fbpx

ICSI Exams

ICSI Exam Objectives

Certification name: ICSI | CCU Cyberaware Certified User

Overview:
The ICSI | CCU Cyberaware Certified User certification confirms the holder’s knowledge of the basic concepts of cyber security awareness.

Topics covered:

  • Social Engineering Attacks
  • Data Protection
  • Malware Identification

Who will benefit from this course: 
All non-IT members of staff who use computers will benefit greatly from this course.

Exam certification objectives:

After the successful completion of the exam, students will be able to understand and where applicable apply the following:

•    Need for Security: Identify their responsibilities as computer users and understand that data needs to be protected, in accordance with their employer’s security guidelines. 

•    Social Engineering: Identify the different types of social engineering attacks. 

•    Physical Security of Devices: Identify the fundamental measures that should be taken to protect mobile devices.

•    Securing Devices: Identify strong and weak passwords. 

•    Data Protection: Know the basic principles of proper data storage and back-up.

•    Malware Identification: Know the extent of damage that malware can cause and how to protect against malware.

•    Wireless Device Security: Know which measures must be taken to minimise the risk of using wireless devices.

•    Web Safety: Identify secure websites and recognise suspicious websites to be avoided. 

•    Email Security: Know the risks associated with emails and minimise risk when sending and receiving emails.

•    Social Networks Security: Know the risks associated with social networks and how to avoid common pitfalls of social networks.

•    Cloud Services Security: Know the basic terms, benefits and risks associated with the use of cloud services.

•    Physical Security Measures: Know the risks associated with bad office practises in order to avoid them.

•    Creating Passwords: Know why strong passwords are necessary and how to create them.

Exam Details:

Exam code: Cyberaware

Number of questions: 30

Type of questions:  Multiple choice

Test duration: 1 Hour

Passing score: 70%

Language: English

Exam provider:
All ICSI Certification exams are web-based and required to be remote proctored through ProctorU.

Cost: GBP 55

Exam preparation:
Recommended training: ICSI | CYBERAWARE Certified User course

Renewal:
Every three years 

Certification name: ICSI | CSESS CyberSecurity Essentials

Overview:
The ICSI | CSESS CyberSecurity Essentials certification confirms the holder’s knowledge of the basic concepts of information security. 

Topics covered:

  • Information Security: Confidentiality, Integrity and Availability
  • Access Control: Access Control Lists and Access Control Models
  • Cryptography: Symmetric and Asymmetric Cryptography
  • Windows: Active Directory and Operating System Hardening
  • Linux: OS Hardening and OS Updates
  • Application Security: Vulnerabilities and Database Security
  • Incident Response: Incident Response Model and Business Continuity

Who will benefit from this course: 

  • Security professionals
  • Auditors
  • Penetration testers

     

Exam certification objectives:

After the successful completion of the exam, students will be able to understand and where applicable apply the following:

  • Information Security: Confidentiality, integrity and availability.
  • Authentication and Authorisation: Multifactor authentication, authorisation and the least priviledge principle.
  • Access Control: Access control methodologies, access control lists and access control models. 
  • Law and Compliance: Essential concepts of laws, regulations and compliance. 
  • Cryptography: The use of cryptography, symmetric and asymmetric cryptography, hash functions and digital signatures. 
  • Network Security: Network and management protocols, routers and switches, wireless and mobile security. 
  • Windows Infrastructure: Active directory services and operating system hardening.
  • UNIX/Linux Server: The Linux software and OS updates, and how to harden the operating system.
  • Application Security: Software development vulnerabilities and database security.
  • Incident Response: Incident response model and why it is necessary for business continuity. 

Exam Details:

Exam code: CSESS

Number of questions: 30

Type of questions:  Multiple choice

Test duration: 1 Hour

Passing score: 70%

Language: English

Exam provider:
All ICSI Certification exams are web-based and required to be remote proctored through ProctorU.

Cost: GBP 75

Exam preparation:
Recommended training: ICSI | CSESS CyberSecurity Essentials

Renewal:
Every three years 

Certification name: ICSI | CPT Certified Penetration Tester

Overview:
The ICSI | CPT Certified Penetration Tester certification confirms the holder’s ability to properly conduct a penetration test based on industry standards.

