GIAC Certified Incident Handler (GCIH) - Only 4 Days

Seven reasons why you should sit your GCIH course with Firebrand Training

Find Out How We Help You To Learn New Skills Quickly

  1. You’ll be trained in just 4 days.
  2. Our course is all-inclusive. A one-off fee covers all course materials, accommodation and meals
  3. Pass GCIH first time or train again for free. This is our guarantee. We’re confident you’ll pass your course first time. But if not, come back within a year and only pay for accommodation, exams and incidental costs
  4. You’ll learn more. A day with a traditional training provider generally runs from 9am – 5pm, with a nice long break for lunch. With Firebrand Training you’ll get at least 12 hours/day quality learning time, with your instructor
  5. You’ll learn faster. Chances are, you’ll have a different learning style to those around you. We combine visual, auditory and tactile styles to deliver the material in a way that ensures you will learn faster and more easily
  6. You’ll get award-winning training. We’ve been named in Training Industry’s “Top 20 IT Training Companies of the Year” every year since 2010. As well as winning many more awards, we’ve trained and certified 63,171 professionals, and we’re partners with all of the big names in the business
  7. You'll do more than study courseware. We use labs, case studies and practice tests to make sure you can apply your new knowledge to the work environment. Our instructors use demonstrations and real-world experience to keep the day interesting and engaging

Think you are ready for the course? Take a FREE practice test to assess your knowledge!

When do you want to sit your accelerated course?

Start

Finish

Status

Book now

Open

Book now

Here's the Firebrand Training review section. Since 2001 we've trained exactly 63,171 students and asked them all to review our Accelerated Learning. Currently, 96.47% have said Firebrand exceeded their expectations:



"Great teaching from skilled and experienced instructors."
Thomas Tronier-Rasmussen, DONG Energy Denmark. - GIAC Global Industrial Cyber Security Professional (GICSP) (5 days) (13/3/2017 to 17/3/2017)

"Our instructor for GICSP was very knowledgeable and very experienced, and this experience added a lot of value to the training that we received at Wyboston Lakes. The venue itself is also very good and lends itself well to intensive training courses. By the end of the week, we had developed camaraderie among the class, and a high degree of confidence that we will be able to pass our certification exams in the near future."
Robert Barnes. - GIAC Global Industrial Cyber Security Professional (GICSP) (5 days) (13/3/2017 to 17/3/2017)

"Our Trainer was extremely knowledgeable, helpful and very good at explaining things. Facilities and accommodation very good. No complaints especially as I passed."
D.H, Northumbrian Water Ltd. - GIAC Global Industrial Cyber Security Professional (GICSP) (5 days) (13/6/2016 to 17/6/2016)

"The real world experience from the instructor proves invaluable - a lot to learn not just about passing the exam"
Nicolas Goupil. - GIAC Global Industrial Cyber Security Professional (GICSP) (5 days) (13/6/2016 to 17/6/2016)

"This was my first experience with Firebrand and it went really well. The course was really intense and we were going through a lot. One thing, I would like to mention is that you should have a good and solid knowledge prior to taking this course, purely due to volume of material you have to go through. Facilities and Environment was really good. You have all the tools that you need to make it a successful training. Instructor was really knowledgeable and had lots of hands on experience. Definitely recommend to anyone."
D.I.. - GIAC Global Industrial Cyber Security Professional (GICSP) (5 days) (7/9/2015 to 11/9/2015)

"Firebrand Training is the best training centre ever! I have experienced extended help from my instructor when I decided not to sit for my exam due to a health problem, and was able to encourage me on when I should sit and pass my exam. Firebrand can help you to find the hiding talent you have."
Zaituni Mmari, eProcess international S.A (ECOBANK GROUP). - GIAC Global Industrial Cyber Security Professional (GICSP) (5 days) (7/9/2015 to 11/9/2015)

"Excellent facility, instruction and accommodation. Felt well prepared for the exam although it is important to remember to attend to the pre-requisites before arriving. Thanks for an immersive and successful week."
T.R., E.ON UK. - GIAC Global Industrial Cyber Security Professional (GICSP) (5 days) (7/9/2015 to 11/9/2015)

