ServiceNow Certified Implementation Specialist – Risk and Compliance — Question 106

Which GRC application would you use to determine where the organization is the most vulnerable or has the most exposure?

Answer options

• A. Vendor Risk Management
• B. Audit Management
• C. Policy and Compliance Management
• D. Risk Management

Correct answer: D

Explanation

The correct answer is D, Risk Management, as it specifically focuses on identifying and assessing vulnerabilities and exposures within an organization. Options A, B, and C address different aspects of governance and compliance but do not center on the assessment of risk exposure.