Which KPI metric does SOAR use to measure the length of time that threat actors have access to a network before they are detected and the access of the threat actors stopped?

Which KPI metric does SOAR use to measure the length of time that threat actors have access to a network before they are detected and the access of the threat actors stopped?

• MTTC
• MTTR
• Dwell Time
• MTTD

Explanation: The common key performance indicator (KPI) metrics compiled by SOC managers are as follows:

• Dwell Time: the length of time that threat actors have access to a network before they are detected and the access of the threat actors stopped
• Mean Time to Detect (MTTD): the average time that it takes for the SOC personnel to identify valid security incidents have occurred in the network
• Mean Time to Respond (MTTR): the average time that it takes to stop and remediate a security incident
• Mean Time to Contain (MTTC): the time required to stop the incident from causing further damage to systems or data

Exam with this question: CyberOps Associate (Version 1.0) - Module 2: Fighters in the War Against Cybercrime Quiz Answers