"Great training facility and as long as you're willing to put the work in, you will get value from any Firebrand course."
P.A, Chemring Technology Solutions. - GIAC Global Industrial Cyber Security Professional (GICSP) (5 days) (26/1/2015 to 30/1/2015)

"Excellent facilities and course diversity. Instructor was again excellent and the boot camp style of learning beneficial to my learning style."
E.B, Chemring Technology Solutions. - GIAC Global Industrial Cyber Security Professional (GICSP) (5 days) (26/1/2015 to 30/1/2015)

"Good knowledge and experience on Cyber Security for ICS."
Anonymous - GIAC Global Industrial Cyber Security Professional (GICSP) (5 days) (21/11/2016 to 25/11/2016)

"Firebrand provided a first class course and testing centre and makes getting the certification very simple. Having both training and exam in a single centre was very helpful."
Anonymous - GIAC Global Industrial Cyber Security Professional (GICSP) (5 days) (21/11/2016 to 25/11/2016)

"Perfect!"
Anonymous - GIAC Global Industrial Cyber Security Professional (GICSP) (5 days) (21/11/2016 to 25/11/2016)

"Great course with big knowledge in a team of different experiences."
Anonymous - GIAC Global Industrial Cyber Security Professional (GICSP) (5 days) (21/11/2016 to 25/11/2016)

"Excellent instructor, excellent facilities, fantastic experience. Highly recommended to anybody considering training. The best learning experience by far."
J.L, cybsec. - EC-Council Certified Ethical Hacker (CEH) (5 days) (14/4/2017 to 18/4/2017)

"Starting as a very newbie to much of the material, I come out so much more able and knowledgeable in this arena. The practical exercises coupled with great presentation of the material and the clear deep expertise of the instructor meant the course flew by but delivered great learning"
Timothy Canning, GTE Ltd. - EC-Council Certified Ethical Hacker (CEH) (5 days) (14/4/2017 to 18/4/2017)

"Firebrand is exactly what is says on the tin. It's hard work and intense but by far the best way of working. "
Chris Owen, BeyondTrust. - EC-Council Certified Ethical Hacker (CEH) (5 days) (14/4/2017 to 18/4/2017)

"An intense but rewarding course which covers the material well. A good mix of theoretical and practice exercises reinforced with real world examples."
Mark Edwin, Lojo Systems. - AXELOS PRINCE2® Foundation & Practitioner (3 days) (14/4/2017 to 16/4/2017)

"Excellent course and materials, pre course reading and the venue is really good."
N.E. - AXELOS PRINCE2® Foundation & Practitioner (3 days) (14/4/2017 to 16/4/2017)

"The course has been fantastic. Accelerated learning is hard but definitely the way forward. The instructor has been excellent and has been very supportive to everyone attending the course. His delivery style is very effective, friendly and encouraging."
Jennifer Hamling-Hills. - AXELOS PRINCE2® Foundation & Practitioner (3 days) (14/4/2017 to 16/4/2017)

"An excellently well run course, with a Tutor who had brilliant knowledge and kept the course interesting - despite the long days. "
Ganesh Gnanamoorthy. - AXELOS PRINCE2® Foundation & Practitioner (3 days) (14/4/2017 to 16/4/2017)

"Time and attention to the setup, delivery and detail put in was excellent! It was very well delivered - In simple terms when needed, right through to an exceptional level of detail. Very pleased overall."
Phillip Richardson, Severn Trent. - CompTIA Security+ Certification (3 days) (10/4/2017 to 12/4/2017)

"Very good course with good coursework and the instructor gave very good examples to help students with their understanding. "
Mark Cohen. - CompTIA Security+ Certification (3 days) (10/4/2017 to 12/4/2017)

"The course was really interesting and was explained in a very well structured manner which made it very easy to understand. There was a lot of content to cover and very long days followed by room reading was quite full on, however, the two exams went well and I do feel like I took a lot of the course content in and understood it well. The instructor was very good at explaining the course content in real-world scenarios and I felt it was a very good way to help us understand. The instructor was fun and informative and I really enjoyed the course"
Sacha Hill, North Norfolk District Council. - App and Web Development Software Development Fundamentals (2 days) (10/4/2017 to 11/4/2017)

