EC-Council Certified Incident Handler

This morning I sat for EC-Council's Certified Incident Handler and wanted to share some thoughts.  First, like everything I've done so far from EC-Council, they appear to cling to relevancy in their courses, shotgun blasting everything in existence at their programs. 

But, like my previous experiences with EC-Council, their material provides outdated references and information throughout the course of study.  A simple search of many of the tools referenced in the coursework reveal deprecated software, software that is lacking relevant updates, or tools that have simply vanished from existence.  For a course that was supposedly updated this year, it appears that much of their information shouldn't have met muster.

Beyond this, the information itself is really just a conglomeration of resources from elsewhere, with EC-Council writing the processes off as their own.  There is no need to reinvent the wheel here, as organizations like NIST have provided this information for everyone, and it requires no certification to understand and use. 

I've tried to come up with something positive about this course, and, at best, it serves as a refresher for previous courses and certifications, primarily CompTIA's Security+, or ISC2's SSCP.

So unfortunately, this course was required as part of the Bachelor's program I am attending.  It isn't something I would recommend to anyone that wants an Incident Handler course that is relevant.  There is no practical examination or hands on experience whatsoever, and it's the regular EC-Council broken English references and exam questions we've grown to hate.

EC-Council's Certified Incident Handler course is currently v.2, 100 questions, and requires 70 correct responses to pass.


Popular Posts