fbpx

Social Engineering

Home » Services » Managed Security Services » Social Engineering

Tuning technology to prevent compromise to our network is important. However, training and educating your staff on best security practices is just as vital to your organization’s safety. At Intrinium, we believe in utilizing Social Engineering to assess the security awareness of employees. We provide a variety of social engineering offerings that can be customized to the needs of your organization. Social Engineering is not a one size fits all model, talk to us today about how we can help.

 

We offer the following tests:

Email-based Attack

Attempting to entice employees into opening a suspicious correspondence

Spear Phishing

Email and/or phone calls to gain network access

Remote Employee Awareness Exercises

Requesting sensitive information over the phone

On-Site Awareness Exercises

On-site activity where a trained resource tries to penetrate the physical location to gain access to sensitive information or on-premises locations.

We are here to help, contact us today.

Incident Response Plans: More Planning, Less Panic

In less than one year, we’ve seen whole cities taken out by ransomware with no business continuity or disaster recovery plan in place to bring themselves back up- but it’s not just cities that don’t have a plan for when a catastrophe (digital or physical) hits.
Having a plan to restore business operations will save time, money, and stress, but that’s half the equation.  The other half is to practice the plan, make sure all the moving pieces fit together and make sure everything is practical and timely. Enough businesses have spent six digits or more due to not having an incident response plan- set your business and your industry apart.

Gap Analysis 101

f you have spent any time around information technology or people who work in information security, you have probably heard terms like “risk assessment”, “audit”, and “gap analysis”. Sometimes they are used almost interchangeably. However, each has a specific objective to help stakeholders understand their data environment.

While an audit is used to identify control effectiveness and a risk assessment can identify what controls can be implemented to reduce risk, the gap analysis is designed to do exactly what it states – to identify gaps between the current environment and the organization’s required or desired state. This may be a specific regulatory compliance objective, such as how the organization meets the requirements of the HIPAA Security and Privacy Rules or PCI-DSS. In many cases, an organization may want to be able to claim that they are compliant with an information security standard, such as ISO27001. In other instances, the organization may have developed a roadmap for where they plan to be in the future, and want to identify the current progress and next steps. A gap analysis can provide essential feedback for all three examples.

BSides Portland 2019 Recap

At Intrinium, we strive to offer as many opportunities as possible to further education, encourage team collaboration, and networking across our industry. Last weekend, our Managed Security Services team headed to the Portland Convention Center for BSides Portland...

BSides Sacramento: The Recap

  This past weekend, Partner and Advisory CISO, Stephen Heath attended the inaugural BSides event in Sacramento, California. BSides is a national Information Security conference that takes place throughout the nation, it is 100% volunteer organized to continue to...

Pin It on Pinterest