what is EC-Council Certified Security Analyst Licensed Penetration Tester Program

ecsa-lpt-program-IMG1[1]You are an ethical hacker. Your last name is “Pwned.” You dream about enumeration and you can scan networks in your sleep. You have expert knowledge and an arsenal of hacking tools. You know how to successfully attack fully patched and hardened systems and circumvent common security controls.

You may be asking yourself, “Is that enough? What’s next?”

Even though you may be able to write custom code to prevent exploits, what you may be lacking is the knowledge and experience to execute a successful penetration test according to accepted industry standards. Do you lack the knowledge to correctly apply ethical hacking tools while effectively conducting a security analysis of your organization’s network infrastructure?

The EC-Council Certified Security Analyst/Licensed Penetration Tester program consists of two components i.e. EC-Council Certified Security Analyst (ECSA) training and Licensed Penetration Tester (LPT) performance-based skill assessment.

The EC–Council Security Analyst (ECSA) program is a comprehensive, standards-based, methodology intensive training program which teaches information security professionals to conduct real life penetration tests by utilizing EC-Council’s published penetration testing methodology.

EC-Council Certified Security Analyst/ Licensed Penetration Tester Program Ecosystem


How is EC-Council Security Analyst (ECSA) Program Different From The Licensed Penetration Testing (LPT) Program?

ecsa-lpt-program-IMG2[1]The EC-Council Certified Security Analyst (ECSA) program teaches various penetration testing and security auditing methodologies.

Licensed Penetration Tester (LPT) program teaches the report writing skills of the professional pen tester. The LPT program was also designed to evaluate the student’s capabilities of performing penetration tests in real-time scenarios on an active cyber range.

ecsa-lpt-program-IMG3[1]How Many Certificates will I Get?

ECSA/LPT program awards two certificates to successful candidates. The EC-Council Certified Security Analyst certificate is provided on successfully passing the online ECSA exam whereas Licensed Penetration Tester credentials are provided upon meeting the requirements stated in LPT application form.

ecsa-lpt-program-IMG4-NEWIMG[1]Do I Have to be CEH to Attempt the ECSA CERTIFICATION?

No. While the Certified Ethical Hacker (CEH) certification is not a prerequisite for the ECSA course, we strongly advise candidates to attain the CEH prior to the commencement of the ECSA course.

Can I Take The ECSA Training Only and Skip The LPT Licensed Penetration Tester training and Certification?

Yes. However, we strongly recommend candidates to pursue the Licensed Penetration Tester certification as it can be a major milestone in your career and establish you as a penetration tester and Information Security Auditor.


The LPT title and designation is a Private License from EC-Council to suitably qualified individuals that achieve the LPT certification set by EC-Council to use EC-Council's approved trademarks, methodologies, templates and report structures in their professional career. The LPT is NOT a governmentally sanctioned title conferred by any government institution or state.

 Age Requirements and Policies
Concerning Minors

The age requirement for attending the training or attempting the exam  is restricted to any candidate that is at least 18 yearsold.

If the candidate is under the age of 18, they are not eligible to attend the official training or eligible to attempt the certification exam  unless they provide the accredited training center/EC-Council  a written consent of their parent/legal guardian and a supporting letter from their institution of higher learning. Only applicants from nationally accredited institution of higher learning shall be considered.


Disclaimer1[1]EC-Council reserves the right to impose additional restriction to comply with the policy. Failure to act in accordance with this clause shall render the authorized training center in violation of their agreement with EC-Council. EC-Council reserves the right to revoke the certification of any person in breach of this requirement.