Social Engineering

Social Engineering Assessment & Physical Security Testing

Social engineering is currently the ultimate con! The fraudsters are incredibly knowledgeable and have the resources to easily penetrate and infiltrate systems with thefts, breaches, and more.

They will lie, convincingly and successfully, cheat, and steal their way past your organization's security controls, most likely with little trouble, if you do not have the proper security. Their goals: theft, fraud, malice, espionage, and more! Your best line of defense: ensuring that your staff acquires the necessary knowledge, precautions, and possible responses.

  • Do you know why Social Engineering is so effective?
  • Do you know the vast multitude of methods attacks may occur?
  • Are your employees able to identify and possibly, properly respond to Social Engineering scams?

Fraud incidents are on the rise - especially in financial services and healthcare - and many of these crimes result from social engineers achieving deception in person, via the telephone, and/or through popular social networking sites.

Despite all the media hype about the threats from hackers and viruses, the greatest threats to an organization's information security are actually the employees of the company! They are the people who, too often, too willingly, and too ignorantly and obliviously fall victim to Social Engineering ploys, opening your company's doors wide open to slick-tongued fraudsters, theft, viruses, breaches, and much more.

What can you do about social engineering attacks?
There are two ways of protecting yourself and your employees from falling victim to a social engineering scam. One is training your staff how to recognize and deter social engineers, as well as what information is considered private information. If you don’t dictate what is and isn’t important, it’s guaranteed that your important information will be passed off as common knowledge and leaked to a social engineer. Secondly, you should regularly test your staff to see if they are following security protocols or if they disclose private information.

InfoSight is a premier provider of compliance assurance and IT Managed services. We’ve been providing exemplary service to federally-regulated organizations and ensuring the security of financial institutions nationwide for over 15 years. InfoSight offers social engineering training that could fill compliance requirements and testing that will provide a clear picture of your risk profile. We offer affordable solutions to mitigate the risk associated with social engineering. To speak with a security professional, or if you would like more information about social engineering, please visit InfoSightinc.com.

Complementary Services
IT Audit / Compliance Assurance Program
IT Risk Assessment
Enterprise Risk Management