ECE Policy

ECE Policy


All legitimate and credible certifications have a re-certification program. In fact, ANSI/ISO/IEC 17024, a quality accreditation body requires credible certification providers to have their own re-certification program. Requirement 6.5.1 states, “The certification body shall define recertification requirements according to the competence standard and other relevant documents, to ensure that the certified person continues to comply with the current certification requirements.”

Continued competency can be demonstrated though many methodologies such as continuing profession education, examination (often not re-taking the original exam but an exam that would be at a higher level), or portfolios (when there is a product involved). The fact is there needs to be a time limit for the certification to ensure the consumers that the person has up-to-date knowledge.

This is why several governmental agencies are mandating accreditation of certifications in fields such as IT, Crane Operators, and Selling of Securities to the elderly. Certification’s main purpose is to “protect the public/consumers” NOT to protect the profession. When health, safety and security are at risk, certification is needed and it cannot be given for a “lifetime”. It is generally noted that, if professionals are not required to maintain their knowledge and skills in their profession, they won’t. Today, credible organizations within professional domains require their members to provide evidence of a continuous learning as a basis for maintaining their license.

The ECE will brand, differentiate and distinguish a certified member as dedicated IT Security professional if he/she is willing to continuously learn and share knowledge to keep abreast of the latest changes in technology that affects the way security is viewed, deployed and managed. This is a key requirement of employers internationally and EC-Council being a major certification organization supports it.

How does it work?
Once a candidate becomes certified by EC-Council, the relationship between EC-Council and candidate will always be governed by the EC-Council Candidate Certification Agreement which candidate must agree to prior from receiving your certification. This agreement is also provided at

If a certified member earned certification/s that are included under the ECE scheme, he/she will have to achieve a total of 120 credits (per certification) within a period of three years. If a member holds multiple certifications, credits earned will be applied across all the certifications. However, effective January 1st 2013, each certification will have its own ECE recertification requirements within its respective 3-year ECE window.

The credits can be earned in many ways including attending conferences, writing research papers, preparing for training classes in a related domain (for instructors), reading materials on related subject matters, taking an exam of a newer version of the certification, attending webinars, and many others. Qualified ECE activities must have been completed within ECE program’s 3-year window and must be submitted in only one ECE 3-year window.

ECE credits are earned on a per annum basis, between January 1 – December 31 of each calendar year. Certified members must register their ECE credits earned by 1 February of the following year to maintain their certification status.


Effective January 1st 2009, all EC-Council certifications will be valid for three years from the date of certification. During the three year period, the certification must be renewed by participating in EC-Council Continuing Education (ECE) Program.

For members who were certified prior to 2009, their ECE period will be from January 1st 2009 until December 31st 2011. For their first ECE Scheme Period (2009-2011), they are only required to meet a total of 120 ECE credits By March 31st 2012.

Upon completion of the 3 year ECE program and meeting the requirements (please refer to the How does it work? paragraph below), the member’s certification validity will be extended for another three years from the month of expiry.



If the certified member fails to meet certification requirements within the 3 year time frame, EC-Council will suspend his/her certification.

Suspended members will not be allowed to use the certification logos and related EC-Council membership benefits.

Suspended members must remediate their suspension within a maximum period of 12 months from the date of the expiry of the 3 year time frame. Failing which, the member’s certification and status will be revoked and the member will need to challenge and pass the certification exam again to achieve certification.

For members who were certified prior to 2009, they will be given an extended suspension deadline of March 31st, 2013.

Suspended members that subsequently meet the 120 ECE credit requirements within the specified 12 months deadline from the date of the expiry of the 3 year time frame will be reinstated as a member in good standing and can enjoy the use of their certification logo and related EC-Council benefits. However, the reinstated member will have only a reduced period to achieve another 120 ECE credits for their next recertification window. “Reduced period” refers to a time frame of 3 years less the suspension period.


If member fails to meet certification requirements during the suspension period, he/she will have the certification revoked and will no longer be allowed to continue usage of the certification logo and related benefits. Members whose certification is revoked will be required to retake and pass the respective new exam to regain their certification.


Members whose certification has been suspended or revoked due to non-compliance of certification requirements may send in an appeal in writing to EC-Council. This appeal letter must be received by EC-Council within ninety (90) days of the suspension/ revocation notice, providing details of the appeal and reason(s) for non-compliance.

4. Audit Requirements

Certified members are required to maintain sufficient evidence to show your involvement in activities that earns you ECE credits. There is no requirement to submit evidence until it is requested for specifically by EC-Council.

5. Important Notice

Please note that the above is subject to change from time to time without prior notice. EC-Council reserves the right to make changes as required in order to maintain the reputation and recognition of its certifications and credentials. However, best effort will be used in informing members of changes via the website and the members’ portal.

Below is a list of FAQs :

1.Are there any annual fees payable?

​We will be collecting annual maintenance fees effective from January 1st 2015. The fee is per member basis. Members with certifications tied to the ECE Scheme are to remit USD80 annually and members with only certification that are not tied to the ECE Scheme are to remit USD20. Kindly take note that annual maintenance fee and renewal fee (for certifications such as LPT and CCISO) are separate.

Members will get an automated reminder when fees are due. The annual maintenance fee must be remitted in full on or before the expiration date of the ECE Scheme cycle, as part of ECE Scheme requirement​

2.How do I register my ECE credit?

Please log on to the Aspen Portal ( to register your ECE credits

3.Which event is qualified for the ECE scheme?

Only IT security related events are qualified for ECE scheme such as IT seminars, reading IT security books, publishing a paper on IT Security related topics and anything that updates your knowledge on IT Security not only from EC-Council.

4. What are the events that qualify the ECE scheme?
  1. Association/Organization Chapter Meeting (per Meeting) - 1 credit per hour
  2. Author Article/Book Chapter/White Paper - 10 credits
  3. Author Tool - 40 credits
  4. Authoring Book - 40 credits
  5. Contribution to the exam development 40 credits- 100 credits
  6. Certification/ Examination - 40 credits
  7. EC-Council Examination (ECE) - 120 credits
  8. EC-Council Survey 20 credits
  9. Education Course - 1 credit per hour
  10. Education Seminar/Conference/Event - 1 credit per hour
  11. Higher Education - 15 credits per semester hour
  12. Identify New Vulnerability - 5 credits
  13. Presentation - 3 credits per hour
  14. Reading an Information Security Book/Article Review/Book Review/Case Study - 5 credits
  15. Subscription to Digital/Traditional IS Magazines - 4 credits
  16. Teach New - 21 credits per day
  17. Teach Upgrade - 11 credits per day
5.What certifications from EC-Council are included in the ECE system?


6.Can a member holding any of the above mentioned certification be exempted from the ECE scheme?


7.Who can I speak to if I need more help?

If the particular event or activity is not listed on the Delta portal, you can contact the Administrator at for assistance.

8.Can I use the certification name and logo after I pass my exams?

Yes, you can use the respective logos and labels of the certifications that you hold.

9.Where do I go to download the logos and guidelines?

You can download logos and usage guidelines from Aspen portal (