist - Third-Party Risk Management

Official Exam Page ↗Official Study Guide ↗Practice Questions (60+)

Exam Details

Questions

90 min

Duration

70%

Passing Score

$315

Exam Fee

Exam Blueprint

ServiceNow Official Exam Blueprint

Domain	Weight
Assessment Configuration • External assessments, internal assessments (IRQ), questionnaire templates, document request templates, question banks, Smart Assessment Engine (SAE), template migration, scoring rules, event-driven management, and control objectives	33%
Third-party Risk Management Fundamentals • TPRM overview, key capabilities, user roles (Risk Manager, Assessors, Admins, Contract Negotiators), due diligence types (Information Security, Financial, Legal, Operational, Compliance, Reputation), risk profiles, engagement types, and the due diligence workflow	23%
Core Configuration • Application activation, TPRM properties configuration, role assignment, user group management, authentication policies, email communication setup, and data import from other systems	14%
Third-party Portal • Portal overview, third-party contact management, task delegation, questionnaire response formats (Excel, SIG), progress tracking, and portal access configuration	12%
Third-party Supporting Processes • Third-party elements, element collection process, entity generation, engagement assignment, monitoring third-party risk, and Vendor Management Workspace	12%
Other Application Relationships • Integration with GRC Policy and Compliance Management, risk intelligence provider integrations (EcoVadis, SIG, BitSight, Security Scorecard), provider-based submission rules, and ESG integrations	6%

Study Plan

Focus on high-weight topics first for maximum impact. Topics are ordered by exam weight.

Assessment Configuration

33% weight

Master the configuration of vendor risk assessments including questionnaires, scoring, and workflows.

Key Concepts to Master:

Assessment typesQuestionnaire designQuestion categoriesScoring rulesEvidence requirements+3 more

Practice (20 questions)Learn Concepts

Third-party Risk Management Fundamentals

23% weight

Understand the core concepts, data model, and key components of Third-party Risk Management in ServiceNow.

Key Concepts to Master:

TPRM data modelVendor recordsEngagement managementRisk tiersRisk factors+3 more

Practice (14 questions)Learn Concepts

Core Configuration

14% weight

Configure the core TPRM application including risk frameworks, scoring, and workflow settings.

Key Concepts to Master:

Risk framework setupScoring configurationWorkflow configurationProperties and settingsRole configuration+3 more

Practice (8 questions)Learn Concepts

Third-party Portal

12% weight

Configure the vendor-facing portal for self-service assessment submission and communication.

Key Concepts to Master:

Portal configurationVendor user managementSelf-service capabilitiesAssessment submissionEvidence upload+3 more

Practice (7 questions)Learn Concepts

Third-party Supporting Processes

12% weight

Configure supporting processes including issue management, remediation tracking, and continuous monitoring.

Key Concepts to Master:

Issue managementFinding trackingRemediation workflowsContinuous monitoringRisk reassessment triggers+3 more

Practice (7 questions)Learn Concepts

Other Application Relationships

6% weight

Understand how TPRM integrates with other ServiceNow applications and external systems.

Key Concepts to Master:

GRC integrationVendor Management integrationCMDB integrationContract Management integrationSecurity Operations integration+3 more

Practice (4 questions)Learn Concepts

Required Courses

Official Now Learning courses that cover the exam content.

Course information coming soon. Visit the official exam page for the latest requirements.

Official Documentation

ServiceNow docs pages that map to the exam domains.

Documentation links coming soon. Visit docs.servicenow.com for the official documentation.

Prerequisites

•ServiceNow CSA certification
•Third-party risk management experience
•Understanding of supply chain risk

Ready to Practice?

Test your knowledge with 60+ practice questions

Start Practicing