Self-study IT Security Courses 資訊安全自學課程
The IT security related self-study courses give you not only the flexibility to choose when and where you learn, but also the pace of learning. An candidate with the required working experience in information security as specified in the course brochures can go for professional qualifications after self-study and passing the exam.
PECB Certified Lead Ethical Hacker (coming soon)
The Certified Lead Ethical Hacker training course enables participants to develop the competence and knowledge required to conduct ethical hacking, mainly for information systems and network penetration tests. Apart from theoretical information, the training course also includes labs that are completed with a virtual machine.
Why Should You Attend?
As the impact of security incidents in small and large organizations has increased significantly, so has the demand for ethical hacking. Ethical hacking is one of the most effective tools of safeguarding assets and protecting people and information. Ethical hacking certification is slowly becoming a standard requirement for professionals who want to work in the field of information security.
A PECB Certified Lead Ethical Hacker certification will help you demonstrate your ability to lawfully assess the security of systems and discover their vulnerabilities. The training course provides information on the latest ethical hacking methods and tools. It also provides a methodology for conducting penetration tests in accordance with standards and best practices, such as the Penetration Testing Execution Standard (PTES) and the Open Source Security Testing Methodology (OSSTMM).
Understanding hackers’ strategies helps solve security issues and challenges. After attending the training course, you will be able to plan, manage, and perform information security penetration tests.
The PECB Certified Lead Ethical Hacker training course is based on the concept of practicing what you learned. It includes lab sessions and practical examples to help you apply the theory into practice.
The training course is followed by an exam. If you pass, you can apply for a “PECB Certified Lead Ethical Hacker” credential. For more information about the examination process, please refer to the Examination, Certification, and General Information section below.
Who Can Attend?
This training course is intended for:
- Individuals seeking to gain knowledge about the main techniques used to conduct penetration tests
- Individuals involved in information security seeking to master ethical hacking and penetration testing techniques
- Individuals responsible for the security of information systems, such as information security officers and cybersecurity professionals
- Information security team members seeking to enhance their information security knowledge
- Managers or expert advisors interested in learning how to manage ethical hacking activities
- Technical experts interested in learning how to plan and perform a penetration test
This training course allows you to:
- Master the concepts, methods, and techniques used by cybersecurity organizations and ethical hackers to conduct penetration tests
- Acknowledge the correlation between penetration testing methodologies, regulatory frameworks, and standards
- Acquire a comprehensive knowledge of the components and operations of ethical hacking
This training course is participant centered and:
- Includes theoretical and practical exercises to help participants acquire the required skills
- Includes a laboratory environment that provides in-depth knowledge and practical experience
- Encourages participants to communicate and engage in discussion and the completion of exercises
- Includes practical exercises, which serve as a preparation for and are similar to the tasks of the certification exam
The main requirement for participating in this training course is having knowledge of information security concepts and principles and advanced skills in operating systems. It is recommended for participants to have knowledge of computer networks and the concepts of programming.
- Day 1: Introduction to ethical hacking
- Day 2: Initiating the reconnaissance phase
- Day 3: Initiating the exploitation phase
- Day 4: Post-exploitation and reporting
- Day 5: Certification exam
The “PECB Certified Lead Ethical Hacker” exam meets all the requirements of the PECB Examination and Certification Program (ECP). It covers the following competency domains:
- Domain 1: Information gathering tools and techniques
- Domain 2: Threat modeling and vulnerability identification
- Domain 3: Exploitation techniques
- Domain 4: Privilege escalation
- Domain 5: Pivoting and file transfers
- Domain 6: Reporting
The PECB Certified Lead Ethical Hacker exam comprises two parts: practical exam and report writing. The practical exam requires the candidate to compromise at least two target machines through penetration testing. The process should be documented in a written report. The PECB Certified Lead Ethical Hacker exam is an open book exam. Candidates are allowed to use training course materials and personal notes during the examination process.
For specific information about the exam type, languages available, and other details, please visit the List of PECB Exams and Exam Rules and Policies.
Upon the successful completion of the exam, you can apply for the “PECB Certified Lead Ethical Hacker” credential, depending on your level of experience, as shown in the table below. You will receive the certificate once you comply with all the relevant educational and professional requirements.
|Credential||Exam||Professional experience||Project experience||Other requirements|
|PECB Certified Lead Ethical Hacker||PECB Certified Lead Ethical Hacker exam||Two years of penetration testing and cybersecurity experience||None|
Signing the PECB Code of Ethics and the PECB CLEH Code of Conduct
To be considered valid, the penetration testing and cybersecurity experience should include the following:
- Determining the scope of ethical hacking
- Defining a penetration testing approach
- Performing the steps that should be followed during a penetration testing
- Defining the penetration testing criteria
- Evaluating penetration test scenarios and treatment options
- Using the methods that help increase the security of operation systems
- Reporting the penetration testing results
- Participants will be provided with training course material containing over 450 pages of information, practical examples, and exercises.