"Highly engaging trainer! Found the MCSA Server 2012 course to be intense but it was helped along the way with the unique and fun way that the trainer took with his approach to it. Hes very, very knowledgeable in the subject which is helped with live notes to take a way (a first for me!) and provided time to carry out labs to test out what is learnt in theory."
The Vinh Hoang, Agent Provocateur Ltd. - Microsoft MCSA: Windows Server 2012 R2 (9 days) (1/4/2017 to 9/4/2017)

"With all today's time pressures, studying takes a back seat. Firebrand allows that concentrated study in an environment with all your needs catered for."
David Ramsbottom, AT&T. - (ISC)2 Certified Cloud Security Professional (CCSP) (6 days) (3/4/2017 to 8/4/2017)

"I came all the way across Canada and across the pond from Calgary to Wyboston for the CCSP training. Why? Because it works! This is the second time that I have been here. The reason why I came back was because of the quality of the training program and the experience and skills of the instructors and staff."
Grant Larsen, The City of Calgary. - (ISC)2 Certified Cloud Security Professional (CCSP) (6 days) (3/4/2017 to 8/4/2017)

"Had a great time at Firebrand as per usual. Staff are friendly and professional. Teaching is engaging and delivered well. "
Mary Campbell, Bucks new university . - ITIL® Foundation Certification (2 days) (3/4/2017 to 4/4/2017)

"I found that I was able to learn a lot about ITIL in the 2-day course. The instructor explained ITIL in ways that made it relatable to real life situations which helped my learning."
C.R. - ITIL® Foundation Certification (2 days) (3/4/2017 to 4/4/2017)

"Wonderful trainer, really focusing on the individual. It is a tough week but the insight you get and things you learn go way beyond any other courses I have attended."
C.G, GCASSOCIATES GmbH. - EC-Council Certified Ethical Hacker (CEH) (5 days) (27/3/2017 to 31/3/2017)

"This is the second time I have taken a Firebrand course and have enjoyed my time at Wyboston again. The instructor is extremely knowledgeable and the content of the course was very engaging."
Tom Sweet, Software Escrow Solutions. - EC-Council Certified Ethical Hacker (CEH) (5 days) (27/3/2017 to 31/3/2017)

"Firebrand is an excellent choice for IT specialists in the UK. Very professional and highly recommended, the number 1 choice for my company. Having experienced the training first hand I will not hesitate to recommend this company, the courses, and the staff, with the excellent facilities provided to my employees and any anybody considering taking certified training in the UK"
John Lynch, CybSec Ltd. - EC-Council Certified Ethical Hacker (CEH) (5 days) (27/3/2017 to 31/3/2017)

"The training is very intensive, but everything is taken care of and thought about. The instructor was immensely knowledgeable and had huge amounts of experience. The facility is excellent too."
Matt Bridgeworth, Softcat plc. - Microsoft Specialist: Architecting Microsoft Azure Solutions (2 days) (29/3/2017 to 30/3/2017)

"A good interesting course, well paced and a good instructor who conveyed her knowledge to the class very well."
Mark Cohen, Civil Service. - CompTIA Network+ Certification and Training (3 days) (27/3/2017 to 29/3/2017)

"The training was brilliantly structured. The trainer was very knowledgeable and helpful. Not only did he explained the concepts perfectly, he also taught from the examination point of view which was helpful in taking on the exams. Highly recommended."
Gaurav Gupta, JP Morgan. - AXELOS PRINCE2® Foundation & Practitioner (3 days) (24/3/2017 to 26/3/2017)

"I would recommend Firebrand. It seemed like a lot of money to spend on training, but it has turned out to be very good value. The course is very well structured and intensive. Not a minute is wasted. The tutor was very knowledgable and approachable. The experience exceeded my expectations"
N.H. - AXELOS PRINCE2® Foundation & Practitioner (3 days) (24/3/2017 to 26/3/2017)

"Excellent and focused training. Definitely, worthwhile to attend. Very knowledgeable and caring tutors. "
A.H. - (ISC)2 CISSP Boot Camp (7 days) (20/3/2017 to 26/3/2017)

"This is a very intensive course which for anyone pursuing a career in Information Security, is vital. The breadth of knowledge gained is invaluable."
Alan Coote. - (ISC)2 CISSP Boot Camp (7 days) (20/3/2017 to 26/3/2017)

