As the lead cybersecurity analyst for XYZ Corp, you are developing a report for management on the current security posture of the organization. In the context of vulnerability management, which metric would be most appropriate to include in your report to demonstrate the organization’s improvement in identifying and mitigating vulnerabilities over time?
Percentage of uptime
Number of patches applied
Mean time to remediate (MTTR)
Time to first acknowledgement of a vulnerability
Mean time between failures (MTBF)