EC-Council Certified Incident Handler (ECIH)

Offered by EC-Council, EC-Council Certified Incident Handler (E|CIH) is a comprehensive specialist-level program that imparts knowledge and skills that organizations need to effectively handle post breach consequences by reducing the impact of incident, from both a financial and a reputational perspective. The E|CIH training program offered by Multimatics is designed to help participants understand all the stages involved in incident handling and the response process. The training material is prepared based on the latest edition of E|CIH v2, accompanied by discussions and exercises to work on the questions.

Multimatics is an Authorized Training Center for the EC-Council Certified Incident Handler (E|CIH) v2 training and certification program accredited by the EC-Council.

By the end of the program, participants will be able to:

Understand the key issues plaguing the information security world
Learn to combat different types of cybersecurity threats, attack vectors, threat actors and their motives
Learn the fundamentals of incident management including the signs and costs of an Incident
Understand the fundamentals of vulnerability management, threat assessment, risk management, and incident response automation and orchestration
Master all incident handling and response best practices, standards, cybersecurity frameworks, laws, acts, and regulations
Decode the various steps involved in planning an incident handling and response program
Gain an understanding of the fundamentals of computer forensics and forensic readiness
Comprehend the importance of the first response procedure including evidence collection, packaging, transportation, storing, data acquisition, volatile and static evidence collection, and evidence analysis
Understand anti-forensics techniques used by attackers to find cybersecurity incident cover-ups
Apply the right techniques to different types of cybersecurity incidents in a systematic manner including malware incidents, email security incidents, network security incidents, web application security incidents, cloud security incidents, and insider threat-related incidents

The program is designed for mid-level to high-level cybersecurity professionals, including Penetration Testers, Vulnerability Assessment Auditors, Risk Assessment Administrators, Network Administrators, Application Security Engineers, Cyber Forensic Investigators/Analyst and SOC Analyst, System Administrators/Engineer, Firewall Administrators and Network Managers/IT Managers, etc.

The program is a 5-day intensive training class.

The program provided by Multimatics will be delivered through interactive presentation by professional instructor(s), group debriefs, individual and team exercises, behavior modelling and roleplays, one-to-one and group discussion, case studies, and projects.

Participants are required to fulfil the following requirements:

Attend official E|CIH training through any of EC-Council’s Authorized Training Centers (ATCs) like Multimatics;

Candidates with a minimum of 1 year of work experience in the domain that would like to apply to take the exam directly without attending training are required to pay the USD100 Eligibility Application Fee.

Participants will take E|CIH v2 Exam which consists of 100 multiple choice questions. They will be given 3 hours to finish the exam. Participants who successfully passed the exam will be given an official EC-Council Certified Incident Handler (E|CIH) certification from EC-Council.

Training & Certifications

Module 1: Introduction to Incident Handling and Response

Module 2: Incident Handling and Response Process

Module 3: Forensic Readiness and First Response

Module 4: Handling and Responding to Malware Incidents

Module 5: Handling and Responding to Email Security Incidents

Module 6: Handling and Responding to Network Security Incidents

Module 7: Handling and Responding to Web Application Security Incidents

Module 8: Handling and Responding to Cloud Security Incidents

Training & Certifications