FREE Trial

A brief description of response time, resolution time, and percentage of both of those that should be

Fantastic news! We've Found the answer you've been seeking!

Question:

A brief description of response time, resolution time, and percentage of both of those that should be within the agreed times. Define:  Response Time - Time between receiving a ticket and an analyst starting work on the ticket  Resolution Time - Time between when a ticket is worked by an analyst and when it is either closed as a false finding/authorized activity or forwarded to the IR team.

 


Incident Response

A brief description of response time, resolution time, and percentage of both of those that should be within the agreed times. Define: Response Time - Time between receiving notification of an incident from the SOC and beginning to investigate and work the incident. Resolution Time - Time between when notified of an incident and when the incident is resolved.

Threat Intelligence

A brief description of response time, resolution time, and percentage of both of those that should be within the agreed times. Define: Response Time - Time between having a threat intelligence report published in a monitored threat feed and the time between when the threat intelligence team reviews the threat report. Resolution Time - Time between when a threat intelligence report is reviewed and when it is resolved. This can be the report being determined as not applicable or when it is forwarded to the SOC as actionable threat intelligence.


Threat Hunting

A brief description of response time, resolution time, and percentage of both of those that should be within the agreed times. Define: Response Time - Time between receiving actionable threat intelligence and starting a threat hunt. Resolution Time - Time between starting a threat hunt and producing final results. This could be no action or could be the creation of an incident.

Incident Response

A brief description of response time, resolution time, and percentage of both of those that should be within the agreed times. Define: Response Time - Time between being notified of an incident and starting triage and full forensics. Resolution Time - Time between starting and completing triage or incident forensics.


Expert Answer:

Answer rating: 100% (QA)

Response Time and Resolution Time are critical metrics in various cybersecurity and IT operations processes ensuring timely handling of incidents thre... View the full answer


answer-question-section
Related Book For  answer-question
Database Systems Design Implementation and Management

Database Systems Design Implementation and Management

ISBN: 978-1285196145

11th edition

Authors: Carlos Coronel, Steven Morris

See More Books
Posted Date:
See More Questions

Students also viewed these general management questions

Apartment Investing The Ultimate Guide 1st Edition - ISBN: 0985968125 - Free Book