"Firebrand is a fantastic provider of courses that gives relevant, effective training. On the CISSP Boot Camp, the instructors' experience was evident throughout and she used it to pass her knowledge on to us through relevant examples. If there was a misunderstanding, it was explained in another way until it was clear. The amount of information that was covered made me feel confident to take the CISSP the end of the week. I thoroughly recommend Firebrand and the CISSP Boot Camp to anyone who needs the training. The facilitators were also key in facilitating learning by taking care of any issues that students had - regardless of the size."
Alexander Wardlaw, Royal Air Force. - (ISC)2 CISSP Boot Camp (7 days) (20/3/2017 to 26/3/2017)

"Firebrand delivers a complete studying experience that is geared towards results. Tutors and support staff are excellent with incredible knowledge and outstanding customer service. The immersive format is absolutely critical to the success of the training approach and delivers results time after time. If you want your organisation and your staff to develop and succeed then Firebrand is the training partner that you need. Completely committed to delivering the results that you deserve. Love it........"
Paul OSullivan, CSC. - Microsoft MCSE: Cloud Platform and Infrastructure (Azure) (9 days) (13/3/2017 to 21/3/2017)

"Very useful, very intense, Plenty of information to take in but it was all useful and will be practical for when i take it back to work. Only positives to say really."
Aman Kumar, DMS. - Microsoft MTA Database Fundamentals (2 days) (20/3/2017 to 21/3/2017)

"Firebrand was fantastic. The tutors were all incredibly friendly. My tutor took the time to ensure all peers understood the learning, even to the point of staying behind to explain things. I would definitely recommend to friends and work colleagues. "
Rosie Gillies, Mtech. - CompTIA A+ & Network+ (7 days) (13/3/2017 to 19/3/2017)

"Very hard work, but it gets you through the course. My brain is so full!"
Chris Fitz-Avon. - Microsoft Developing ASP.NET MVC Web 4 Applications (3 days) (14/3/2017 to 16/3/2017)

"I would recommend Firebrand to anyone who wants to get qualified quickly in a fast learning environment. The days are tough but rewarding as well."
Nick Margerum, React CP. - Microsoft Specialist: Implementing Microsoft Azure Infrastructure Solutions (3 days) (13/3/2017 to 15/3/2017)

"Firebrand is an amazing company which I would recommend to anyone willing to learn within their fields of interest. The knowledge of my teacher was second to none and the staff around are very helpful, polite and welcoming. 10/10"
S.B, RTF Networks. - Cisco CCNA (Routing & Switching) Certification (7 days) (6/3/2017 to 11/3/2017)

"A tough course delivered with seasoned experience by our instructor who knew not only the subject inside out but the best way to present it to relative novices like myself. I will take a lot away from this course and hopefully be able to build on the knowledge gained."
Karl Mardell, Premier Systems IT. - Cisco CCNA (Routing & Switching) Certification (7 days) (6/2/2017 to 11/2/2017)

"Great teacher. Really explained things well and went through the whole course in the expected detail. "
Farooq Riaz. - Cisco CCNA (Routing & Switching) Certification (7 days) (6/2/2017 to 11/2/2017)

"Excellent training. For anyone planning to take certification it's helpful and intensive. This training helped me understand the new features of the software and how to use those for performance improvement of our data model."
Brinda Jana, British Red Cross. - Microsoft MCSA: SQL Server 2016 - Business Intelligence Development (5 days) (6/3/2017 to 10/3/2017)

"Great delivery and having the freedom to learn key areas critical to my job made this course fantastic. The fact that I had a VM remotely accessible from my hotel room was a big help, allowing me to mess around with settings. "
Paul Robertshaw. - Microsoft MCSA: Windows Server 2012 R2 & MCSE: Server Infrastructure (15 days) (25/2/2017 to 11/3/2017)

"A very informative course, ideal for any server administrator. Covered many areas that my personal studying and experience hadnt reached."
PhIllip Edwards, Telis LTD. - Microsoft MCSA: Windows Server 2012 R2 (9 days) (25/2/2017 to 5/3/2017)

"I love coming to do my training down at Firebrand, this is the 5th time I have been down here and I have always gained lots of experience from the courses. "
N.M. - Microsoft MCSA: Windows Server 2012 R2 (9 days) (25/2/2017 to 5/3/2017)

Learn the skills to detect, respond to and resolve computer security incidents on this accelerated GIAC Certified Incident Handler (GCIH) certification course. Incident Handlers are increasingly in demand, as organisations strive to improve their cyber security capabilities.

