The SOC manager is reviewing the metrics for the previous calendar quarter and discovers that the MTTD for a breach of password security perpetrated through the Internet was forty days. What does the MTTD metric represent within the SOC?

  • the average time that it takes to stop and remediate a security incident
  • the average time that it takes to identify valid security incidents that have occurred
  • the time required to stop the incident from causing further damage to systems or data
  • window of time required to stop the spread of malware in the network

Explanation & Hint:

Cisco defines MTTD as the average time that it takes for the SOC personnel to identify that valid security incidents have occurred in the network.

For more Questions and Answers:

CyberOps Associate (200-201) Certification Practice Exam Answers Full 100%