EC-COUNCIL CERTIFIED INCIDENT HANDLER(ECIH)

The EC-Council Certified Incident Handler (ECIH) program is designed to provide the fundamental skills to handle and respond to the computer security incidents in an information system. The course addresses various underlying principles and techniques for detecting and responding to current and emerging computer security threats. Students will learn how to handle various types of incidents, risk assessment methodologies, and various laws and policies related to incident handling. After attending this course, they will be able to create incident handling and response policies as well as deal with various types of computer security incidents.

SYLLABUS:

Module 01: Introduction to Incident Response and Handling

Module 02: Risk Assessment

Module 03: Incident Response and Handling Steps

Module 04: CSIRT

Module 05: Handling Network Security Incidents

Module 06: Handling Malicious Code Incidents

Module 07: Handling Insider Threats

Module 08: Forensic Analysis and Incident Response

Module 09: Incident Reporting

Module 10: Incident Recovery

Module 11: Security Policies and Laws

 

DURATION: 16 HOURS (8 HOURS* 2 DAYS)

EXAM: 2 HOURS, 50 MCQ, ONLINE