Welcome to Scribd!

ECIH Exam Blueprint v2

Uploaded by

0% found this document useful (0 votes)

235 views3 pages

This document outlines the exam blueprint for the EC-Council Certified Incident Handler certification. It divides the exam content into 9 domains related to incident response and handling processes. Each domain is further divided into relevant subdomains and allocated a percentage weight to indicate its importance on the exam. The domains cover topics such as incident response fundamentals, first response activities, malware incidents, email security incidents, and more.

Original Description:

Original Title

ECIH-Exam-Blueprint-v2

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pdf or txt

0% found this document useful (0 votes)

235 views3 pages

ECIH Exam Blueprint v2

Uploaded by

Chida

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pdf or txt

Jump to Page

You are on page 1of 3

Search inside document

EC-Council Certified Incident Handler

Exam Blueprint v2

S. No. Domain Sub Domains Weightage

1 Incident Response 1.1 Information Security Incidents 11%

and Handling
Process 1.2 Incident Management

1.3 Incident Response Automation and Orchestration

1.4 Incident Handling Standards and Frameworks

1.5 Incident Handling Laws and Acts

1.6 Incident Response and Handling Process

a) Preparation

b) Incident Recording and Assignment

c) Incident Triage

d) Notification

e) Containment

f) Evidence Gathering and Forensics Analysis

g) Eradication

h) Recovery

i) Post-Incident Activities

2 First Response 2.1 First Responder 11%

2.2 Securing and Documenting the Crime Scene

2.3 Collecting Evidence at the Crime Scene

2.4 Preserving, Packaging, and Transporting the Evidence

3 Malware Incidents 3.1 Malware Incidents Handling Preparation 11%

3.2 Malware Incidents Detection

3.3 Malware Incidents Containment and Eradication

Page | 1 EC-Council Certified Incident Handler Copyright © by EC-Council

3.4 Recovery after Malware Incidents

3.5 Guidelines for Preventing Malware Incidents

4 Email Security 4.1 Types of Email Security Incidents 12%

Incidents
4.2 Preparation for Handling Email Security Incidents

4.3 Detection and Containment of Email Security Incidents

4.4 Eradication of Email Security Incidents

4.5 Recovery after Email Security Incidents

4.6 Best Practices against Email Security Incidents

5 Network Level 5.1 Preparation for Handling Network Security Incidents 12%
Incidents
5.2 Network Security Incidents Detection and Validation