In just four days, you will develop the skills and knowledge to manage security incidents. You build knowledge of common attack techniques, vectors and tools as well as learning to defend and respond to cyber attacks.

Our unique Lecture | Lab | Review technique will immerse you in the course, combing curriculum with hands-on experience through GCIH labs . This will help you to develop practical skills, reinforced through review sessions to help commit your new knowledge to memory.

During your accelerated GCIH course you will cover a range of exciting topics including:

  • Identifying, analysing and understanding incidents
  • Network, password, system and Denial of Service attacks
  • High-level containment strategies to prevent attackers causing further damage
  • Incident recovery and system restoration

You will be prepared for the GCIH exam. This is covered by your Certification Guarantee.

This course is ideal for IT Incident Handlers, IT Operational Team Leaders, Managers of incident handling teams, IT Security staff, IT System administrators and IT Support staff.

Firebrand's course will prepare you for the GIAC Certified Incident Handler (GCIH) exam certification and provides knowledge equivalent to the SANS SEC504: Hacker Tools, Techniques, Exploits and Incident Handling

Read more ...

Interested? See prices or call 080 80 800 888

Other accelerated training providers rely heavily on lecture and independent self-testing and study.

Effective technical instruction must be highly varied and interactive to keep attention levels high, promote camaraderie and teamwork between the students and instructor, and solidify knowledge through hands-on learning.

Firebrand Training provides instruction to meet every learning need:

  • Intensive group instruction
  • One-on-one instruction attention
  • Hands-on labs
  • Lab partner and group exercises
  • Question and answer drills
  • Independent study

This information has been provided as a helpful tool for candidates considering training. Courses that include certification come with a Certification Guarantee. Pass first time or train again for free (just pay for accommodation, exams and incidental costs). We do not make any guarantees about personal successes or benefits of obtaining certification. Benefits of certification determined through studies do not guarantee any particular personal successes.

Read more ...

Interested? See prices or call 080 80 800 888

Incident Handling: Identification

The candidate will demonstrate an understanding of important strategies to gather events, analyse them, and determine if we have an incident.

Incident Handling: Overview and Preparation

The candidate will demonstrate an understanding of what Incident Handling is, why it is important, and an understanding of best practices to take in preparation for an Incident.

Buffer Overflows and Format String Attacks

The candidate will demonstrate an understanding of how buffer overflows and format string attacks work and how to defend against them.

Client Attacks

The candidate will demonstrate an understanding of various client attacks and how to defend against them.

Covering Tracks: Networks

The candidate will demonstrate an understanding of how attackers use tunneling and covert channels to cover their tracks on a network, and the strategies involved in defending against them.

Covering Tracks: Systems

The candidate will demonstrate an understanding of how attackers hide files and directories on Windows and Linux hosts and how they attempt to cover their tracks.

Denial of Service Attacks

The candidate will demonstrate a comprehensive understanding of the different kinds of Denial of Service attacks and how to defend against them.

Incident Handling: Containment

The candidate will demonstrate an understanding of high-level strategies to prevent an attacker from causing further damage to the victim after discovering the incident.

Incident Handling: Eradication, Recovery, and Lessons Learned

The candidate will demonstrate an understanding of the general approaches to get rid of the attacker‚s artifacts on compromised machines, the general strategy to safely restore operations, and the importance of the incident report and lessons learned meetings.

Network Attacks

The candidate will demonstrate an understanding of various network attacks and how to defend against them.

Password Attacks

The candidate will demonstrate a detailed understanding of the three methods of password cracking.

Reconnaissance

The candidate will demonstrate an understanding of public and open source reconnaissance techniques.

Scanning: Discovery and Mapping

The candidate will demonstrate an understanding of scanning fundamentals; to discover and map networks and hosts, and reveal services and vulnerabilities.

Scanning: Techniques and Defense

The candidate will demonstrate an understanding of the techniques and tools used in scanning, and how to response and prepare against scanning.

