Question 7 of 10Pro Only

What is the difference between indicators of compromise and indicators of attack? Why is it important for a SOC analyst to understand both concepts?

Sample answer preview

Indicators of compromise and indicators of attack are both essential concepts in threat detection, but they represent fundamentally different approaches to identifying malicious activity.

IOCIOAbehavioral detectionMITRE ATT&CKsignature-basedproactive detection

Unlock the full answer

Get the complete model answer, key points, common pitfalls, and access to 9+ more SOC Analyst interview questions.

Upgrade to Pro

Starting at $19/month • Cancel anytime

Back to Track