Physical and Social Engineering
Identify specific weaknesses in security awareness training, endpoint security, and physical controls to improve resilience to targeted digital and non-digital attacks.
Use the latest in psychology, vulnerabilities, and physical attacks to ethically attempt to convince employees to provide sensitive information, perform actions resulting in outsider access, or to use non-destructive means to bypass physical security controls.
Urbane provides assessment reporting that includes:
- Detailed Findings and Observations
- Tailored Remediation Strategies
- Remediation Validation Testing
Urbane focuses testing to simulate actual risks of concern to the organization. As such, Urbane focuses their physical and social engineering exercises on the following methods of testing.
Red Team Engagements
Considered as "by any non-destructive method necessary", Urbane's Red Team Engagements throw the entire range of Urbane specialties to assess the security of digital, physical, and social resources with the goal of gaining access to sensitive information. Starting from unauthenticated external attacks and escalating to physical, these assessments focus on escalation of "risk of capture" for a would-be attacker, including external, social, wireless, and physical testing.
Social Engineering Exercises
Focusing on testing the success of security awareness in an organization, Urbane performs targeted social engineering against employees via E-Mail, phone, social networks, and postal mail to test specific risk concerns. Tests are tailored to the organization, and may include credential harvesting, sensitive information gathering, privilege escalation, and endpoint security testing.
Physical Access Control Review
Using non-destructive methods to attempt to bypass security controls, Urbane performs both guided physical security controls as well as unannounced attempted breaches to assess the security of RFIDs, door locks, camera coverage, building layouts, and on-site security.
The Urbane Difference
Innovative. Sophisticated. Refined.
Urbane demonstrates our founding principles in every engagement through attention to the details, modern techniques, and strong union with our clients.
Request more information
Other Urbane Solutions That May Interest You
Insider Threat Assessments
Attempting to escalate permissions and documenting the extent of access provided, Insider Threat Assessments address the "what if" an employee account or trusted third party becomes malicious or otherwise compromised.
Infrastructure and Cloud Review
With in depth analysis of existing network and server architecture, Urbane provides proven security strategies for decreasing the various risks affecting the unique business needs of the organization with the least amount of impact or resource use.
Design and Implementation
From the ground up or integrating into existing infrastructures, Urbane's design and implementation services provide vendor agnostic solutions focusing on greatest security impact within limited resource requirements.
Assessments performed by Urbane are prided in being the most refined and comprehensive assessments, which allow for our cost-effective and efficient delivery. Our consultants are involved in continuing education and most of thought leaders in the compliance space, this ensures that no matter what type of compliance needs an organization must meet, Urbane is able to exceed all expectations.