Session Hijacking and Cache Poisoning

The candidate will demonstrate an understanding of tools and techniques used to perform session hijacking and cache poisoning, and how to respond and prepare against these attacks.

Techniques for maintaining access

The candidate will demonstrate an understanding of how backdoors, trojan horses, and rootkits operate, what their capabilities are and how to defend against them.

Web Application Attacks

The candidate will demonstrate an understanding of the value of the Open Web Application Security Project (OWASP), as well as different Web App attacks such as account harvesting, SQL injection, Cross-Site Scripting and other Web Session attacks.

Worms, Bots & Bot-Nets

The candidate will demonstrate a detailed understanding of what worms, bots and bot-nets are, and how to protect against them.

Read more ...

Interested? See prices or call 080 80 800 888

This course will prepare you for the following exam. The exam fee is not included in the course price. If you wish to take the exam, we’ll provide instructions on how to register with GIAC.

GIAC Certified Incident Handler (GCIH) exam

  • Number of Questions: 150
  • Duration: 4 hours
  • Type: Proctored Exam
  • Passing score: 73%

You will be required to renew your GCIH certification every four years through Continuing Professional Experience (CPE) credits.

Read more ...

Interested? See prices or call 080 80 800 888

The following are included on your course:

  • Firebrand courseware

Firebrand Training offers top-quality technical education and certification training in an all-inclusive course package specifically designed for the needs and ease of our students. We attend to every detail so our students can focus solely on their studies and certification goals.

Our Accelerated Learning Programmes include:

  • Intensive Hands-on Training Utilising our (Lecture | Lab | Review)TM Delivery
  • Comprehensive Study Materials, Program Courseware and Self-Testing Software including MeasureUp *
  • Fully instructor-led program with 24 hour lab access
  • Examination vouchers **
  • On site testing ***
  • Accommodation, all meals, unlimited beverages, snacks and tea / coffee****
  • Transportation to/from designated local railway stations
  • Examination Passing Policy

Our instructors teach to accommodate every student's learning needs through individualised instruction, hands-on labs, lab partner and group exercises, independent study, self-testing, and question/answer drills.

Firebrand Training has dedicated, well-equipped educational facilities where you will attend instruction and labs and have access to comfortable study and lounging rooms. Our students consistently say our facilities are second-to-none.

Firebrand goes digital

We’re currently migrating from printed to digital courseware. Some courseware is already available in digital, while other books remain in printed form. To find out if this course is digital, call us on 080 80 800 888.

There are several benefits of easy-to-use digital courseware: downloads are immediate, and you’ll always have your courseware available wherever you are. You won’t need to wait for a printed book to be delivered before you start learning – and it’s better for the environment. You can choose to download the courseware to your own device, or borrow one of ours.

Considering a Microsoft course? Always have the most up-to-date Microsoft digital courseware with ‘Fresh Editions’. This gives you access to all versions of digital courseware – you’ll receive updates and revisions of your textbook, at no charge, for the life of that course.

Examination Passing Policy

Should a student complete a Firebrand Training Program without having successfully passed all vendor examinations, the student may re-attend that program for a period of one year.  Students will only be responsible for accommodations and vendor exam fees.

Please note

  • * Not on all courses
  • ** Examination vouchers are not included for the following courses: PMI, CISA, CISM, CGEIT, CRISC, CISSP CBK Review and CSX Practitioner Level 1,2 and 3
  • *** On site testing is not included in our PMI, CISA, CISM, CGEIT, CRISC, CSX Practitioner or ITIL Managers and Revision Certifications
  • **** Accommodation not included on the CISSP CBK Review Seminar

Read more ...

Interested? See prices or call 080 80 800 888

In order to be successful on this course, it is recommended you have:

  • understanding of basic computer networking
  • understanding of basic security principles
  • knowledge of networking protocols
  • knowledge of the Windows command line

Unsure whether you meet the prerequisites?

Don’t worry - we’ll discuss your technical background, experience and qualifications to determine whether this accelerated course suits you.

Just call us on 080 80 800 888 and speak to one of our enrolment consultants.

Firebrand is an immersive environment and requires commitment. Some prerequisites are simply guidelines; you may find your unique experience, attitude and determination enables you to succeed on your accelerated course.

Interested? See prices or call 080 80 800 888