1. REASONS FOR INTRODUCTION OF ECE SCHEME
All legitimate and credible certifications have a re-certification program. In fact, ANSI/ISO/IEC 17024, a quality accreditation body requires credible certification providers to have their own re-certification program. Requirement 6.5.1 states, “The certification body shall define recertification requirements according to the competence standard and other relevant documents, to ensure that the certified person continues to comply with the current certification requirements.”
Continued competency can be demonstrated though many methodologies such as continuing profession education, examination (often not re-taking the original exam but an exam that would be at a higher level), or portfolios (when there is a product involved). The fact is there needs to be a time limit for the certification to ensure the consumers that the person has up-to-date knowledge.
This is why several governmental agencies are mandating accreditation of certifications in fields such as IT, Crane Operators, and Selling of Securities to the elderly. Certification’s main purpose is to “protect the public/consumers” NOT to protect the profession. When health, safety and security are at risk, certification is needed and it cannot be given for a “lifetime”. It is generally noted that, if professionals are not required to maintain their knowledge and skills in their profession, they won’t. Today, credible organizations within professional domains require their members to provide evidence of a continuous learning as a basis for maintaining their license.
The ECE will brand, differentiate and distinguish a certified member as dedicated IT Security professional if he/she is willing to continuously learn and share knowledge to keep abreast of the latest changes in technology that affects the way security is viewed, deployed and managed. This is a key requirement of employers internationally and EC-Council being a major certification organization supports it.
How does it work?
Once a candidate becomes certified by EC-Council, the relationship between EC-Council and candidate will always be governed by the EC-Council Candidate Certification Agreement which candidate must agree to prior from receiving your certification. This agreement is also provided at https://www.eccouncil.org/members/Certification/agreement.pdf.
If a certified member earned certification/s that are included under the ECE scheme, he/she will have to achieve a total of 120 credits (per certification) within a period of three years. If a member holds multiple certifications, credits earned will be applied across all the certifications. However, effective January 1st 2013, each certification will have its own ECE recertification requirements within its respective 3-year ECE window.
The credits can be earned in many ways including attending conferences, writing research papers, preparing for training classes in a related domain (for instructors), reading materials on related subject matters, taking an exam of a newer version of the certification, attending webinars, and many others. Qualified ECE activities must have been completed within ECE program’s 3-year window and must be submitted in only one ECE 3-year window.
ECE credits are earned on a per annum basis, between January 1 – December 31 of each calendar year. Certified members must register their ECE credits earned by 1 February of the following year to maintain their certification status.
Effective January 1st 2009, all EC-Council certifications will be valid for three years from the date of certification. During the three year period, the certification must be renewed by participating in EC-Council Continuing Education (ECE) Program.
For members who were certified prior to 2009, their ECE period will be from January 1st 2009 until December 31st 2011. For their first ECE Scheme Period (2009-2011), they are only required to meet a total of 120 ECE credits By March 31st 2013.
Upon completion of the 3 year ECE program and meeting the requirements (please refer to the How does it work? paragraph below), the member’s certification validity will be extended for another three years from the month of expiry.
Any member certified or recertified from January 1st 2016 onwards is liable to pay and annual membership fee.
3. SUSPENSION, REVOCATION & APPEAL
If the certified member fails to meet certification requirements within the 3 year time frame, EC-Council will suspend his/her certification.
Suspended members will not be allowed to use the certification logos and related EC-Council membership benefits.
Suspended members must remediate their suspension within a maximum period of 12 months from the date of the expiry of the 3 year time frame. Failing which, the member’s certification and status will be revoked and the member will need to challenge and pass the certification exam again to achieve certification.
For members who were certified prior to 2009, they will be given an extended suspension deadline of March 31st, 2013.
Suspended members that subsequently meet the 120 ECE credit requirements within the specified 12 months deadline from the date of the expiry of the 3 year time frame will be reinstated as a member in good standing and can enjoy the use of their certification logo and related EC-Council benefits. However, the reinstated member will have only a reduced period to achieve another 120 ECE credits for their next recertification window. “Reduced period” refers to a time frame of 3 years less the suspension period.
If member fails to meet certification requirements during the suspension period, he/she will have the certification revoked and will no longer be allowed to continue usage of the certification logo and related benefits. Members whose certification is revoked will be required to retake and pass the respective new exam to regain their certification.
Members whose certification has been suspended or revoked due to non-compliance of certification requirements may send in an appeal in writing to EC-Council. This appeal letter must be received by EC-Council within ninety (90) days of the suspension/ revocation notice, providing details of the appeal and reason(s) for non-compliance.
4. Audit Requirements
Certified members are required to maintain sufficient evidence to show your involvement in activities that earns you ECE credits.
5. Important Notice
Please note that the above is subject to change from time to time without prior notice. EC-Council reserves the right to make changes as required in order to maintain the reputation and recognition of its certifications and credentials. However, best effort will be used in informing members of changes via the website and the members’ portal.
Below is a list of FAQs :
Effective January 1st 2016,Any member certified or recertified requires to pay an annual membership of USD80 if he/she holds a minimum of one certificate under the ECE policy and USD20 if he/she holds certificates that are not under the ECE policy.
More details about the membership fee, cycle and due date can be found at https://cert.eccouncil.org/membership.html
- Volunteering in public sector - 1 credit per hour
- Association/Organization Chapter Meeting (per Meeting) - 1 credit per hour
- Author Article/Book Chapter/White Paper - 20 credits
- Authoring Course/Module - 40 credits
- Author Tool - 40 credits
- Authoring Book - 100 credits
- Contribution to the exam development:40 credits- 100 credits
- Certification/ Examination - 40 credits
- EC-Council Examination (ECE) - 120 credits
- EC-Council Survey - 20 credits
- Education Course - 1 credit per hour
- Education Seminar/Conference/Event - 1 credit per hour
- Higher Education - 15 credits per semester hour
- Identify New Vulnerability - 10 credits
- Presentation - 3 credits per hour
- Reading an Information Security Book/Article Review/Book Review/Case Study - 5 credits
- Teach New - 21 credits per day
- Teach Upgrade - 11 credits per day
- Review board- 80 credits