EC-Council Authorized

EC-Council Certified Incident Handler

15,19,20,21,22,24

Provide the best fundamental skills required to handle and respond computer security
Learn new techniques with our top-most trainers
Authorized courseware modules for your reference

View Training Options Talk to Advisor

Group Enrollment with Friends or Colleagues | Get a quote

EC-Council Certified Incident Handler training context photo

4.6

4,371 Ratings

11.4K

Learners

Official Training Partner

EC-Council

Course Overview

EC-Council Certified Incident Handler Course Overview

About This Course

The EC-Council Certified Incident Handler (ECIH) program is designed to provide the fundamental skills to handle and respond to the computer security incidents in an information system. The course addresses various underlying principles and techniques for detecting and responding to current and emerging computer security threats. Students will learn how to handle various types of incidents, risk assessment methodologies, and various laws and policies related to incident handling. After attending this course, they will be able to create incident handling and response policies as well as deal with various types of computer security incidents.

The IT incident management training program will enable students to be proficient in handling and responding to various security incidents such as network security incidents, malicious code incidents, and insider attack threats. In addition, students will learn about computer forensics and its role in handling and responding to incidents. The course also covers incident response teams, incident management training methods, and incident recovery techniques in detail. The ECIH certification will provide professionals greater industry acceptance as the seasoned incident handler.

Who Should Attend

This course will significantly benefit incident handlers, risk assessment administrators, penetration testers, cyber forensic investigators, venerability assessment auditors, system administrators, system engineers, firewall administrators, network managers, IT managers, IT professionals, and anyone who is interested in incident handling and response.

EC-Council Certified Incident Handler Course Key Features

100% Money Back Guarantee

Official courseware + exam voucher included
Live online + classroom format options
Hands-on labs and real-world case studies
Simulation tests at the end of training
Up-to-date curriculum aligned to the latest exam version
Includes 5 mock exams, 150 questions each
24×7 learner assistance and support
30-day re-attendance guarantee

Skills Covered

Risk management & governance
Identity and access management
Security architecture & engineering
Communication and network security
Asset security
Security assessment & testing
Security operations
Software development security

Next Cohort Starts On 27 Jun

Days: --
Hours: --
Minutes: --
Seconds: --

Corporate Training

Enterprise training for teams — private cohorts, custom curriculum, L&D reporting.

Explore corporate plans

Benefits

Why this certification pays off

Certified professionals in this domain are in active demand across IT services, banking, and government. Click a designation to see the salary range and the companies hiring most actively for that role.

Designation

Annual Salary (USD)

Source: Glassdoor (indicative)

Hiring Companies

IBM
Vodafone
Cisco
Accenture
Deloitte
TCS

Source: Indeed

Training Options

Pick the format that fits your week

Three ways to take this course — all include official courseware, hands-on labs, and full certification support.

Preferred
Online Bootcamp
Live Instructor-Led
Live cohort over Zoom/Teams.
- Flexi Pass: reschedule within 90 days
- Live online classes recorded for later review
- Includes self-paced e-learning content
- 24×7 learner assistance and support
- Aligned to the latest exam version
Batch starting from
- • 27 Jun 2026, Weekday Class
- • 18 Jul 2026, Weekend Class
View all schedules
25% Off
$1,499$1,999
Enroll Now
Classroom Batch
In-Person Cohort
Full-day immersive training at our hubs.
- Eight hours daily, in-person delivery
- Available in Dubai, Delhi, Mumbai, London, Singapore
- Printed manuals + exam vouchers included
- Lunch, refreshments, hotel pickup at partner hubs
- Exam can be booked onsite at partner test centres
Batch starting from
- • 27 Jun 2026, Classroom Batch (Dubai)
- • 18 Jul 2026, Classroom Batch (Delhi)
View all schedules
17% Off
$2,499$2,999
Enroll Now
Corporate Training
Private Team Cohort
Upskill or reskill your team — on-site, online, or hybrid.
- Blended delivery — self-paced + live + on-site
- Custom curriculum tailored to your tech stack
- Enterprise-grade LMS integration (SCORM / xAPI)
- Dashboards for L&D leaders + per-team reporting
- NDA-friendly, procurement-ready
Pricing
Custom Quote
Volume discounts at any seat count.
Contact Us

Curriculum

Course Curriculum

Eligibility, prerequisites, and a module-by-module breakdown of what you'll cover.

Eligibility

Designed for working professionals with foundational experience in the discipline. A post-secondary degree in computer science, IT, business, or related fields may substitute for up to one year of experience. Part-time work, internships, or relevant certifications can also count toward the requirement.

Pre-requisites

Full-time experience: accrued monthly. A minimum of 35 hours per week for four weeks = one month of work experience.

Part-time experience: 20–34 hours per week. 1040 hours = 6 months of full-time equivalent; 2080 hours = 12 months.

Internships: paid or unpaid, with letterhead documentation, count toward the experience requirement.

Course modules

Click any module to expand the key topics covered.

Module 01 — Security and Risk Management

Foundations of confidentiality, integrity, and availability, plus risk frameworks that anchor every other domain.

Key topics

CIA triad + security governance principles
Compliance, legal & regulatory issues
Professional ethics and codes of conduct
Risk management concepts + threat modelling
Security policies, standards, procedures, and guidelines

Module 02 — Asset Security

Classifying information assets and applying the right controls across the data lifecycle.

