ServiceNow Certified Implementation Specialist – Security Incident Response — Question 116

What is one of the Security Incident Response Team’s activities?

Answer options

• A. Patch vulnerabilities
• B. Escalate incidents to security incidents
• C. Monitor security alerts
• D. Penetration testing

Correct answer: C

Explanation

The Security Incident Response Team is primarily responsible for monitoring security alerts to identify and respond to potential incidents. While patching vulnerabilities and escalation are important activities, they are typically handled by other teams. Penetration testing is a proactive security measure, not a direct response activity.