Security Testing

How to work out MTTD (Mean Time to Detection)?

Understanding the mean time to detection of a vulnerability is interesting, there are two key pieces of information that you need.
Thomas Ballin
1 minute read

Understanding the mean time to detection of a vulnerability is interesting, there are two key pieces of information that you need.

The first piece of information is around where a vulnerability may have been introduced, you need to be monitoring, measuring and capturing information about all of the various different changes and sources of potential vulnerabilities in order to truly understand the advent and the provenance.

The second thing you need to do is consolidate your understanding on what you consider to be a vulnerability. Do you consider something that a very paranoid SAST tool has highlighted as a potential deficiency to be a vulnerability? Or do you consider it to be a vulnerability when you've got a level of confidence in the validity of it when its been manually verified in some way?

You really need to have a system where you can funnel in all of these feeds of information about both the changes and about the vulnerabilities (with their related details) and combine these together in order to properly gauge your mean time to detection.

Related Posts

Security Testing
Continuous Security Testing - Common Misconceptions and Challenges
Understand misconceptions, common challenges and considerations for continuous security testing programmes.
Ben Armstrong
6 minutes
Security Testing
Automated vs Manual Security Testing - How to Choose the Best Test at Scale
Create an automated list of testing actions to scale your security testing programme.
Thomas Ballin
4 minute read
Security Testing
LLM Assisted Security Testing - Use Case
Explore a real example of how an LLM identified a vulnerability missed by automated and manual testing.
Thomas Ballin
8 minute read
Security Testing
Creating an Effective Security Testing Strategy
Focus on these 6 key areas to build an effective security testing strategy.
Thomas Ballin
5 minute read
Security Testing
How do you work out MTTR (Mean Time to Response)?
MTTR is all about looking at where you're handing your information over to the people who are responsible for fixing the vulnerabilities. Once it's handed over, the process has begun. So, we know where the timer starts, but where does it end?
Thomas Ballin
1 minute read
Security Testing
Automated penetration testing - 5 key business benefits
Automated penetration testing is becoming increasingly popular. But how does this compare to manual penetration testing? Understand the main key benefits.
Thomas Ballin
3 minutes
Security Testing
How do you understand performance over time?
In order to get to grips with the performance of your software or product over time, you really need to be taking incremental measurements of your cybersecurity.
Thomas Ballin
8 min to read
Security Testing

How to work out MTTD (Mean Time to Detection)?

Understanding the mean time to detection of a vulnerability is interesting, there are two key pieces of information that you need.
Thomas Ballin
3
min read
two white dot

Understanding the mean time to detection of a vulnerability is interesting, there are two key pieces of information that you need.

The first piece of information is around where a vulnerability may have been introduced, you need to be monitoring, measuring and capturing information about all of the various different changes and sources of potential vulnerabilities in order to truly understand the advent and the provenance.

The second thing you need to do is consolidate your understanding on what you consider to be a vulnerability. Do you consider something that a very paranoid SAST tool has highlighted as a potential deficiency to be a vulnerability? Or do you consider it to be a vulnerability when you've got a level of confidence in the validity of it when its been manually verified in some way?

You really need to have a system where you can funnel in all of these feeds of information about both the changes and about the vulnerabilities (with their related details) and combine these together in order to properly gauge your mean time to detection.

Prioritise Your Testing Programme Around Your Development Schedule

Detect Vulnerabilities Faster
Patch Vulnerabilities Faste
Be more compliant
Book a Demo

Related Posts

Vulnerability Management
How do you understand performance over time?
In order to get to grips with the performance of your software or product over time, you really need to be taking incremental measurements of your cybersecurity.
Thomas Ballin
February 2, 2021
Security Testing
Automated penetration testing - 5 key business benefits
Automated penetration testing is becoming increasingly popular. But how does this compare to manual penetration testing? Understand the main key benefits.
Thomas Ballin
June 4, 2024
Vulnerability Management
Will there come a day where there are 0 vulnerabilities to find?
There's a growing potential for AI to remove many sources of vulnerabilities, but does that mean we're going to see a day where code is being written without any vulnerabilities being introduced into systems?
Thomas Ballin
June 4, 2024
cytix frame image
cytix logo
What we do
How we do it
Resource Hub
Blog
Book a Demo
Linkden image
Cytix Ltd (14043556) © 2024 - All Rights Reserved
Privacy PolicyTerms & Conditions
Security Testing
By clicking “Accept All Cookies”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.
PreferencesDenyAccept
cytix site logo