Social Engineering

Test Your Human Firewall

At TraceSecurity, we leverage over 14 years of experience to test your organization's human element - the weakest point of most companies - in the most practical way. Using ethical hacking methods, we'll try to penetrate your organization through your employees using Remote or Onsite Social Engineering, or both.

Real-World Value

With our social engineering engagements, we simulate how real hackers would deceive your employees to access sensitive company information. If you don't have a security awareness program in place, this is a great way to see where your employees stand and begin training based on the results. If you already train your employees in security awareness, our various social engineering engagements can help you test your program and make it even better.

Get the Datasheet

Download the datasheet and find out more about our Social Engineering services.

DOWNLOAD NOW

Our Process

Our social engineering engagements can be managed through our software, TraceCSO, to keep up with any exposed vulnerabilities and get reports - all in one place

Step 1: Scoping Call

Our Information Security Analyst (ISA) will call you about your goals for the engagement, get employee contact information, and discuss the cover stories and templates that will be used.

Step 2: Testing

The analyst will send emails, make phone calls, or physically come to your company location and attempt to access your sensitive company information through your employees.

Step 3: Reporting

Once testing is complete, our ISA will compile the results of your engagement and send you a report in PDF format.

Step 4: Training

We recommend security awareness training for all employees, but especially for those who failed an interaction with our analyst.

Remote vs. Onsite

  • Remote Social Engineering

    Remote Social Engineering

    Our Remote Social Engineering engagements involve TracePhishing, TraceVishing, or both. TracePhishing is our email phishing service that includes education courses through TraceEDU. TraceVishing is our phone call voice phishing, or "vishing," service. These are both tried and true methods that hackers use on a daily basis.

  • Onsite Social Engineering

    Onsite Social Engineering

    How good is your company gatekeeper? Would your employees recognize a rogue person in their work environment? With our Onsite Social Engineering service, one of our analysts will go to your physical location and see if they can walk right through the front door. Once inside, they'll try to access restricted areas and any sensitive company information they can get their hands on.

A Comprehensive Phishing Tool

Using our TracePhishing platform will provide you with the confidence that you are doing everything at your disposal to test and educate your employees around the issues of phishing.

Learn More

Social Engineering Resources

  • Social Engineering 101

    Social Engineering 101

    While preventing the problem may not be as easy as patching a firewall, there are steps organizations can take to educate their employees and prevent social engineering attacks

    Watch the Webinar
  • Strengthening Your Human Firewall

    Strengthening Your Human Firewall

    Join us as we discuss how to help make your people more aware of threats, and create a program that keeps employees continuously learning.

    ​Watch the Webinar
  • 6 Deadly Sins of Data Security

    6 Deadly Sins of Data Security

    Despite all the funds you may have spent on state-of-the-art security software, the bad guys are just one gullible user click away from staging an all-out invasion

    Read the Blog Post
  • Intro to Social Engineering

    Intro to Social Engineering

    Security Services Manager, Nathan Turner, discusses the ins and outs of social engineering and what you can do to protect your company

    Read the Blog Post

Let's Connect

We want to hear about your challenges and would love to help develop simple, actionable IT security recommendations. It’s what we love to do.

Contact An Expert