EC-COUNCIL CERTIFIED INCIDENT HANDLER (ECIH)

24 hours training

Course Overview

This course is designed to provide basic skills to deal with and respond to computer security incidents in the information system and to review various principles and techniques essential to detect and respond to current and emerging computer security threats. How to deal with different types of accidents, risk assessment methodologies, and different laws and policies related to incident handling.

Course Objectives

• Understand the key issues plaguing the information security world
• Learn to combat different types of cybersecurity threats, attack vectors, threat actors and their motives
• Learn the fundamentals of incident management including the signs and costs of an incident
• Understand the fundamentals of vulnerability management, threat assessment, risk management, and incident response automation and orchestration
• Master all incident handling and response best practices, standards, cybersecurity frameworks, laws, acts, and regulations
• Decode the various steps involved in planning an incident handling and response program
• Gain an understanding of the fundamentals of computer forensics and forensic readiness
• Comprehend the importance of the first response procedure including evidence collection, packaging, transportation, storing, data acquisition, volatile and static evidence collection, and evidence analysis
• Understand anti-forensics techniques used by attackers to find cybersecurity incident cover-ups
• Apply the right techniques to different types of cybersecurity incidents in a systematic manner including malware incidents, email security incidents, network security incidents, web application security incidents, cloud security incidents, and insider threat-related incidents

Course Prerequisites

There are no prerequisites to take the ECIH course.