Key topics

Information & asset classification
Data owners, processors, and custodians
Data lifecycle: collection, storage, disposal
Asset retention requirements and data minimisation
Data security controls + standards selection

Module 03 — Security Architecture and Engineering

Designing secure systems — from cryptographic primitives to secure architecture patterns.

Key topics

Engineering processes using secure design principles
Security models (Bell–LaPadula, Biba, Clark–Wilson)
Cryptography: symmetric, asymmetric, hashing, PKI
Vulnerabilities in web, mobile, cloud, IoT, ICS
Physical security and site design

Module 04 — Communication and Network Security

Network protocols, secure communications, and the topology decisions that determine your perimeter.

Key topics

OSI / TCP-IP models and secure network components
Secure communication channels (VPN, TLS, SD-WAN)
Network attacks + mitigations
Wireless, cellular, and satellite security
Firewalls, IDS/IPS, NAC, and zero-trust networking

Module 05 — Identity and Access Management (IAM)

Who can do what, when, and how — the access control core every breach investigation comes back to.

Key topics

Identification, authentication, authorisation, accountability
Identity-as-a-service and federated identity (SAML / OIDC)
Access control models (DAC / MAC / RBAC / ABAC)
Privileged access management (PAM)
Identity lifecycle and provisioning

Module 06 — Security Assessment and Testing

Designing, performing, and analysing the assessments that prove your controls actually work.

Key topics

Assessment, test, and audit strategies
Vulnerability assessments + penetration testing
Log management and SIEM correlation
Code review and security control validation
Security metrics + management reporting

Module 07 — Security Operations

Day-to-day operational security — detection, response, recovery, and the disciplined rituals around them.

Key topics

Investigations and incident response lifecycle
Logging, monitoring, and threat intelligence
Vulnerability and patch management
Disaster recovery + business continuity planning
Physical security, personnel safety, and fire safety

Module 08 — Software Development Security

Embedding security across the SDLC — from requirements to release and into post-deployment monitoring.

Key topics

Security in the SDLC (Waterfall, Agile, DevSecOps)
Secure coding standards + common vulnerabilities (OWASP Top 10)
Application security testing (SAST, DAST, IAST, SCA)
Software supply chain security
Maturity models (BSIMM, SAMM) and assurance

Exam & Certification

How the official exam works

After course completion, your training advisor helps you schedule the official certification exam — booking the test centre, sending practice mock exams, and supplying the exam voucher at partner pricing where applicable. Pass on first attempt and you'll receive both the official vendor certificate and your SkillCertified completion certificate.

Exam duration
3–6 hours
Questions
100–150
Passing score
70%+
Validity
3 years

Sample SkillCertified Certificate of Course Completion

Sample SkillCertified certificate of completion

Get in touch

Still have questions about
EC-Council Certified Incident Handler?

Tell us a bit about yourself — an advisor will reach out within one business hour with answers, schedules, and any group-pricing options.

1-hour response promise
Real humans, not chatbots
No-obligation consultation

Request More Information

Frequently asked questions

How will I benefit from this course?

Network security professionals are in huge demand globally. This course will equip you with the core concepts of network security. Learnfly’s training program will help you with an in-depth understanding of the cyber security. Besides with hands-on expertise and successful completion of EC- Council CEH®V9 Exam you will always be at an edge over the others in regard to network and information security.

Why should I get the CEH certification?

The CEH stands as an introduction to the world of Ethical Hacking. A certification will bestow you an in demand set of skills covering Intrusion Detection, Social Engineering, DDoS Attacks, Buffer Overflows and Virus Creation. It affirms to be a benchmark certification for ethical hackers.

Further, it will let you break into the field of ethical hacking or penetration testing. The CEH will put you ahead of other uncertified job applicants giving you an edge over others.

Is there any pre-requisite for EC-Council course?

There are no pre-requisites required for this course, though some basic knowledge in networking, IT Security or TCP / IP is helpful.

How will this course help me advance in my IT career?

Today, network security is one of the most in-demand skills in the IT industry. In this interconnected world, security threats are on the rise and businesses therefore are looking for IT professionals who can help them recognize network vulnerabilities. This course takes full advantage of your current CCNA certification as a foundation and prepares you for new career opportunities in the world of network security. After completing the CEH course, the next advanced certification is the EC-Council Certified Incident Handler (ECIH).

What is the Eligibility Criteria for the CEH Certification?

The CEH program requires a proof of 2 years of information security experience as validated through the application process. There are two options to complete this program: Option 1: Attend Official Training Candidates have the option to attend the official training at any of the accredited training centers through the iClass platform or via an approved academic institution. Option 2: Attempt Exam without Training a candidate needs to be approved via the eligibility application process in order to be considered for the EC-Council exam without attending the training.

Important Points on the Eligibility Process: Application processing time is typically between 5-10 working days if the application is not approved, the application fee will not be refunded the details in the eligibility application need to be filled carefully. For instance, if the eligibility code does not match the details in the application, the certification will not be issued.

What kind of salary should I expect after completion of this course?

The minimum starting salary for a CEH® ranges from Rs. 3.5 to 4.5 lakhs per annum.

Related Programs

EC-Council Certified Incident Handler