top of page
Certified Threat Intelligence Analyst

Do you possess an analytical mind? Is critical thinking a part of who you are? Then you’ve come to the right place.


A Certified Threat Intelligence Analyst (CTIA) acts as a force multiplier for organizations looking to reinforce their cyber defense security measures.


Threat intelligence is akin to what conventional intelligence agencies across the world engage in to perceive and neutralize threats before any harm can be done. As a certified threat intelligence analyst, you’ll be at the vanguard of your organization’s cybersecurity ecosystem, keeping a 360 degree vigil on existing and foreseen/unforeseen threats.

The Certified Threat Intelligence Analyst (CTIA) program is designed and developed in collaboration with cybersecurity and threat intelligence experts across the globe.


The aim is to help organizations hire qualified cyber intelligence trained professionals to identify and mitigate business risks by converting unknown internal and external threats into quantifiable threat entities and stop them in their tracks. Much like a ‘hunter-killer’ team, you’ll be deployed as a ‘Blue Team’ operative, tasked with threat identification, and asked to employ the tools at hand to thwart active and potential cyberattacks.

Certified Network Defender

Learning Objectives of C|TIA Program

  1. Key issues in the InfoSec domain.

  2. Importance of threat intelligence in risk management, SIEM, and incident response.

  3. Various cyber threats, threat actors, and their objectives for cyberattacks.

  4. Fundamentals of threat intelligence (including threat intelligence types, life cycle, strategy, capabilities, maturity model, frameworks, etc.)

  5. Cyber kill chain methodology, Advanced Persistent Threat (APT), Indicators of Compromise (IoCs), and the pyramid of pain.

  6. Threat intelligence program steps (Requirements, Planning, Direction, Review).

  7. Types of data feeds, sources, and data collection methods.

  8. Threat intelligence data collection and acquisition through Open-Source Intelligence (OSINT), Human Intelligence (HUMINT), Cyber Counterintelligence (CCI), Indicators of Compromise (IoCs), and malware analysis.

  9. Bulk data collection and management (data processing, structuring, normalization, sampling, storing, and visualization).

  10. Data analysis types and techniques including Statistical Data Analysis, Structured Analysis of Competing Hypotheses (SACH), etc.

  11. Complete threat analysis process including threat modeling, fine-tuning, evaluation, runbook, and knowledge base creation.

  12. Different data analysis, threat modeling, and threat intelligence tools.

  13. Creating effective threat intelligence reports.

  14. Different threat intelligence sharing platforms, acts, and regulations for sharing strategic, tactical, operational, and technical intelligence.

Comprehensive Cyber Threat Intelligence

More than 40% of class-time is dedicated to the learning of practical skills, and this is achieved through EC-Council’s labs. The theory to practice ratio for CTIA is 60:40, providing students with a hands-on experience of the latest threat intelligence tools, techniques, methodologies, frameworks, scripts, etc. CTIA comes integrated with labs to emphasize the learning objectives.

The CTIA lab simulates a real-time environment which consists of the latest operating systems including Windows 10 and popular penetration testing platforms like Kali Linux for planning, collecting, analyzing, evaluating, and disseminating threat intelligence.



Introduction to Threat Intelligence

Cyber Threats and Kill Chain Methodology

Requirements, Planning, Direction, and Review

Data Collection and Processing

Data Analysis

Intelligence Reporting and Dissemination

CTIA Training Options

bottom of page