Why is intrusion analysts work so much harder than NOC work?

What are the essential differences between the perspectives of the NOC analyst and the SOC Analyst? Hint: It's not tech. The question gets to the essence of security. 

Ptacek & Newsham's paper is a perennial favorite of mine: Insertion, Evasion, And Denial Of Service: Eluding Network Intrusion Detection ≈ Packet Storm (packetstormsecurity.com)

A Philosophical Perspective on Trust, Dan Geer: http://geer.tinho.net/geer.issa.trust.18i05.PDF

For discussion in this any various other topics: https://discord.gg/B3gVRya2gn

For event announcements: https://www.linkedin.com/company/nearshore-cyber/events/