COURSE NAME

Certified Incident Handler v2

Certified Incident Handler v2 Course Overview

This latest iteration of Certified Incident Handler (CIH) program has been designed and developed in collaboration with cybersecurity and incident handling and response practitioners across the globe. It is a comprehensive specialist-level program that imparts knowledge and skills that organizations need to effectively handle post-breach consequences by reducing the impact of the incident, from both a financial and a reputational perspective.

Following a rigorous development which included a careful Job Task Analysis (JTA) related to incident handling and incident first responder jobs, EC-Council developed a highly interactive, comprehensive, standards-based, intensive 3-day training program and certification that provides a structured approach to learning real-world incident handling and response requirements.

Learn All Stages in Incident Handling

This program addresses all the stages involved in incident handling and the response process to enhances your skills as an incident handler and responder, increasing your employability. This approach makes CIH one of the most comprehensive incident handling and response related certifications on the market today. The skills taught in CIH program are desired by cybersecurity professionals from around the world and is respected by employers.

Course Outline

Course Duration:
Total Training 3 Days or 24 hours total class time. Certification: The CIH exam can be attempted after the completion of the official CIH course taught either by any EC-Council Authorized Training Center (ATCs) . Candidates that successfully pass the exam will receive the CIH certificate and membership privileges.

  • Number of Questions: 100
  • Test Duration: 3 Hours
  • Test Format: Multiple Choice

In order to maintain the high integrity of our certifications exams, Exams are provided in multiple forms (I.e. different question banks). Each form is carefully analyzed through beta testing with an appropriate sample group under the purview of a committee of subject matter experts that ensure that each of our exams not only has academic rigor but also has “real world” applicability. We also have a process to determine the difficulty rating of each question. The individual rating then contributes to an overall “Cut Score” for each exam form. To ensure each form has equal assessment standards, cut scores are set on a “per exam form” basis. Depending on which exam form is challenged, cut scores can range from 60% to 85%.

  • Module 01: Introduction to Incident Handling and Response
  • Module 02: Incident Handling and Response Process
  • Module 03: Forensic Readiness and First Response
  • Module 04: Handling and Responding to Malware Incidents
  • Module 05: Handling and Responding to Email Security Incidents
  • Module 06: Handling and Responding to Network Security Incidents
  • Module 07: Handling and Responding to Web Application Security Incidents
  • Module 08: Handling and Responding to Cloud Security Incidents
  • Module 09: Handling and Responding to Insider Threats
Course Registration
Online & Offline courses

Start instantly and learn at your own schedule.

Flexible Schedule

Set and maintain flexible deadlines.

International Certificate

Earn a Certificate upon completion