Ready to start your hacking journey? Join now

ECIH-V2
EC-Council Certified Incident Handler v2

Prepare to Handle and Respond to Security Incidents

Learn Cyber Security From Industry Experts

Join Us Now!

ECIH-V2

EC-Council Certified Incident Handler v2

This latest iteration of EC-Councils Certified Incident Handler (E|CIH) program has been designed and developed in collaboration with cybersecurity and incident handling and response practitioners across the globe.
It is a comprehensive specialist-level program that imparts knowledge and skills that organizations need to effectively handle post breach consequences by reducing the impact of the incident, from both a financial and a reputational perspective.
Following a rigorous development which included a careful Job Task Analysis (JTA) related to incident handling and incident first responder jobs, EC-Council developed a highly interactive, comprehensive, standards-based, intensive 3-day training program and certification that provides a structured approach to learning real-world incident handling and response requirements.
Professionals interested in pursuing incident handling and response as a career require comprehensive training that not only imparts concepts but also allows them to experience real- scenarios. The E|CIH program includes hands-on learning delivered through labs within the training program. True employability after earning a certification can only be achieved when the core of the curricula maps to and is compliant with government and industry-published incident and response frameworks.
E|CIH is a method-driven program that uses a holistic approach to cover vast concepts concerning organizational incident handling and response from preparing and planning the incident handling response process to recovering organizational assets after a security incident. These concepts are essential for handling and responding to security incidents to protect organizations from future threats or attacks.

Learning Objectives of E|CIH Program

  • Understand the key issues plaguing the information security world
  • Learn to combat different types of cybersecurity threats, attack vectors, threat actors and their motives
  • Learn the fundamentals of incident management including the signs and costs of an incident
  • Understand the fundamentals of vulnerability management, threat assessment, risk management, and incident response automation and orchestration
  • Master all incident handling and response best practices, standards, cybersecurity frameworks, laws, acts, and regulations
  • Decode the various steps involved in planning an incident handling and response program
  • Gain an understanding of the fundamentals of computer forensics and forensic readiness
  • Comprehend the importance of the first response procedure including evidence collection, packaging, transportation, storing, data acquisition, volatile and static evidence collection, and evidence analysis
  • Understand anti-forensics techniques used by attackers to find cybersecurity incident cover-ups
  • Apply the right techniques to different types of cybersecurity incidents in a systematic manner including malware incidents, email security incidents, network security incidents, web application security incidents, cloud security incidents, and insider threat-related incidents
Enroll now to get details on Plans & Pricing

Course Outline

Module 1
Introduction to Incident Handling and Response
Module 2
Incident Handling and Response Process
Module 3
Forensic Readiness and First Response
Module 4
Handling and Responding to Malware Incidents
Module 5
Handling and Responding to Email Security Incidents
Module 6
Handling and Responding to Network Security Incidents
Module 7
Handling and Responding to Web Application Security Incidents
Module 8
Handling and Responding to Cloud Security Incidents
Module 9
Handling and Responding to Insider Threats

About the Exam

E|CIH allows cybersecurity professionals to demonstrate their mastery of the knowledge and skills required for Incident Handling

  • Exam Code - 212-89
  • Number of Questions - 100
  • Duration - 3 hours
  • Availability - EC-Council Exam Portal
  • Test Format - Multiple Choice
  • Passing Score - In order to maintain the high integrity of our certification exams, EC-Council Exams are provided in multiple forms (I.e. different question banks). Each form is carefully analyzed through beta testing with an appropriate sample group under the purview of a committee of subject matter experts that ensure that each of our exams not only has academic rigor but also has real world applicability. We also have a process to determine the difficulty rating of each question. The individual rating then contributes to an overall cut score for each exam form. To ensure each form has equal assessment standards, cut scores are set on a “per exam form” basis. Depending on which exam form is challenged, cut scores can range from 60% to 85%.
Duration

60+

Total modules

30+

Program format

Online/Offline

Learn Cyber Security From Industry Experts

Join Us Now!