Biggest Leap Since the Original
EC-Council raises the bar again for ethical hacking training and certification programs through the Certified Ethical Hacker (CEH) v10 program, which is in compliance with the NICE framework’s Protect and Defend specialty area. In order to meet the rising demands of employers across the world, the program now includes IoT hacking, vulnerability analysis, static and dynamic malware analysis, and emerging attack vectors on cloud, artificial intelligence, and machine learning.
“The biggest issue for CISOs is the need to differentiate candidates that have the knowledge and candidates that actually have the skills and abilities to do the job. Abilities that represent true technical and security challenges faced at the workplace today and every day. Many Fortune 500 companies developed creative ways to find and hire those that could actually do the job and they spend millions of dollars and countless amount of time and management to achieve that. Today, we offer a solution to this problem,” said Jay Bavisi, CEO of EC-Council Group and Chairman of the Board, EC-Council University.
Ethical hackers from around the world will now be able validate their skills in a new exam format launched by EC-Council.
The all-new CEH (Practical) certification exam will be delivered as a secure, remotely-proctored, hands-on, live certification test that can be taken anytime, anywhere. The exam is a six-hour practical exam built by subject matter experts in the ethical hacking field, that will test the candidate against 20 real-life scenarios.
The combined benefit of a practical exam proctored anywhere in the world will allow organizations to quickly train, test, and deploy their cyber-ready workforce.
A Progression From the Former
Continuing where the CEH program left off is the enhanced ECSA v10 program that includes a new comprehensive step-by- step penetration testing methodology that improves upon the best from ISO 27001, OSSTMM, and NIST Standards. This program is 100% compliant with the new NICE 2.0 and CREST frameworks, bringing real tangible benefits to employers.
The program includes a new comprehensive social engineering penetration testing methodology and has increased its focus on methodology for perimeter devices (IDS/Firewall), database, wireless, and cloud penetration testing, using both manual and automated penetration testing approaches, along with many other major improvements.
Application of Methodology
After a successful completion of the ECSA v10 credential, certified members can now attempt the brand-new ECSA (Practical) certification exam— a 12 hour practical, fully proctored, live online exam, built on EC-Council’s cyber-range, simulating real-life environments. The exam will test the candidate on their application of penetration testing methodologies to perform a comprehensive security audit of an organization.
The ECSA (Practical) will test your ability to perform threat and exploit research, understand exploits in the wild, write exploits, and much more. The candidate will also be required to create a professional pen testing report with essential elements and guidance for the organization in the scenario to act on.
100% Practicality into Training Sessions
The all-new EC-Council learning track would not be complete without a penetration testing program.
Following the launch of the LPT (Master) program at the Hacker Halted Conference 2017 came a flood of requests for an advanced penetration testing course. Since then, EC-Council began working on a course that could resolve the problems faced by cybersecurity professionals and hiring managers alike, bringing forth EC-Council’s Advanced Penetration Testing program.
The Advanced Penetration Testing Course is designed to demonstrate the advanced concepts of penetration testing, bringing 100% practicality into the training sessions to provide professional skills that demonstrate how professional pen testers will determine the attack surface of targets within a required time frame to gain access to the machines and escalate privileges.
Upon completion of the Advanced Penetration Testing program, candidates will challenge the LPT (Master) exam, the world’s first fully online, remotely-proctored LPT practical exam that offers a challenge like no other by simulating a complex network of a multinational organization in real time.
For more information on these courses, visit www.eccouncil.org/
About EC Council:
EC-Council has been the world’s leading information security certification body since the launch of their flagship program, Certified Ethical Hacker (CEH), which created the ethical hacking industry in 2002. Since the launch of CEH, EC-Council has added industry-leading programs to their portfolio to cover all aspects of information security including EC-Council Certified Security Analyst (ECSA), Computer Hacking Forensics Investigator (CHFI), Certified Chief Information Security Officer (CCISO), among others. EC-Council Foundation, the non-profit branch of EC-Council, created Global CyberLympics, the world’s first global hacking competition. EC-Council Foundation also hosts a suite of conferences across the US and around the world including Hacker Halted, Global CISO Forum, TakeDownCon, and CISO Summit.
To know more about EC-Council, visit www.eccouncil.org/