A. Mean time to detect (MTTD) is the best metric for an organization to focus on given recent investments in
SIEM, SOAR, and a ticketing system. MTTD is a metric that measures how long it takes to detect a security
incident or threat from the time it occurs
Mean time to detect is certainly a good metric for the overall investment, but for a new implementation I would argue that optimising the alert volume is certainly the most important and critical element to look at: removing false positives and configuring relevant correlations.
Correct
MTTD is a metric that measures how long it takes to detect a security incident or threat from the time it occurs.
upvoted 2 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
eapau6022
Highly Voted 9 months, 1 week agobotla
Most Recent 1 week, 1 day agoBaz10
1 week, 4 days agoRobV
9 months agokmordalv
1 year ago