Employees & Buildings
In order to protect intangible assets in the form of data and know-how, human factors should also be taken into account:
From a security perspective company buildings and office rooms offer a physical layer of protection. The examination of the sometimes very complex security measures against unauthorized access is also recommended. In such cases, human factors definitely play a significant role:
- Information Protection Audit: Examination of employee awareness and risk analysis of unauthorized information disclosure through social engineering etc.
From a security perspective company buildings and office rooms offer a physical layer of protection. The examination of the sometimes very complex security measures against unauthorized access is also recommended. In such cases, human factors definitely play a significant role:
- Access Security Audit: Examination of the security measures for access protection, through social engineering, concept auditing, technical audit etc.
Explanation of Social Engineering:
Social engineering describes a kind of confidence trick that is based on interpersonal influence. In this process people are manipulated to the point that they disclose information or perform or refrain from certain actions. Social engineering plays a particularly important role in targeted attacks against companies and their information technology (i.e. industrial espionage). The basis of the relative fraud technology is the pretense of false identities or facts in connection with psychological tricks (playing out authority, taking advantage of helpfulness etc.). The tactics include anything from requests per telephone or email and physical intrusion into company rooms, all the way to complex combinations of different attack variations.
