Exam Details:
The EC-Council Certified Threat Intelligence Analyst (312-85) exam is a proctored, multiple-choice exam that tests candidates on their knowledge of threat intelligence analysis. The exam costs $950 USD and candidates have three hours to complete the exam. The passing score for the exam is 70%.
The exam can be taken online or at a Pearson VUE test center. Online exams are delivered via ProctorU and require a webcam, microphone, and a stable internet connection. Candidates will receive their exam results immediately after completing the exam.
Exam Objectives:
- Introduction to Threat Intelligence
- Requirements, Planning, Direction, and Review
- Collection, Processing, and Analysis
- Dissemination, Consumption, and Feedback
- Threat Intelligence Capabilities in Security Operations
- Threat Intelligence Data Sources
- Threat Intelligence Consumption
- Threat Intelligence Automation
- Threat Intelligence Communication
- Threat Intelligence Metrics and Reporting
- Threat Intelligence Program Building
- Legal and Ethics Issues
Related Books:
- Threat Intelligence: Collecting, Analyzing, and Using Information to Detect and Respond to Security Incidents by Robert M. Lee and Bryan J. Ware
- Threat Intelligence and Incident Response: A Practical Guide to Detection, Analysis, and Response by Scott J. Roberts, Kyle R. Maxwell, Rebekah Brown, and Jay Jacobs
- The Threat Intelligence Handbook: A Practical Guide for Security Teams to Unlocking the Power of Intelligence by Recorded Future
- Practical Threat Intelligence and Data-Driven Threat Hunting: A Hands-On Approach to Building a Comprehensive Threat Intelligence Program by Mohit Kumar and Rishabh Verma
- Building a Practical Information Security Program by Jason Andress and Mark Leary
To pass the EC-Council Certified Threat Intelligence Analyst (312-85) exam, candidates should have a solid understanding of the exam objectives and topics covered. The exam covers threat intelligence basics, threat intelligence program building, threat intelligence data sources and consumption, and threat intelligence communication and automation.
Candidates should also be familiar with threat intelligence metrics and reporting, legal and ethics issues related to threat intelligence, and the use of threat intelligence in security operations. It is recommended that candidates study the related books listed above and participate in hands-on exercises and simulations to gain practical experience in threat intelligence analysis.
By focusing on the exam objectives and building a strong foundation of threat intelligence knowledge, candidates can increase their chances of passing the EC-Council Certified Threat Intelligence Analyst (312-85) exam and advancing their careers in the field of cybersecurity.