Topics covered:

  • Penetration test engagement, scope planning, and reconnaissance 
  • Scanning, exploitation and post exploitation 
  • Web application testing and password attacks 

Who will benefit from this course: 

  • Security professionals
  • Ethical hackers
  • Penetration testers

Exam certification objectives:

After the successful completion of the exam, students will be able to understand and where applicable apply the following:

  • Port Scanning, Enumeration and Application Fingerprinting: Identify open ports, the service and version that runs on each open port. 
  • Operating System Fingerprinting: Identify the exact operating system that runs on each host. 
  • Domain Reconnaissance and Active Directory: Identify domain membership, workgroups and key servers in the target network. Also identify and analyse accessible SMB shares and Active Directory roles. 
  • User Enumeration: Identify valid users using different techniques against well-known protocols such as SMTP and Finger. 
  • Exploiting Windows Vulnerabilities: Identify Windows vulnerabilities, exploit them and identify content on files.
  • Exploiting Unix/Linux Vulnerabilities: Identify Unix/Linux vulnerabilities, exploit them and identify content on files.
  • Web Application Enumeration and Exploitation: Identify the different web servers, HTTP methods and exploit vulnerabilities such as file upload and directory traversal.
  • Database Enumeration: Identify database ports and database versions. 

Exam Details:

Exam code: CPT-INF

Number of questions: 50

Type of questions: Performance-based multiple choice 

Test duration: 3 Hours

Passing score: 70%

Language: English

Exam provider:
All ICSI Certification exams are web-based and required to be remote proctored through ProctorU.

Cost: GBP 200

Exam preparation:
Recommended training: ICSI | CPT Certified Penetration Tester course

Renewal:
Every three years 

Certification name: ICSI | CWPT Certified Web Penetration Tester

Overview:
The ICSI | CWPT Certified Web Penetration Tester certification confirms the holder’s ability to properly conduct a web penetration test based on industry standards, including identifying the insecurities, vulnerabilities and exploits that lie within web applications.  

Topics covered:

  • Web application overview
  • Scanning and exploiting web applications 
  • Username enumeration and password attacks 

Who will benefit from this course: 

  • Penetration testers
  • Ethical hackers
  • Web application developers

Exam certification objectives:

After the successful completion of the exam, students will be able to understand and where applicable apply the following:

  • Port Scanning, Enumeration and Application Fingerprinting: Identify open ports, the service and version that runs on each open port. 
  • Web Application SQL Injection Attacks: Use techniques to identify and exploit SQL injection attacks.  
  • User Enumeration and Password Attacks: Identify valid users using different techniques and brute force login credentials. 
  • Web Application Testing Tools: Demonstrate an understanding of tools and techniques required to perform web application testing against web applications.
  • Web Application Enumeration: Identify the different web server versions and HTTP methods.
  • XSS, XXE and Path Traversal: Identify cross-site scripting (XSS), XML external entity (XXE) and path traversal vulnerabilities. 

Exam Details:

Exam code: CPT-WEB

Number of questions: 25

Type of questions:  Performance-based multiple choice

Test duration: 2 Hours 

Passing score: 70%

Language: English

Exam provider:
All ICSI Certification exams are web-based and required to be remote proctored through ProctorU.

Cost: GBP 200

Exam preparation:
Recommended training: ICSI | CWPT Certified Web Penetration Tester course

Renewal:
Every three years 

Certification name: ICSI | CDFE Certified Digital Forensics Examiner

Overview:
ICSI | Certified Digital Forensics Examiner certification confirms the holder’s ability to conduct computer forensic analysis of Windows computer systems.

Topics covered:

  • Memory forensics and timeline analysis 
  • Log file analysis, email analysis and file analysis 
  • Registry analysis, timestamp analysis and network file analysis 

Who will benefit from this course: 

  • Incident response team members
  • Information security professionals
  • Digital forensic analysts

Exam certification objectives:

After the successful completion of the exam, students will be able to understand and where applicable apply the following:

  • Log File Analysis: Analyse a series of timestamps for events in a Windows event log. 
  • Email Header Analysis: Examine email headers and identify information contained in them.   
  • Memory Analysis: Analyse and identify various data from captured memory files.
  • Registry File Analysis: Analyse offline registry files and identify critical data.
  • File Hashing for Validation: Calculate hashes of individual files and folders for validation.
  • Web Browser Analysis: Analyse internet cache and history files from web browsers to identify websites the user visited. 
  • File Analysis: Identify metadata stored in Microsoft Office files and digital photos.
  • Timestamp and Timeline Analysis: Analyse a series of timestamps related to different events, such as creating a Microsoft Office file. 
  • JumpList Analysis: Analyse a series of jumplists and extract valuable information. 
  • Thumbnail Analysis: Analyse thumbnails and extract information such as timestamps and file names. 
  • Password Recovery: Crack password hashes extracted from a Windows operating system. 
  • Network File Analysis: Use Wireshark and extract information from captured network packets. Such information includes source, destination ports and IP addresses.  

