Use this quick start guide to collect all the information about EC-Council SCE (112-56) Certification exam. This study guide provides a list of objectives and resources that will help you prepare for items on the 112-56 EC-Council SOC Essentials exam. The Sample Questions will help you identify the type and difficulty level of the questions and the Practice Exams will make you familiar with the format and environment of an exam. You should refer this guide carefully before attempting your actual EC-Council SOC Essentials certification exam.
The EC-Council SCE certification is mainly targeted to those candidates who want to build their career in Essentials Series domain. The EC-Council SOC Essentials (SCE) exam verifies that the candidate possesses the fundamental knowledge and proven skills in the area of EC-Council SOC Essentials.
EC-Council SCE Exam Summary:
| Exam Name | EC-Council SOC Essentials (SCE) |
| Exam Code | 112-56 |
| Exam Price | $299 (USD) |
| Duration | 120 mins |
| Number of Questions | 75 |
| Passing Score | 70% |
| Schedule Exam | ECC Exam Center |
| Sample Questions | EC-Council SCE Sample Questions |
| Practice Exam | EC-Council 112-56 Certification Practice Exam |
EC-Council 112-56 Exam Syllabus Topics:
| Topic | Details |
|---|---|
| Computer Network and Security Fundamentals |
- Computer Network - TCP/IP Model - OSI Model - Types of Networks - Network Model - Network Topologies - TCP/IP Protocol Suite - Network Security Controls - Network Security Devices - Windows Security - Unix/Linux Security - Web Application Fundamentals - Information Security Standards, Laws, and Acts |
| Fundamentals of Cyber Threats |
- Cyber Threats - Intent-Motive-Goal - Tactics-Techniques-Procedures (TTPs) - Opportunity-Vulnerability-Weakness - Vulnerability - Threats & Attacks - Example of Attacks - Network-based Attacks - Application-based - Host Based Attacks - Insider Attacks - Malware (Viruses, Worms, Ransomware, etc.) - Phishing and Social Engineering |
| Introduction to Security Operations Center |
- What is a Security Operations Center (SOC)? - Importance of SOC - SOC Team Roles and Responsibilities - SOC KPI - SOC Metrics - SOC Maturity Models - SOC Workflow and Processes - Challenges in Operating a SOC |
| SOC Components and Architecture |
- Key Components of a SOC - People in SOC - Processes in SOC - Technologies in SOC - SOC Architecture and Infrastructure - Different Types of SOC and Their Purposes - Introduction to SIEM - SIEM Architecture - SIEM Deployment Models - Data Sources in SIEM - SIEM Logs - Networking in SIEM - Endpoint Data in SIEM |
| Introduction to Log Management |
- Incident - Event - Log - Typical Log Sources - Need of Log - Typical Log Format - Local Log Management - Centralized Log Management - Logging Best Practices - Logging/Log Management Tools |
| Incident Detection and Analysis |
- SIEM Use Case Development - Security Monitoring and Analysis - Correlation Rules - Dashboards - Reports - Alerting - Triaging Alerts - Dealing with False Positive Alerts - Incident Escalation - Communication Paths - Ticketing Systems |
| Threat Intelligence and Hunting |
- Introduction to Threat Intelligence - Threat Intelligence Sources - Threat Intelligence Types - Threat Intelligence Lifecycle - Role of Threat Intelligence in SOC Operations - Threat Intelligence Feeds - Threat Intelligence Sharing and Collaboration - Threat Intelligence Tools/Platforms - Introduction to Threat Hunting - Threat Hunting Techniques - Threat Hunting Methodologies - Role of Threat Hunting in SOC Operations - Leveraging Threat Intelligence for Hunting - Threat Hunting Tools |
| Incident Response and Handling |
- Incident Handling Process - Incident Classification and Prioritization - Incident Response Lifecycle - Preparation - Identification - Containment - Eradication - Recovery - Post-Incident Analysis and Reporting |
To ensure success in EC-Council SOC Essentials certification exam, we recommend authorized training course, practice test and hands-on experience to prepare for EC-Council SOC Essentials (112-56) exam.