ServiceNow Certified Implementation Specialist – Security Incident Response — Question 84
What kind of rules can be used to configure how email phishing incidents are processed? (Choose two.)
Answer options
- A. Risk Rules
- B. Inbound Property Rules
- C. CI Lookup Rules
- D. Ingestion Rules
- E. Condition Rules
- F. Duplication Rules
Correct answer: D, F
Explanation
Ingestion Rules dictate how incoming data, including email phishing incidents, are processed, while Duplication Rules help manage and filter out duplicate phishing reports. The other options do not specifically pertain to the processing of email phishing incidents.