Exam Details:

Exam code: CDFE

Number of questions: 50

Type of questions:  Performance-based multiple choice

Test duration: 2 Hours 30 Minutes

Passing score: 70%

Language: English

Exam provider:
All ICSI Certification exams are web-based and required to be remote proctored through ProctorU.

Cost: GBP 200

Exam preparation:
Recommended training: ICSI | CDFE Certified Digital Forensics Examiner course

Renewal:
Every three years 

Certification name: ICSI | CIL Certified ISO 27001 Lead Implementer

Overview:
The ICSI | CIL Certified ISO 27001 Lead Implementer certification confirms the holder’s ability to identify the principles and concepts of an information security management system.

Topics covered:

  • Information Security Risk Management 
  • Annex A Controls 
  • ISMS Implementation

Who will benefit from this course: 

  • Security officers
  • Security professionals
  • ISMS implementation team members

Exam certification objectives:

After the successful completion of the exam, students will be able to understand and where applicable apply the following:

  • ISO/IEC 27000 Family of Standards: Identify the different standards included in the ISO 27000 family. 
  • Overview and Vocabulary: Know what an ISMS is, and understand the CIA triad. 
  • ISO 27001 Certification Requirements: Know the different clauses which are mandatory requirements of the certification. 
  • Information Security Risk Management: Know the definitions of risk management, risk identification, risk analysis, evaluation and treatment. 
  • Annex A Controls: Know the Annex A controls.
  • ISMS Implementation: Know the roles and responsibilities within the organisation and the different clauses that are part of the ISMS implementation.
  • ISMS Audit and Certification: Know the audit principles and method, and why internal audits are necessary.

Exam Details:

Exam code: CIL

Number of questions: 45

Type of questions:  Multiple choice

Test duration: 2 Hours 

Passing score: 70%

Language: English

Exam provider:
All ICSI Certification exams are web-based and required to be remote proctored through ProctorU.

Cost: GBP 200

Exam preparation:
Recommended training: ICSI|CIL Certified ISO 27001 Lead Implementer course

Renewal:
Every three years 

Certification name: ICSI | MasterPath Certificate in Cybersecurity

Overview:

The ICSI | MasterPath Certificate in Cybersecurity is granted to all who have obtained the following three certifications: 

  1. ICSI | Certified Penetration Tester (CPT)
  2. ICSI | Certified Digital Forensics Examiner (CDFE)
  3. ICSI | Certified ISO 27001 Lead Implementer (CIL)

No additional exam is required.

Topics covered:

All the topics that were covered in the following three courses:

  1. ICSI | Certified Penetration Tester (CPT)
  2. ICSI | Certified Digital Forensics Examiner (CDFE)
  3. ICSI | Certified ISO 27001 Lead Implementer (CIL)

Who will benefit from this course: 

  • Security professionals
  • Ethical hackers
  • Penetration testers
  • Security auditors 
  • Security analysts 
  • Incident response team members
  • Information security professionals
  • Digital forensic analysts

Exam certification objectives:

All certification objectives that were covered in the exams that were completed for the required three certifications: 

  1. ICSI | Certified Penetration Tester (CPT)
  2. ICSI | Certified Digital Forensics Examiner (CDFE)
  3. ICSI | Certified ISO 27001 Lead Implementer (CIL)

Exam Details:

You will need to have passed the respective exams for the following certifications:

  1. CPT-INF
  2. CDFE
  3. CIL

Number of questions: See individual exams 

Type of questions:  See individual exams 

Test duration: See individual exams 

Passing score: See individual exams 

Language: English

Exam provider:
All ICSI Certification exams are web-based and required to be remote proctored through ProctorU.

Cost: GBP 200 for each exam 

Exam preparation:
Recommended training: 

  1. ICSI | CPT Certified Penetration Tester course
  2. ICSI | CDFE Certified Digital Forensics Examiner course
  3. ICSI | CIL Certified ISO 27001 Lead Implementer course

Renewal:
The MasterPath Certificate in Cybersecurity will be renewed provided the required three certifications are valid and duly renewed every three years.

Exams Scheduled to Retire: 

ICSI | CNSS Certified Network Security Specialist
Scheduled to be retired on  30/01/2021, Expire Date: 01/02/2024

ICSI | CPTA Certified Penetration Tester Associate
Scheduled to be retired on  30/12/2021, Expire Date: 01/02/2024

Our registered and postal address is:
The Pinnacle, Office 203, 170 Midsummer Boulevard, Milton Keynes, MK9 1BP

ICSI LTD is registered in England No. 8680530