After implementing a new vulnerability management program, the security team decides to measure its performance. Which of the following metrics would best indicate the average time it takes to identify a vulnerability once it occurs?
Alert volume
Mean time to respond
Mean time to detect
Mean time to remediate