CEH in London
United Kingdom · Europe
What is CEH?
The Certified Ethical Hacker (CEH) v13, issued by EC-Council, is one of the most recognised offensive security certifications in the world. In London, where financial services, fintech, and government contracts drive constant demand for penetration testers and security analysts, the CEH carries serious professional weight. Version 13 introduces AI-driven attack and defence scenarios, reflecting the evolving threat landscape that London-based employers are actively hiring to combat. Whether you're targeting a role in the City, Canary Wharf, or a fast-scaling tech startup in Shoreditch, the CEH signals that you can think like an attacker — and that matters to hiring managers.
Exam details
- Exam cost
- $1199 USD
- Duration
- 240 min
- Passing score
- 70
- Renewal
- Every 3 yrs
Prerequisites: 2 years IT security experience or EC-Council official training
Is CEH worth it in London?
At $1,199 USD for the exam, the CEH v13 is a meaningful investment — but the numbers in London make a compelling case. With the average IT salary sitting around $85,000/yr and a documented average uplift of $15,000/yr post-certification, you're looking at a return on investment within the first few months of a new role. London's cybersecurity job market is consistently ranked among Europe's most active, with demand outpacing supply across sectors from banking to healthcare. Holding a CEH puts you in a credible pool of candidates for penetration tester, security consultant, and SOC analyst roles that command premium salaries in this city. The renewal cycle of every three years keeps your credential current without constant re-examination pressure.
12-week study plan
Weeks 1–4
Foundations and Footprinting
- Cover CEH v13 domains 1–5: ethical hacking intro, footprinting, scanning, enumeration, and vulnerability analysis — use the official EC-Council courseware or an approved study guide.
- Set up a personal lab environment using VirtualBox or VMware with Kali Linux and a vulnerable target VM such as Metasploitable to practise reconnaissance techniques hands-on.
- Complete at least 50 practice questions per week focused on footprinting and scanning concepts to build exam-pattern familiarity early.
Weeks 5–8
System Hacking, Malware, and Sniffing
- Work through CEH v13 domains 6–10 covering system hacking methodology, malware threats, sniffing, social engineering, and denial-of-service — map each concept to real-world tools like Metasploit, Wireshark, and SET.
- Use platforms like Hack The Box or TryHackMe to complete at least two guided rooms per week that align with active exploitation and privilege escalation techniques tested in the exam.
- Review CEH's AI-integrated attack scenarios introduced in v13 and understand how machine learning tools are being used in both offensive and defensive contexts.
Weeks 9–12
Advanced Domains, Mock Exams, and Exam Readiness
- Complete remaining domains covering session hijacking, web application hacking, SQL injection, wireless attacks, mobile hacking, cloud security, and cryptography — prioritise web app and cloud topics as they carry heavy exam weight.
- Sit two to three full-length 125-question mock exams under timed conditions (4 hours) using EC-Council's official practice portal or a reputable third-party question bank, and review every incorrect answer thoroughly.
- In the final week, focus on weak areas identified through mock exams, revise the CEH hacking methodology sequence, and confirm your Pearson VUE or EC-Council exam centre booking in London.
Recommended courses
Exam tips
- 1.Memorise the five-phase CEH ethical hacking methodology — Reconnaissance, Scanning, Gaining Access, Maintaining Access, Covering Tracks — because exam questions frequently test your ability to identify which phase a given action belongs to.
- 2.Know your tools by function, not just by name: the CEH v13 exam expects you to match tools like Nmap, Metasploit, Burp Suite, Aircrack-ng, and Wireshark to specific attack or reconnaissance scenarios, so practise using them hands-on rather than just reading about them.
- 3.Pay close attention to the cloud security and IoT hacking domains in v13 — these have expanded significantly compared to earlier versions and carry more exam weight than many candidates anticipate when allocating study time.
- 4.When answering scenario-based questions, always think from an attacker's methodology perspective first: EC-Council designs distractors that reflect a defender's instinct, so candidates who default to defensive thinking often pick the wrong option on offensive technique questions.
- 5.Use the official EC-Council practice exam portal in the final two weeks — the question style, phrasing, and terminology are closely aligned with the actual exam, and familiarity with that specific format reduces the chance of misreading questions under time pressure.