EC-Council Certified Incident Handler

Exam code : 212-89 ECIH
version : 2
Vendor : EC-Council

Exam description:
None

Area : CyberSecurity
Status : Active
Exam start on : end on :
Duration (minutes): 180
Questions : min 100 - max 100

Score : min 70 over 100
Cost :

Language :
Format : Closed Book
Delivery : Testing center - Proctored

Note :

Exam topics:

1 - Incident Response and Handling - 16%
- Computer - Security
- Threat - intelligence
- Risk - Management
- Incident - Handling
- Security - Policies
- Information - Security
2 - Process Handling - 14%
- Incident - Handling and Response
- Incident - Readiness
- Security - Auditing
- Security - Incidents
- Forensic - Investigation
- Eradication - and Recovery
3 - Forensic Readiness and First Response - 13%
- Computer - Forensics
- Digital - Evidence
- Forensic - Readiness
- Volatile - Evidence
- Static - Evidence
- Preservation - of Electronic Evidence
- Anti-forensics -
4 - Email Security Incidents - 10%
- Email - Security
- Deceptive - and Suspicious Email
- Email - Incidents
- Phishing - email
5 - Application Level Incidents - 8%
- Web - Application Threats & Vulnerabilities
- Web - Attack
- Eradication - of Web Applications
6 - Network & Mobile Incidents - 16%
- Network - Attacks
- Wireless - Network
- Mobile - Platform Vulnerabilities and Risks
- Unauthorized - Access
- Inappropriate - Usage
- Denial-of-Service -
- Eradication - of Mobile Incidents & Recovery
7 - Insider Threats - 7%
- Insider - Threats Eradication
- Detecting - and Preventing Insider Threats
- Employee - Monitoring Tools
8 - Malware Incidents - 8%
- Malware -
- Malware - Incident Triage
- Malicious - Code
9 - Incidents Occurred in a Cloud Environment - 8%
- Cloud - Computing Threats
- Security - in Cloud Computing Eradication
- Recovery - in Cloud

External link to official page of exam EC-Council Certified Incident Handler

Updateted information on : 28-02-2020

Return to exam list