5.3 Handling Unauthorized Access Incidents

5.4 Handling Inappropriate Usage Incidents

5.5 Handling Denial-of-Service Incidents

5.6 Handling Wireless Network Security Incidents

6 Application Level 6.1 Preparation for Handling Web Application Security 11%
Incidents Incidents

6.2 Web Application Security Incidents Detection and

Analysis

6.3 Containment and Eradication of Web Application Security

Incidents

6.4 Recovery from Web Application Security Incidents

6.5 Best Practices for Securing Web Applications

7 Cloud Security 7.1 Challenges in Cloud Incident Handling and Response 10%
Incidents

7.2 Handling Cloud Security Incidents

7.3 Handling Azure Security Incidents

7.4 Handling AWS Security Incidents

7.5 Handling Google Cloud Security Incidents

7.6 Best Practices Against Cloud Security Incidents

8 Insider Threats 8.1 Types of Insider Threats 11%

8.2 Preparation Steps for Handling Insider Threats

8.3 Detection, Containment, and Eradication of Insider

Threats

8.4 Recovery After Insider Attacks

8.5 Best Practices against Insider Threats

9 Endpoint Security 9.1 Need for Endpoint Security Incident Handling and 11%
Incidents Response

9.2 Preparation for Handling Endpoint Security Incidents

9.3 Detection and Validation of Endpoint Security Incidents

9.4 Handling Mobile-based Security Incidents

9.5 Handling IoT-based Security Incidents

9.6 Handling OT-based Security Incidents

VMDR
Document3 pages
VMDR
Chida
No ratings yet
Security Risk Management Plan Template 2023
Document12 pages
Security Risk Management Plan Template 2023
naveen
100% (2)
EC-Council Certified Incident Handler (ECIH) Course Summary
Document7 pages
EC-Council Certified Incident Handler (ECIH) Course Summary
Vinay Kumar
No ratings yet
Yammer Security Policy
Document37 pages
Yammer Security Policy
Patrick Julius Bongolan
No ratings yet
Oil Spill Exercises
Document52 pages
Oil Spill Exercises
budiazis
100% (1)
Information Security Incident Management
Document3 pages
Information Security Incident Management
Bara Daniel
100% (1)
Atirc PDF
Document378 pages
Atirc PDF
Teobaldo Padilla Apari
100% (1)
PCOE Setup Guide V5 4 PDF
Document84 pages
PCOE Setup Guide V5 4 PDF
Knas Daniel
No ratings yet
Management and Operational Information: EN 50600-3-1:2016 STANDARD BY: Amalia Fiqhiyah 1202164314 Si40Int
Document11 pages
Management and Operational Information: EN 50600-3-1:2016 STANDARD BY: Amalia Fiqhiyah 1202164314 Si40Int
Harry
No ratings yet
ISO27k SOA Sample
Document10 pages
ISO27k SOA Sample
vishnukesarwani
100% (4)
Control Control Requirements: Statement of Applicability
Document3 pages
Control Control Requirements: Statement of Applicability
Jamal Deen
No ratings yet
Cyber Defenders Playbook 2023 (CyberProof) - 31pg
Document31 pages
Cyber Defenders Playbook 2023 (CyberProof) - 31pg
NewReader
No ratings yet
STS Course Time Table
Document2 pages
STS Course Time Table
Inara Kollery
No ratings yet
Example Statement of Applicability
Document11 pages
Example Statement of Applicability
Marcio Rodrigues
100% (1)
57A ICS - Cyber Security Workbook For On Board Ship Use (2nd Ed. 2021)
Document136 pages
57A ICS - Cyber Security Workbook For On Board Ship Use (2nd Ed. 2021)
orlando cabrera
No ratings yet
Thank-You For Downloading The Security Risk Management Plan Template!
Document11 pages
Thank-You For Downloading The Security Risk Management Plan Template!
Roqaia Alwan
No ratings yet
Guidelines On Maritime Cyber Safety - 1
Document67 pages
Guidelines On Maritime Cyber Safety - 1
harish3742
No ratings yet
Content (KKS)
Document3 pages
Content (KKS)
Skymoe Moe
No ratings yet
CSA Blueprint
Document3 pages
CSA Blueprint
Amil Akhundzada
No ratings yet
ISO 27001 2013 Statement of Applicability
Document21 pages
ISO 27001 2013 Statement of Applicability
mrehan2k2
No ratings yet
GAP Analysis V1
Document79 pages
GAP Analysis V1
vasidharta
100% (1)
IBM Security Intelligence Actualizacion para BP PDF
Document148 pages
IBM Security Intelligence Actualizacion para BP PDF
franziskito
No ratings yet
Internship Weekly Report
Document6 pages
Internship Weekly Report
mrharshilpatel8802
No ratings yet
Nist Checklist
Document30 pages
Nist Checklist
hakmoch hakm
No ratings yet
DS Slide
Document12 pages
DS Slide
jaime mendez
