Does CEH Expire? Yes — 120 ECE Credits Every 3 Years

Yes, the Certified Ethical Hacker (CEH) certification expires every 3 years. EC-Council requires you to earn 120 ECE (EC-Council Continuing Education) credits with a minimum of 20 credits per year, plus maintain your EC-Council membership at $80 per year. While 120 credits sounds like a lot, each credit equals roughly 1 hour of continuing education—many activities like reading security articles, attending webinars, or participating in CTF competitions count toward your requirement.

The CEH renewal process reflects the rapidly evolving nature of cybersecurity. New attack techniques, vulnerabilities, and defensive tools emerge constantly, making ongoing education essential for ethical hackers. EC-Council's credit system ensures CEH holders stay current with the latest threats and countermeasures—a critical requirement for professionals trusted to test organizational security.

Validity
3 Years
ECE Credits
120 Total
Annual Min
20/Year
Annual Fee
$80/yr

How to Earn ECE Credits

Activity Credits Details
Training courses1 per hourEC-Council, SANS, vendor, or university courses
Conferences1 per hourDEF CON, Black Hat, RSA, BSides, etc.
Self-study1 per hourReading security books, articles, threat reports
Teaching/presentingUp to 40Teaching security courses, conference presentations
Published articlesUp to 10Blog posts, research papers, whitepapers
Other certificationsVariesEarning CISSP, OSCP, Security+, etc.
CTF competitions1 per hourCapture the Flag events, Hack The Box

For working cybersecurity professionals, earning 120 credits over 3 years (40/year) is achievable through normal professional activities. Attending a 3-day security conference earns 24+ credits. Completing a 40-hour training course earns 40 credits. Reading security news daily for 30 minutes earns ~90 credits per year. Most active security professionals accumulate credits naturally without needing dedicated study time.

CEH Renewal Cost Breakdown

Cost Component Annual 3-Year Total
EC-Council membership$80$240
ECE credits (self-study/free)$0$0
Minimum Total$80$240

CEH vs Other Security Cert Renewal Models

Certification Cycle Credits 3-Year Cost
CEH3 years120 ECE$240
CISSP3 years120 CPEs$375
CompTIA Security+3 years50 CEUs$150
OSCPNeverN/A$0

CEH and CISSP both require 120 credits, but CEH's annual fee is $80 vs CISSP's $125—a 36% savings. CompTIA Security+ requires fewer credits (50 CEUs) but has its own annual fee. Notably, OSCP (OffSec Certified Professional) never expires, making it one of the only offensive security certifications with permanent validity.

Frequently Asked Questions

Does CEH expire?

Yes, every 3 years. Earn 120 ECE credits (min 20/year) and pay $80/year EC-Council membership to maintain.

How many ECE credits do I need?

120 over 3 years with a minimum of 20 per year. 1 credit ≈ 1 hour of qualifying education activity.

What is the CEH renewal cost?

$80/year EC-Council membership ($240 over 3 years). ECE credits can be earned free through self-study and community activities.

What activities earn ECE credits?

Training courses, conferences, self-study, publishing articles, teaching, CTF competitions, and earning other certifications.

What happens if CEH expires?

You lose active status. Pay outstanding membership fees and submit ECE credits to reactivate. Extended lapses may require retaking the exam.

Is CEH or CISSP harder to maintain?

Both require 120 credits. CISSP costs $125/year ($375 total) vs CEH's $80/year ($240). CISSP is 56% more expensive to maintain.

Practice CEH Questions

adaptive questions across all 20 CEH ethical hacking modules.

Start Free CEH Practice Test →

Related CEH Resources

What If I Fail? Without Experience? CEH vs PenTest+ Does OSCP Expire?