Those who wish to become ethical hackers should take the Certified Ethical Hacker (CEH) exam available from EC-Council. An ethical hacker tries to penetrate the security measures of the company he or she works for to find and correct flaws. This skilled information technology certification requires a five-day training course prior to taking the test. Keep reading for a detailed CEH exam Overview.
The CEH Class
Not anyone off the street can take the CEH required course. The only student permitted to attend must work for real companies and hold a position within security or be a site administrator. The accredited training centers will check to verify the employment and identity of all people who apply to take the course.
The five-day course teaches students how to scan and hack various network systems to test for vulnerabilities. They will learn how to identify these attacks and neutralize them, preparing them for working as an ethical hacker. The course thoroughly prepares students for the CEH 312-50 exam, which is ANSI accredited. The class covers 19 different modules and allows students to take the CEH exam at the very end, or students can choose to wait and continue through a testing facility at a later date.
Preparing for the CEH Exam
Candidates should be prepared to study material from all modules from the training course as the exam covers all sections. The sections of the exam that contain the highest numbers of questions are Tools/Systems/Programs, Security, Procedures/Methodology, and Analysis/Assessment. These sections contain 40, 31, 25, and 16 questions, respectively. Background and Regulation/Policy each has five questions and Ethics has 3, making up the smallest sections. Candidates should spend more time studying the larger sections as they contain the most points in the exam. To get an idea of what areas of the course to study, candidates can take the 50-question practice test on the EC-Council website.
Taking the Exam
In order to take the exam, candidates must send in an Exam Eligibility Application Form. Applicants must have taken the course or have at least two years of information security experience. Once EC-Council receives the form, they will check the employment verification and educational verification if applicable. Once approved, the candidate must purchase an exam voucher directly with EC-Council.
When a candidate goes to take the exam, he or she will need a voucher, along with the eligibility code. Exam staff will verify this information before the test can start. The exam itself is 125 multiple-choice questions. Candidates should expect the exam to last for four hours. A passing score is a 70%, and those who fail can take the exam again. There is no waiting period for the first retake, but there is with subsequent retakes.
Upon completion of the exam, the candidate will be notified if he or she passed. Upon passing, a CEH welcome kit will arrive by mail within four to eight weeks. The certification is good for up to three years, and renewal requires 120 continuing education credits. Passing the exam certifies that the candidate can secure his or her company’s network from intrusions.