Attention Aspen Members:
Please note that ASPEN will be unavailable starting 12:00AM ET on May 28th, 2018 through 12:00 AM ET on May 31st, 2018 due to scheduled maintenance and updates. We apologize for any inconvenience during this time.
Certified Ethical Hacker (CEH), Blueprint Change Announcement
Effective Oct 1st, 2018, EC-Council will be introducing a new version of the CEH exam blueprint.
An exam blueprint is a framework that helps break down the sections of the test making it easier for the test taker to focus his/ her study as they prepare for the exam. It dictates how many questions in various areas of practice should go on an exam.
As a reputed certification body, we always strive to keep updated of the latest technological advancements in the field of ethical hacking and information system security audits. Our new exam blueprint is an outcome of the same effort.
For those who are scheduled to take the CEH exam on or after Oct 1st, 2018 here are the major changes you can expect to see:
Summary of the updated blueprint:
|Domains||Portion of Total Test||Total Number Items Per Domain||Sub-Domains||Total Number Items Per Sub-Domain|
|Tools / Systems / Programs||28.91%||36||
|Procedures / Methodology||8.77%||11||
|Regulation / Policy||1.90%||2||Information Security Policies/Laws/Acts||2|
|Ethics||2.17%||3||Ethics of Information Security||3|
You can find the existing exam blueprint here; the current blueprint is valid till September 30th 2018.
Note: This announcement is limited to the CEH multiple choice exam and there are no changes to any other aspect of the exam such as the eligibility criteria, exam duration or exam availability.
EC-Council's C|CISO Program officially accredited by ANSI
EC-Council is proud to announce that the Certified CISO Program has officially been accredited by the American National Standards Institute (ANSI) to meet the ANSI/ISO/IEC 17024 Personnel Certification Accreditation standard for its C|CISO certification!
The American National Standards Institute (ANSI) is a private non-profit organization that administers and coordinates the U.S. voluntary standardization and conformity assessment system. ANSI is the official U.S. representative to the International Organization for Standardization (ISO) and, via the U.S. National Committee, the International Electrotechnical Commission (IEC). ANSI is also a member of the International Accreditation Forum (IAF).
To award the accreditation, ANSI conducted a verification process to ensure that EC-Council is impartial and objective as a certification body. It also confirmed that EC-Council’s certification process is conducted in a consistent, comparable, and reliable manner. This process required rigorous quality reviews of EC-Council and the Certified CISO (C|CISO) program.
EC-Council Announces the World’s First Fully Online, Remotely Proctored Hands-On Penetration Testing Exam
EC-Council today announced the release of the new, fully online, remotely proctored Licensed Penetration Tester (LPT) certification, which will be launched at Hacker Halted, 2017. The new LPT (Master) certification exam is the first globally accepted, hands-on penetration testing certification exam administered in a fully remote proctored environment.
Penetration testing professionals around the world will be able validate their skills in this new exam format launched by EC-Council. The new LPT (Master) certification exam will be delivered as a secure, remotely-proctored, live certification test that can be taken anytime, anywhere by busy professionals.
Jay Bavisi, the president and CEO of EC-Council, commented “With the increase in the sophistication of cyber-attacks and with ever growing security needs, today’s digital enterprises are looking for experts that have proven abilities to function as competent penetration testers in order to secure their operations. The online remotely proctored, hands-on LPT (Master) certification exam combines effectiveness with convenience to deliver a highest standard of exam that enables the candidates to demonstrate expertise in applying their skills in a hands-on environment.”
The exam provides a level playing field where candidates are challenged to prove their skills as expert-level penetration testers. Bavisi added “In the real world, penetration testers go through a strenuous, arduous and laborious process to keep their clients and organizations secure. This exam is meant to mimic the real-world environment and is meant to stress, burden and ardently push the candidates to their limits to test their actual abilities in penetration testing.”
The new LPT (Master) certification is the crown jewel of the EC-Council penetration testing track. It challenges candidates through a grueling 18 hours of hands-on exam categorized into three practical tests for six hour intervals, each of which provide a multidisciplinary approach for targeting and compromising high security environments. Upon completion of the exam, candidates will have to demonstrate an advanced understanding of testing modern infrastructures by completing a professional penetration test report to be evaluated by EC-Council experts for completeness and professionalism.