No ratings yet
Site Security: Security Training Module For Ngos
Document39 pages
Site Security: Security Training Module For Ngos
drmohamed120
No ratings yet
ISO27k SOA 2013 in 5 Languages
Document49 pages
ISO27k SOA 2013 in 5 Languages
Jailer Alvear
No ratings yet
ISO27k SOA 2013 in 5 Languages
Document49 pages
ISO27k SOA 2013 in 5 Languages
Richard Thodé
100% (1)
Secure Computer and Network Systems: Modeling, Analysis and Design
From Everand
Secure Computer and Network Systems: Modeling, Analysis and Design
Nong Ye
No ratings yet
IR Guidelines On Cyber Safety Final
Document70 pages
IR Guidelines On Cyber Safety Final
허니보
No ratings yet
ISO27k SOA 2013 in 5 Languages
Document54 pages
ISO27k SOA 2013 in 5 Languages
albertorocal
No ratings yet
Cis 7.1 Vs Iso27001
Document23 pages
Cis 7.1 Vs Iso27001
BatuSay
No ratings yet
Cips 2013 0215
Document29 pages
Cips 2013 0215
Shreyas Tamhan
No ratings yet
Good Practices For The Maritime Security Report PDF
Document61 pages
Good Practices For The Maritime Security Report PDF
Kim Halavakoski
No ratings yet
Huawei Vulnerability Management White Paper en
Document8 pages
Huawei Vulnerability Management White Paper en
raphaelbertozzi
No ratings yet
Security Attacks in Cloud Computing
Document39 pages
Security Attacks in Cloud Computing
babupradhan452
No ratings yet
CTIA Exam Blueprint v1
Document13 pages
CTIA Exam Blueprint v1
Albert
No ratings yet
How To Use ISO 27001 To Secure Data When Working Remotely Presentation Deck
Document15 pages
How To Use ISO 27001 To Secure Data When Working Remotely Presentation Deck
John Mattheus Soria
No ratings yet
Webinar Mastering 4G - 5G Telecom Threat Intelligence
Document40 pages
Webinar Mastering 4G - 5G Telecom Threat Intelligence
contact
No ratings yet
Cyber Security: Week 6: Web Security-E-mail Security-Mobile Device Security-Cloud Security
Document30 pages
Cyber Security: Week 6: Web Security-E-mail Security-Mobile Device Security-Cloud Security
UDx
No ratings yet
CCISOv3 Course Outline
Document12 pages
CCISOv3 Course Outline
Santanu Chatterjee
No ratings yet
3 Must Haves in Your Cybersecurity Incident Response
Document18 pages
3 Must Haves in Your Cybersecurity Incident Response
jevinca
No ratings yet
Ebook Cyber Strategy Risk Driven Security and Resiliency 1St Edition Carol A Siegel Mark Sweeney Online PDF All Chapter
Document69 pages
Ebook Cyber Strategy Risk Driven Security and Resiliency 1St Edition Carol A Siegel Mark Sweeney Online PDF All Chapter
brenda.vautour525
100% (9)
CSCUv2 Course Outline
Document11 pages
CSCUv2 Course Outline
Loku Bappa
No ratings yet
E14 Cyber Security Risk Management
Document3 pages
E14 Cyber Security Risk Management
Dzenrhe Paran
No ratings yet
Workshop 0608 1.study On The Current Situation of Information Securifty
Document16 pages
Workshop 0608 1.study On The Current Situation of Information Securifty
kksj Jzhzbz
No ratings yet
TA4 - Cyber Security - 1688734977204
Document66 pages
TA4 - Cyber Security - 1688734977204
Deepak Kumar
No ratings yet
Government of Bangladesh Information Security Manual
Document143 pages
Government of Bangladesh Information Security Manual
RAJAN DAS
No ratings yet
ISO27k Controls (2005 2013 NIST)
Document29 pages
ISO27k Controls (2005 2013 NIST)
Hemant Sudhir Wavhal
No ratings yet
CCSK Certificate of Cloud Security Knowledge All in One Exam Guide Graham Thompson Full Chapter
Document67 pages
CCSK Certificate of Cloud Security Knowledge All in One Exam Guide Graham Thompson Full Chapter
wanda.dahl659
100% (7)
Em & Cont Plan
Document41 pages
Em & Cont Plan
Yedid Amq
No ratings yet
Roles - CERT in
Document1 page
Roles - CERT in
api-27477209
No ratings yet
Cybersecurity Deck
Document46 pages
Cybersecurity Deck
Nelson Vargas
No ratings yet
IT Security Incident Response and Management For Beginners
Document80 pages
IT Security Incident Response and Management For Beginners
IT Security
No ratings yet
Skybox Security Sales&Tech Overview
Document46 pages
Skybox Security Sales&Tech Overview
erdem
100% (1)
Cyber Security Fundamentals - V2
Document27 pages
Cyber Security Fundamentals - V2
richat.21
No ratings yet
Mcafee Endpoint Security: Foetron
Document15 pages
Mcafee Endpoint Security: Foetron
sunny_dce2k5
No ratings yet
Cyber Incident Response Playbook
