Certification Full Name: GIAC Certified Intrusion Analyst
Certification Provider: GIAC
Exam Code: GCIA
Exam Name: GIAC Certified Intrusion Analyst
GCIA Exam Product Screenshots
The GIAC certified intrusion analyst certification is designed for the individuals or an IT professional who is responsible for host and network monitoring, intrusion detection and traffic analysis. It provides the skills, abilities and knowledge to monitor and configure the intrusion detection system and to interpret, analyze and read network traffic and its relevant log files.
Who can do this certification
This certification is intended for security professionals who like to demonstrate their security related tasks. The candidate is necessary to show an understanding of the information security which beyond the simple concepts and terminology. It is not only for the security professional, even IT professional or any individuals with the required eligibility can appear and get this certification who wants to gain knowledge on this valuable field.
Today there is a wide demand for the security professionals these days. This GCIA seems to be a fruitful certification for the professional that does it; there are lots of career opportunities available in this field of security that benefits a person in terms of education and jobs. The certified GCIA candidate can able to earn salary ranges in between $90000 to $156000. The salary ranges may vary depends upon the location and years of experience that the candidate has. The certified professionals are well recognized by their institutions and they can expect high changes in their own organization by acquiring this certification.
There are 3 separate levels are available via the GIAC certification tree. By achieving this certification, the candidate is at silver level of certification. The gold level of certification needs the candidate to take a detailed technical report. If that paper is accepted, then they will be awarded at gold level. The platinum level of certification is considered as the highest certification available and which requires multiple silver certifications. To gain this certification, extensive research, assignments and testing are required.
Each certification requires minimum qualification and pass in test to get eligible. In that manner, this GCIA certification also requires 1 proctored test passing certificate to get eligible. After achieving this certification, candidates can attend this certification test without any hesitation.
The topics covered in the GCIA certification are listed below:
- Wireshark fundamentals
- IPv6, DNS, TCP, UDP, ICMP and IP headers
- Packet engineering
- Event correlation,
- Network architecture and IDS Rules
- Traffic analysis tools and application protocols
The total number of questions is 150 and required to complete within 4 hours given time duration. The minimum passing percentage for this certification is 67%. By acquiring this certification the candidate can able to demonstrate IDS tuning methods, correlation issue, ability to use tools like silk to establish flow analysis and network traffic, ability to analyze both the ICMP and UDP packets and identify common issues and ability to craft the Tcpdump filter. Also, they will understand the malicious and legitimate process, working of fragmentation via packet and theory capture examples and concepts based on fragmentation attacks.
Validity of the Certification
As it is a trendy and new technology involvement, this is the latest certification, which will take more and more time to unavailable. The candidate can enjoy the benefit out of this certification until it is available throughout the world. It is important to get the recertification for each 4 years to get updates or a retake of new available certification is necessary to maintain the validity of the certification.
Steps involved in the certification
Like other intermediate certifications, this certification also has 1 proctored exam which it is required to complete to get eligible for this GCIA certification exam. Then the candidates need to familiarize with the exam oriented topics to pass this certification exam. They need to provide correct information while applying for the certification. It is necessary to collect the certification from the institute and because that is the only proof for that the candidate acquired the needed skills.
Put the experience and knowledge to the test and achieve GCIA certification to accelerate the career. This is considered as the best and most useful certification for the security professionals, which helps to demonstrate their abilities, knowledge and skills associated with the traffic analysis by using the Wireshark from high to an intermediate degree of proficiency. By acquiring this new and latest technology through this certification, the candidate can perform better in their job roles. I am sure that this certification will develop spontaneous thinking which is the very important to perform security related tasks.
Aronzo, Fenrir Inc.
Frequently Asked Questions
How can I get the products after purchase?
All products are available for download immediately from your Member's Area. Once you have made the payment, you will be transferred to Member's Area where you can login and download the products you have purchased to your computer.
How long can I use my product? Will it be valid forever?
Test-King products have a validity of 90 days from the date of purchase. This means that any updates to the products, including but not limited to new questions, or updates and changes by our editing team, will be automatically downloaded on to computer to make sure that you get latest exam prep materials during those 90 days.
Can I renew my product if when it's expired?
Yes, when the 90 days of your product validity are over, you have the option of renewing your expired products with a 30% discount. This can be done in your Member's Area.
Please note that you will not be able to use the product after it has expired if you don't renew it.
How often are the questions updated?
We always try to provide the latest pool of questions, Updates in the questions depend on the changes in actual pool of questions by different vendors. As soon as we know about the change in the exam question pool we try our best to update the products as fast as possible.
How many computers I can download Test-King software on?
You can download the Test-King products on the maximum number of 2 (two) computers or devices. If you need to use the software on more than two machines, you can purchase this option separately. Please email firstname.lastname@example.org if you need to use more than 5 (five) computers.
What is a PDF Version?
PDF Version is a pdf document of Questions & Answers product. The document file has standart .pdf format, which can be easily read by any pdf reader application like Adobe Acrobat Reader, Foxit Reader, OpenOffice, Google Docs and many others.
Can I purchase PDF Version without the Testing Engine?
PDF Version cannot be purchased separately. It is only available as an add-on to main Question & Answer Testing Engine product.
What operating systems are supported by your Testing Engine software?
Our testing engine is supported by Windows. Andriod and IOS software is currently under development.