The EC-Council Certified Incident Handler (ECIH) program is designed to provide the fundamental skills to handle and respond to the computer security incidents in an information system. The course addresses various underlying principles and techniques for detecting and responding to current and emerging computer security threats. Students will learn how to handle various types of incidents, risk assessment methodologies, and various laws and policies related to incident handling. After attending this course, they will be able to create incident handling and response policies as well as deal with various types of computer security incidents.
The IT incident management training program will enable students to be proficient in handling and responding to various security incidents such as network security incidents, malicious code incidents, and insider attack threats. In addition, students will learn about computer forensics and its role in handling and responding to incidents. The course also covers incident response teams, incident management training methods, and incident recovery techniques in detail. The ECIH certification will provide professionals greater industry acceptance as the seasoned incident handler.
Module 1: Introduction to Incident Response & Handling
Module 2: Risk Assessment
Module 3: Incident Response & Handling Steps
Module 4: CSIRT
Module 5: Handling Network Security Incidents
Module 6: Handling Malicious Code Incidents
Module 7: Handling Insider Threats
Module 8: Forensic Analysis & Incident Repsonse
Module 9: Incident Reporting
Module 10: Incident Recovery
Module 11: Security Policies & Laws
There are currently no prerequisites for this course but having a basic understanding of Network Security will help.
Students need to pass the online ECC Exam Center exam to receive the ECIH certification - taken after the course.