SANS Forensics technical training helps demonstrate that an incident response analyst/engineer is knowledgeable and skilled in the field of incident management. Demand for forensics skills is experiencing rapid growth in the industry as enterprises reluctantly acknowledge that incidents will gain a foothold and must be identified and contained once they have occurred.
Predictions for 2015:
- The forensics domain will be the fastest growing domain in the SANS certification suite due to the hot marketplace for incident response skills.
- The GIAC Reverse Engineering Malware (GREM) credential will begin to show up in job posting requirements for malware analysts/engineers, which is one of the fastest growing positions in all of information security.
- The newly established GNFA credential will grow quickly as certification holders in the three other Forensics related domains seek the credential to obtain a new credential and obtain the CMU credits needed to renew their existing domain certifications.
All of these SANS Administration domain credentials have a base price of $1,099 (prior to any training related discounts). All of the certifications require renewal after 4 years which can be accomplished via 36 Continuing Education Credits and a renewal fee of $399. Another option to retain the certification after the four years is to retake the exam.
Here is the Forensics domain summary table summarizing the key information for these certifications as of January 2015.
|Title||Year Established||Total Certificates Issued as of 1/19/15||# of Exam Questions||Time Limit (hrs)||Min Passing Score|
|GIAC Certified Forensic Analyst (GCFA)||2004||3880||115||3||69%|
|GIAC Certified Forensic Examiner (GCFE)||2010||1771||115||3||71%|
|GIAC Reverse Engineering Malware (GREM)||2005||1688||75||2||70.70%|
|GIAC Network Forensic Analyst (GNFA)||2014||59||50||2||60%|