Certified Network Defender

The Certified Network Defender (CND) certification program focuses on creating Network Administrators who are trained on protecting, detecting and responding to the threats on the network. Network administrators are usually familiar with network components, traffic, performance and utilization, network topology, location of each system, security policy, etc. A CND will get the fundamental understanding of the true construct of data transfer, network technologies, software technologies so that the they understand how networks operate, understand what software is automating and how to analyze the subject material. In addition, network defense fundamentals, the application of network security controls, protocols, perimeter appliances, secure IDS, VPN and firewall configuration, intricacies of network traffic signature, analysis and vulnerability scanning are also covered which will help the Network Administrator design greater network security policies and successful incident response plans. These skills will help the Network Administrators foster resiliency and continuity of operations during attacks.

CND is a skills-based, lab intensive program based on a job-task analysis and cybersecurity education framework presented by the National Initiative of Cybersecurity Education (NICE).

• Accredited by the ANSI National Accreditation Board under ANSI ISO/IEC 17024
• Approved by the US DoD under Directive 8570/8140
• Recognized by the National Cyber Security Centre NCSC – part of GCHQ (UK’s intelligence, security, and cyber agency) approves EC-Council Training as meeting CYBOK requirements.
• 100+ hands-on labs: More labs than any globally recognized network security certification.
• Lab-intensive program (More than 50% lab)
• Covers modern and advanced network security requirements
• Mapped with NICE Framework under the following category, specialty areas, and work roles
• Your pathway to a career in the blue team
• Master mobile & IoT security defense
• Learn tactical defense of cloud services (AWS, Azure, and GCP)
• Learning beyond technical aspects
• Building perimeter defense skills
• Build job-ready practical skills in live ranges
• Learn the latest technologies and concepts to match modern network security requirements.
• Build hands-on skills with 100+ labs simulating real-time environment
• Learn in-depth attack surface analysis
• Mapped with real-time job roles and responsibilities of network defenders
• Designed and developed by SMEs across the globe

• Planning and administering network security for organizations
• Recognizing security risks, threats, and vulnerabilities
• Ensuring compliance with regulatory standards
• Designing and implementing network security policies
• Applying security principles in distributed and mobile computing environment
• Implementing Identity and Access Management, encryption, and network segmentation
• Managing Windows and Linux Security Administration
• Addressing security risks in mobile devices and IoT
• Implementing strong data security techniques
• Managing security in virtualization technologies and cloud platforms
• Implementing wireless network security
• Conducting risk and vulnerability assessments
• Providing first response to security incidents
• Identifying Indicators of Compromise and Attack
• Integrating threat intelligence for proactive defense
• Conducting Attack Surface Analysis
• Assisting in Business Continuity and Disaster Recovery planning
• Monitoring network traffic and performing log management
• Managing proxy, content filtering, and troubleshooting network issues
• Hardening security of endpoints and selecting firewall solutions
• Configuring IDS/IPS for enhanced security
• Maintaining an inventory of network devices
• Providing security awareness guidance and training
• Managing AAA for network devices
• Reviewing audit logs and analyzing security anomalies
• Maintaining and configuring security platforms
• Evaluating security products and operations procedures
• Identifying and classifying organizational assets
• Implementing system integrity monitoring tools
• Understanding EDR/XDR and UEBA solutions
• Conducting PIA processes for privacy assessment
• Collaborating on threat hunting and incident response
• Understanding SOAR platforms in cybersecurity operations
• Integrating Zero Trust principles into security architectures
• Staying updated on emerging cyber threats
• Understanding the role of AI/ML in cyber defense.

• Network Administrators
• Network security Administrators
• Network Security Engineer
• Network Defense Technicians
• CND Analyst
• Security Analyst
• Security Operator
• Anyone involved in network operations

Exam Code: 312-38 (CND)

Duration: 240 minutes

Exam Domains: