Expected ICS-SCADA Exam Topics, as suggested by Eccouncil :

• Module 1: Introduction to ICS/SCADA Network Defense: This topic covers IT security model, ICS/SCADA security model, security posture, risk management, risk assessment and security policy.
• Module 2: TCP/IP 101: Its primary focus is on TCP/IP network. This topic covers ICS/SCADA protocols, TCP/IP layering, TCP/IP protocol architecture, RFCs and STDs.
• Module 3: Introduction to Hacking: It discusses scanning, footprinting, intelligence gathering, hacking methodology, exploitation, covering tracks, and enumeration.
• Module 4: Vulnerability Management: System vulnerabilities, desktop vulnerabilities, CVE, ICS/SCADA vulnerability sites, ICS/SCADA vulnerability uniqueness, and challenges of vulnerability management within ICS/SCADA are its sub-topics.
• Module 5: Standards and Regulations for Cybersecurity: It discusses ISO 27001, ICS/SCADA, NERC CIP, CFATS, ISA99, and NIST SP 800-82.
• Module 6: Securing the ICS Network: This topic delves into physical security, monitoring, legacy machines, ISO roadmap, and vulnerability assessment.
• Module 7: Bridging the Air Gap: It covers guard, Data diode, and next-generation firewalls.
• Module 8: Introduction to Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS): The topic covers network node, advantages of IDS, and limitations of IDS.

Expected ECSS Exam Topics, as suggested by Eccouncil :

• Module 1: Information Security and Networking Fundamentals: This section of the exam measures the skills of Information Security Analysts and covers the foundational concepts of information security and networking. It includes an overview of information security fundamentals, laws, and regulations. The section also delves into networking basics, exploring the OSI and TCP/IP models, as well as basic network security procedures and policies. A key skill assessed is the ability to identify secure network protocols and their applications.
• Module 2: Information Security Threats and Attacks: This section of the exam measures the skills of Cybersecurity Specialists and covers various types of security threats and attack methods. It explores the stages of the hacking cycle, internal threats like sniffing and ARP spoofing, and external threats such as malware attacks and DoS.
• Module 3: Information Security Controls: This section of the exam measures the skills of Information Security specialists and focuses on identification, authentication, and authorization controls.
• Module 4: Wireless Network, VPN, and Web Application Security: This section of the exam measures the skills of Network Security Specialists and covers the security aspects of wireless networks, VPNs, and web applications.
• Module 5: Ethical Hacking and Pen Testing: This section of the exam measures the skills of the target professionals and provides an introduction to ethical hacking and penetration testing concepts.
• Module 6: Incident Response and Computer Forensics Fundamentals: This section of the exam measures the skills of Forensic Specialists and covers the fundamentals of incident handling and computer forensics.
• Module 7: Digital Evidence and File Systems: This section of the exam measures the skills of forensic specialists and focuses on digital evidence collection and examination processes.
• Module 8: Windows and Network Forensics: This section of the exam measures the skills of Forensic Specialists and covers Windows and network forensics techniques. It includes understanding network forensics analysis mechanisms and collecting volatile and non-volatile information from Windows systems.
• Module 9: Logs and Email Crime Forensics: This section of the exam measures the skills of Security Specialists and focuses on examining security logs, event correlation, and investigating email-related crimes.
• Module 10: Investigation Report: This section of the exam measures the skills of Forensic Specialists and covers the process of writing computer forensics reports. It includes best practices for crafting forensic reports that effectively communicate findings.

Expected ECSAv10 Exam Topics, as suggested by Eccouncil :

• Module 1: Web Application Penetration Testing Methodology/ Penetration Testing Essential Concepts
• Module 2: Database Penetration Testing Methodology/ Penetration Testing Scoping and Engagement Methodology
• Module 3: Social Engineering Penetration Testing Methodology/ Wireless Penetration Testing Methodology
• Module 4: Introduction to Penetration Testing and Methodologies/ Report Writing and Post Testing Actions
• Module 5: Network Penetration Testing Methodology/ Open-Source Intelligence (OSINT) Methodology Cloud Penetration Testing Methodology/ Web Application and Web Server Architecture/ Penetration Testing Essential Concepts/ Network Security Controls and Devices
• Module 6: Penetration Testing Scoping and Rules and Engagement/ Router and Switch Security Assessment Techniques
• Module 7: Social Engineering Penetration Testing Techniques & Steps/ Web Application Security Mechanisms
• Module 8: Penetration Testing Scoping and Engagement Methodology/ Internal Network Information Reconnaissance and Scanning

Expected EC0-479 Exam Topics, as suggested by Eccouncil :

