Skip to main content
CyberLive

GIAC Security Essentials (GSEC)

Practitioner Certification
GIAC Security Essentials (GSEC)
Register nowRenew
anab
dod_8140
dora
nis2
Jump to:

Demonstrate fluency in crucial security paradigms and technologies and the hands-on proficiency to put them into practice.

The GIAC Security Essentials (GSEC) certification validates a practitioner's capability and understanding of information security beyond simple terminology and concepts. GSEC certification holders have demonstrated that they are qualified for hands-on roles addressing security tasks in IT systems.

Areas Covered

  • Defense in depth, access control and password management
    • Defensible network architecture, networking and protocols, and network security
    • Web communication security, virtualization and cloud security, and endpoint security
  • Incident handling and response, data loss prevention, mobile device security, vulnerability scanning and penetration testing
    • SIEM, critical controls, and exploit mitigation
  • Cloud: AWS and Azure operations
    • Cryptography: basic concepts, algorithms and deployment, and application
    • Linux: Fundamentals, hardening and securing
    • Windows: access controls, automation, auditing, forensics, security infrastructure, and services

Who is GSEC for?

  • New InfoSec professionals with backgrounds in information systems and networking
  • Security professionals, managers, and administrators
  • Operations personnel
  • IT engineers and supervisors
  • Forensic analysts
  • Penetration testers
  • Auditors

CyberLive: Real labs. Real tools. Real skills.

CyberLive is a hands-on exam format that replaces traditional multiple-choice testing with performance-based challenges in realistic lab environments to validate real-world capability.

Virtual Machines:

Full-scale lab systems that behave like physical computers: install, attack, defend, and run services.

Real Security Tools:

Exact tools used by professionals every day including all the quirks and challenges

Authentic Code:

Real code, real exploits, real impacts

Learn more about CyberLive

Exam Format

  • 1 proctored exam
  • 106 questions
  • Time limit of 4 hours
  • Minimum passing score of 73%

Note: GIAC periodically reviews and may update certification specifications to ensure fairness, validity, and reliability. Using a psychometric standard-setting study, GIAC has set the passing score for the GSEC exam at 73% for all candidates who receive the exam version released on or after August 6th, 2017.

To confirm the exam format and passing score that apply to your specific attempt, please refer to the Certification Information section of your GIAC account: https://exams.giac.org/pages/attempts.

Certification Delivery

GIAC certification attempts will be activated in your GIAC account after your application has been approved and according to the terms of your purchase. Details on delivery will be provided along with your registration confirmation upon payment. You will receive an email notification when your certification attempt has been activated in your account. You will have 120 days from the date of activation to complete your certification attempt.

NOTE: All GIAC Certification exams are web-based and required to be proctored. There are two proctoring options: remote proctoring through ProctorU, and onsite proctoring through PearsonVUE. Click here for more information.

Woman Staring at Tablet

Exam Certification Objectives & Outcome Statements

  • Access Control & Password ManagementThe candidate will understand the fundamental theory of access control and the role of passwords in access control management.
  • Container and MacOS SecurityThe candidate will demonstrate an understanding of how to secure containers and understand security features provided in MacOS.
  • CryptographyThe candidate will have a basic understanding of the concepts of cryptography, including the major types of cryptosystems, the mathematical concepts that contribute to cryptography and identify commonly used symmetric, asymmetric, and hashing cryptosystems.
  • Cryptography ApplicationThe candidate will have a high-level understanding of the use, functionality, and operation of VPNs, GPG, and PKI.
  • Data Loss Prevention and Mobile Device SecurityThe candidate will understand the risks and impacts of data loss, how to prevent it, and the security considerations of mobile devices.
  • Defense in DepthThe candidate will understand what defense in depth is, identify the key areas of security, and demonstrate the different strategies for implementing effective security within an organization.
  • Defensible Network ArchitectureThe candidate will demonstrate how to architect a network to be monitored and controlled to resist intrusion.
  • Endpoint SecurityThe candidate will demonstrate a basic understanding of the function and uses of endpoint security devices, such as endpoint firewalls, HIDS, and HIPS.
  • Enforcing Windows Security PolicyThe candidate will have a high-level understanding of the features of Group Policy and working with INF security templates.
  • Incident Handling & ResponseThe candidate will understand the concepts and processes associated with incident handling.
  • Linux FundamentalsThe candidate will demonstrate an understanding of the Linux operating system structure, vulnerabilities, and permissions.
  • Linux Security and HardeningThe candidate will demonstrate an understanding of gaining visibility into a Linux system to be able to secure, audit, and harden the system.
  • Log Management & SIEMThe candidate will demonstrate a high-level understanding of logging importance, configuration, and SIEM assisted analysis.
  • Malicious Code & Exploit MitigationThe candidate will understand important attack methods and basic defensive strategies to mitigate malicious software threats and exploitations.
  • Network Security DevicesThe candidate will demonstrate a basic understanding of the function and uses of network security devices, such as firewalls, NIDS, and NIPS.
  • Networking & ProtocolsThe candidate will demonstrate an understanding of the properties and functions of network protocols and network protocol stacks.
  • Security Frameworks and CIS ControlsThe candidate will understand the purpose, implementation, and background of the CIS Critical Controls, NIST Cybersecurity Framework, and the MITRE ATT&CK knowledge base.
  • Virtualization, Cloud Security, and AI EssentialsThe candidate will have a basic understanding of concepts of virtualization, cloud architectures, and AI fundamentals.
  • Vulnerability Scanning and Penetration TestingThe candidate will demonstrate an understanding of the concepts and relationship behind reconnaissance, resource protection, risks, threats, and vulnerabilities including the creation of network maps and penetration testing techniques.
  • Web Communication SecurityThe candidate will demonstrate an understanding of web application security and common vulnerabilities including cookies, SSL, and access control.
  • Windows Access ControlsThe candidate will understand how permissions are applied in the Windows NT File System, Shared Folders, Printers, Registry Keys, and Active Directory, and how Privileges are applied.
  • Windows as a ServiceThe candidate will understand how to manage updates for a network of Windows hosts.
  • Windows Automation, Auditing, and ForensicsThe candidate will understand the techniques and technologies used to audit Windows hosts and simple PowerShell scripting.
  • Windows Security InfrastructureThe candidate will identify the differences between types of Windows OSes and how Windows manages groups and accounts, locally and with Active Directory and Group Policy.
  • Windows Services and Microsoft CloudThe candidate will understand how to take basic measures in securing Windows network services such as IPsec, IIS, and Remote Desktop Services and Microsoft Azure security features.
  • Wireless Network SecurityThe candidate will have a basic understanding of the configuration and risks of wireless networks and how to secure them.

Practice Tests

  • Practice exams are a simulation of the real exam, allowing you to become familiar with the test engine and style of questions
  • Practice exams can serve as a gauge to determine if your preparation methods are sufficient
  • The bank of practice questions is limited, so you may encounter the same question on multiple practice tests
  • Practice exams never include actual exam questions
  • Purchase a GSEC practice test here

How To Prepare

Other Resources

  • Training is available  in a variety of modalities including live training and OnDemand
  • Practical work experience can help ensure that you have mastered the skills necessary for certification
  • College level courses or self-paced study through other programs or materials may meet the needs for mastery
  • Understand the procedure to contest exam results
  • Use this justification letter to share key details of this certification opportunity with your boss

Find Affiliate Training

Explore affiliate training options to prepare for your GIAC certification exam.

Find Training Now

Subscribe to GIAC’s Monthly Newsletter

Receive expert insights, priority access to certifications, essential updates on regulatory changes and industry developments.