Document11 pages
Cyber Incident Response Playbook
RamganeshBalan
100% (4)
Ind L3 Title and Syllabus v1
Document4 pages
Ind L3 Title and Syllabus v1
endro suendro
No ratings yet
Endpoint Security Report: Endpoint Secure MIKA PML
Document12 pages
Endpoint Security Report: Endpoint Secure MIKA PML
Farhan Sujar
No ratings yet
ICT) Security Policy and Guideline, 2015 (PDFDrive) PDF
Document67 pages
ICT) Security Policy and Guideline, 2015 (PDFDrive) PDF
VonDanny Romero
No ratings yet
iOT Security Guideline
Document53 pages
iOT Security Guideline
diffusi0n
No ratings yet
IOT Security Guideline PDF
Document53 pages
IOT Security Guideline PDF
ramesh
No ratings yet
CSSK Cloud Security
Document1,034 pages
CSSK Cloud Security
Jussi Fabre
100% (1)
Iot Security Guidelines: Overview Document
Document43 pages
Iot Security Guidelines: Overview Document
Sachin
No ratings yet
2024Q1AgainstRansomware Webinar
Document71 pages
2024Q1AgainstRansomware Webinar
Nilesh Nirale
No ratings yet
CompTIA Security+ Review Guide: Exam SY0-601
From Everand
CompTIA Security+ Review Guide: Exam SY0-601
James Michael Stewart
No ratings yet
DSA Notes
Document69 pages
DSA Notes
Chida
No ratings yet
Unit 2 - Pointers-1
Document11 pages
Unit 2 - Pointers-1
Chida
No ratings yet
Eaton Connectups Web SNMP X BD e Models User Guide
Document59 pages
Eaton Connectups Web SNMP X BD e Models User Guide
Chida
No ratings yet
Security Incident Response Report
Document15 pages
Security Incident Response Report
Honey Nhassie Marie Gonzaga
No ratings yet
OT Security Checklist
Document15 pages
OT Security Checklist
ct pentest
No ratings yet
Ultimate Guide To Incident Response and Management
Document29 pages
Ultimate Guide To Incident Response and Management
marcejrr
No ratings yet
Critical Incident Management in Sport
Document18 pages
Critical Incident Management in Sport
A.D. Home Tutors
No ratings yet
Skills Framework For Security Technical Skills & Competencies (TSC) Reference Document
Document2 pages
Skills Framework For Security Technical Skills & Competencies (TSC) Reference Document
NicholasFCheong
No ratings yet
CISM Job Practice Areas
Document6 pages
CISM Job Practice Areas
Jeya Balasubramani
No ratings yet
Ds Itsm
Document4 pages
Ds Itsm
skyflashrj
100% (1)
IAPP Cipm - Instructiuni Tematica Si Examen
Document7 pages
IAPP Cipm - Instructiuni Tematica Si Examen
euromarket
No ratings yet
Incident Management Procedure PDF
Document19 pages
Incident Management Procedure PDF
hero
No ratings yet
Well Control
Document50 pages
Well Control
Ubed Ali Sher
No ratings yet
Cyber - Unit 31
Document110 pages
Cyber - Unit 31
excitekarthik
No ratings yet
Fortisoar: Common Soc Challenges
Document4 pages
Fortisoar: Common Soc Challenges
Alexander Sarpa
No ratings yet
Incident Management Procedure
Document7 pages
Incident Management Procedure
George Mido
No ratings yet
Principles of Incident Response and Disaster Recovery
Document62 pages
Principles of Incident Response and Disaster Recovery
Abubakar Siddique
100% (1)
Security Incident Response Plan: What This Is For
Document10 pages
Security Incident Response Plan: What This Is For
Muhammad Ateeq
No ratings yet
Service Operation Readiness Assessment
Document25 pages
Service Operation Readiness Assessment
manojghorpade
No ratings yet
ITIL Process Assessment Framework - MacDonald
Document42 pages
ITIL Process Assessment Framework - MacDonald
Danitza Marcela Chiang
75% (4)
Modulo A1 - BPMN Examples
Document13 pages
Modulo A1 - BPMN Examples
Bongani Lungile Nameko
No ratings yet
Handbook For Developing A Public HealthEmergency Operations CentrePart C: Training and Exercises
Document72 pages
Handbook For Developing A Public HealthEmergency Operations CentrePart C: Training and Exercises
msdsub
No ratings yet
G&O Summary, Goals & Objectives
Document4 pages
G&O Summary, Goals & Objectives
Pramod Chakravarthy
No ratings yet
Certificate of Competence: Unit Standard Requirements
Document20 pages
Certificate of Competence: Unit Standard Requirements
Amon sikombe
No ratings yet
Incident Management Process
Document9 pages
Incident Management Process
Dean Archer
100% (2)
Ics Organizational Structure and Elements
Document11 pages
Ics Organizational Structure and Elements
czarisse escalona
No ratings yet