• Module 1: Security Analysis and Penetration Testing Methodologies
• Module 2: External Network Penetration Testing Methodology
• Module 3: Internal Network Penetration Testing Methodology

Expected 712-50 Exam Topics, as suggested by Eccouncil :

• Module 1: Governance, Risk, and Compliance: This section of the exam covers defining, adopting, and maintaining a security governance program and leadership to promote an IT security management structure.
• Module 2: Risk Management: This section covers building a risk management plan, assessing risks, building risk reports, and managing risk registers.
• Module 3: Compliance: This section of the exam covers evaluating external regulations, best procedures, and rules to maintain security standards.
• Module 4: Security, Program Management, and Operations: This section of the exam covers security program management and managing security program operations.
• Module 5: Information Security Core Competencies: This section of the exam covers access control, implementing access control policies, identifying different access control systems, social engineering, and phishing attack management. It also covers disaster recovery, transformative technologies, and computing security.
• Module 6: Strategic Planning, Finance, Procurement, and Third-party Management: This section covers strategic planning, finance and budget of the security department, and third-party management.

Expected 512-50 Exam Topics, as suggested by Eccouncil :

• Module 1: Demonstrate knowledge of how to administer NetApp data protection software/ NetApp ONTAP Core Data Protection
• Module 2: Demonstrate knowledge of SnapMirror business continuity solutions/ Describe network connectivity requirements
• Module 3: Demonstrate how to administer hybrid cloud data protection solutions/ Describe how to design data protection solutions
• Module 4: Demonstrate knowledge of how to troubleshoot protection configurations/ Data Protection Design Solutions
• Module 5: Demonstrate knowledge of Snapshot technologies/ Demonstrate the use of data efficiencies as it relates to data protection
• Module 6: Describe how to install NetApp data protection software/ Describe methods of data protection or data redundancy on an ONTAP system
• Module 7: Demonstrate knowledge of MetroCluster operations/ Describe NetApp ONTAP data protection mechanisms
• Module 8: NetApp ONTAP Business Continuity Solutions/ Describe the use of Snapshot technology
• Module 9: Demonstrate knowledge of SVM-DR operations/ NetApp ONTAP Replication Solutions

Expected 312-96 Exam Topics, as suggested by Eccouncil :

• Module 1: Understanding Application Security, Threats, and Attacks: For application developers, security professionals, and IT managers, this section covers the fundamentals of application security, common threats, and attack vectors. It provides an overview of the importance of secure application development and the potential risks associated with vulnerable applications.
• Module 2: Security Requirements Gathering: For project managers, business analysts, and security architects, this domain focuses on identifying and documenting security requirements early in the software development lifecycle. It emphasizes the importance of integrating security considerations into the initial planning stages of application development.
• Module 3: Secure Application Design and Architecture: For software architects, system designers, and senior developers, this part of the exam covers principles of secure application design and architecture. It includes topics such as threat modeling, secure design patterns, and architectural risk analysis to build security into the foundation of applications.
• Module 4: Secure Coding Practices for Input Validation: For software developers and quality assurance professionals, this section examines techniques for properly validating and sanitizing user input to prevent common vulnerabilities such as injection attacks, cross-site scripting (XSS), and buffer overflows.
• Module 5: Secure Coding Practices for Authentication and Authorization: For application developers and identity management specialists, this domain covers implementing robust authentication mechanisms and proper authorization controls. It includes topics like secure password storage, multi-factor authentication, and access control models.
• Module 6: Secure Coding Practices for Cryptography: For developers and security engineers, this part of the exam focuses on the correct implementation of cryptographic functions in applications. It covers topics such as encryption, hashing, key management, and secure random number generation.
• Module 7: Secure Coding Practices for Session Management: For web developers and application security professionals, this section addresses secure session handling techniques to prevent session-related vulnerabilities such as session hijacking, fixation, and cross-site request forgery (CSRF).
• Module 8: Secure Coding Practices for Error Handling: For software developers and quality assurance testers, this domain covers proper error handling and logging practices to prevent information leakage and maintain application stability without compromising security.
• Module 9: Static and Dynamic Application Security Testing (SAST & DAST): For security analysts, quality assurance professionals, and penetration testers, this part of the exam explores various techniques and tools for identifying security vulnerabilities in applications, including both static code analysis and dynamic runtime testing methodologies.
• Module 10: Secure Deployment and Maintenance: For system administrators, DevOps engineers, and security operations professionals, this section covers best practices for securely deploying applications, managing updates, and maintaining the security posture of applications throughout their lifecycle.