I Passed the GCIH — Here's What the Experience Was Actually Like
After months of studying SEC504 material alongside a full-time role in IT security operations at one of Africa’s largest hydroelectric power plants, I passed the GIAC Certified Incident Handler (GCIH) exam. Here’s the honest version of what that process looked like. Why GCIH My day job involves incident handling in an IT environment. Most certification paths in this space either go too broad (Security+) or too deep into a single domain. GCIH sits at exactly the right level — it covers the full incident handling lifecycle from preparation through lessons learned, while also going into attacker techniques, tooling, and network forensics at a depth that’s actually useful on the job. ...