Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) — Question 168

Which of these describes SOC metrics in relation to security incidents?

Answer options

• A. probability of outage caused by the incident
• B. probability of compromise and impact caused by the incident
• C. time it takes to assess the risks of the incident
• D. time it takes to detect the incident

Correct answer: D

Explanation

The correct answer, D, refers to the time taken to detect an incident, which is a critical metric in assessing the effectiveness of security operations. Options A and B focus on probabilities related to outages and compromises, which are not directly measured by SOC metrics. Option C discusses risk assessment time, which is different from incident detection time.