Protect, Detect and Respond to Cyber Security Threats with EC-Council’s Certified Network Defender (CND) Skillset
EC-Council is excited to announce the launch of the all-new certification Certified Network Defender (CND), which was launched globally on September 14th, 2016.
The new certification is designed to be a game changer in the network defence domain. The past few years had seen the disastrous consequences of cyber-crime, which made cyber security one of the key aspects of agenda in the Board Room discussions. Studies point out that, professionals handling the Organisation’s networks are not amply equipped to protect their networks from evolving cyber threats like Advanced Persistent Threats (APTs), sophisticated botnet C&C, Insiders to mention a few. Cyber criminals see this as an opportunity to hack the system compromising on important information. The R&D teams at EC-Council have extensively conducted technology surveys, community engagements, market analysis and SME consultations to develop the CND skillset that will enable networking professionals to protect, detect and respond to cyber security threats.
A thorough job task analysis along with research, market analysis, surveys, community engagement activities, consultation and advice from Subject Matter Experts, has ensured that the CND design is based on cyber security frameworks such as NICE and is in sync with the current markets trends. CND is designed in a manner that it imparts the necessary skillset to the Network Administrator on the nuances of Network Security whether it is designing the Organisation’s network security controls, firewall systems, IDS/IPS systems, policies and procedures, DLP and etc. It also ensures that the personnel handling the network can detect network security breaches at an early stage, and also respond to the same. A deeper analysis of the situation brings to the fore, the larger goals of the organisation being met. Ensuring that information, the key component of the organisation is safe will ensure business continuity, better ROIs on security investment and lesser impact on incidents on Information System Resources. What makes CND different from the other programmes is that CND covers network defence from a Defence perspective going beyond the traditional security solutions and appliances. Also, the CND programme includes operational security aspects such as designing and deploying security policies, network monitoring, vulnerability management, incident handling and response and etc.
EC-Council recommends that companies facing a shortage of qualified security practitioners or companies that cannot afford to hire specialized information security professionals consider adding information security duties to their existing system and network administrator job roles. The fastest way to accomplish this would be to send their employees to the only program on the market designed to teach network and system administrator information security skills: CND.
"EC-Council is glad to announce the initiative of our "My Contribution" a platform for Cyber Security enthusiasts and cyber security experts who are interested to share and contribute their views and feedback through various exercises.
You will have a chance to publish White Papers/ articles, act as Subject matter expert to our team, be a part of the exam development cycle and add value to our certification programs through this platform.
LPT (Master) is available now
Starting 1st December 2015, interested candidates can apply for the "LPT (Master)" credential. For more details about the LPT (Master) program Click Here, If you would like to submit your application Click HereAll EC-Council Prometric IBT valid exams vouchers can be used on the ECC exam centre at https://www.eccexam.com/
Membership Fee for EC-Council Certified Members
EC- Council Exams can now be remotely proctored
EC-Council has partnered with ProctorU allowing exam candidates to take EC-Council exams remotely. ProctorU is an online proctoring service which allows EC-Council candidates to take exams from any location 24 x7 as long as they have a computer equipped with a webcam and a microphone. This online delivery format requires that the students have reliable Internet connectivity and schedule their exam time with a proctor through the ECC Exam Center.
This service is exclusively available with ECC Exam Centre only. Candidates interested in these services need to specify their requirements while placing their orders.
EC-Council Certification status for certified member
Certified members who have earned their EC-Council certification are required to check their recertification requirement and policy at HERE
Members whose certification is revoked will be required to retake and pass the respective new exam to regain their certification.
Please read the latest CEH Handbook to check on the other changes.
Changes to EC-Council Logo Guidelines (Effective From April 1st, 2012).
Additional guidelines in EC-Council logo usage for
Certified Member must state the certification version number next to the logo such as v4, v6, v7, v8. Certified Member may not alter, change or remove elements of the logo in any other way.
Individuals may not use the logo if their certification has been revoked or suspended due to non-compliance of certification requirements.
Certified Member who hold EC-Council 'Retired Status' may not use the logo unless the logo is used with the word 'retired'.
Please download the EC-Council Logo Guidelines below.