Home » Security Bloggers Network » CERT-CSIH Domain #1: Protect Infrastructure

CERT-CSIH Domain #1: Protect Infrastructure

by Graeme Messina on January 14, 2019

Introduction

The CERT-CSIH is a useful certification for individuals that have worked in an incident response environment and wish to certify their knowledge. The CERT-CSIH (Certified Computer Emergency Response Team Certified Security Incident Handler) is designed to help you demonstrate your cybersecurity skills in the area of incident response and command. The overall qualification delves into several different areas which are covered in a series of topics, all of which require a solid understanding of how incident response is conducted. The current domain layout and exam weighting looks like this:

Protect Infrastructure 7%
Event/Incident Detection 17%
Triage & Analysis 28%
Respond 40%
Sustain 8%

Today we will be looking at the first domain, Protect Infrastructure. Although it is not weighted heavily, it is still very important in the examination process and needs to be understood fully if candidates are going to pass the exam.

The exam itself consists of 65 multiple-choice questions, and the exam is tested in a closed-book format. The passing score on the exam is 78%, meaning that candidates that score lower than that will not be eligible for CERT-CSIH certification.

The Software Engineering Institute (SEI) requires that users that plan to certify in the CERT-CSIH must first create an account here. The certification is valid for a period of three years and is renewable. In order to renew a certification, members must submit the required documentation 30 days prior to the last day of the month in which the certification expires. The full renewal process can be found here. The examination fee is $499 USD, and the renewal fee is $150 at time of writing. For further pricing queries, you can contact the SEI here.