Creating the Human Firewall
"Many of the most damaging security penetrations are, and will continue to be, due to Social Engineering, not electronic hacking or cracking. . . Social Engineering is the single greatest security risk in the decade ahead." The Gartner Group
SOCIAL ENGINEERING: An attack based on deceiving users or administrators at the target site. Attacks are typically carried out by phoning or emailing users and pretending to be an authorized user to gain illicit access to systems.
Employee security breaches have become the single greatest security risk of the 21st century. Companies concerned about information and data security are dedicating more resources to evaluate and protect their computer and networking systems. Yet, many ignore the source of their most prevalent exposure - their employees.
Defending the Human Side of Security.
FraudReady is a set of services designed to address the ever-changing threat of Social Engineering and low-tech attacks. Many security consultants touch on Social Engineering, but none go to the lengths we do to show you the reality of the situation facing you. FraudReady will help you develop a complete culture of security.
Social Engineering Fraud and Vulnerabilty Audits
Your security concerns are unique - so is our approach. The Social Engineering fraud and vulnerability audits we perform are tailored to your specific needs. Our in-depth audits address the threat of Social Engineering and low-tech attacks from every angle. Our audits help you understand your weaknesses and vulnerabilities concerning:
- publicly accessible information,
- policies and procedures,
- phone activities,
- email and web use,
- employee behavior,
- facilities.
The easiest way to improve the security posture of your employees is with training. FraudReady training is informative, interesting, and effective. FraudReady training is offered online, in classroom settings, and in seminar format.
Crisis Response and Remediation
When a breach in security does happen, it is important that the response is swift and effective. Our Crisis Response Team will help you:
- understand exactly how the breach occurred,
- determine how widespread its impact may be,
- plan for the next steps the Social Engineer might take,
- promote employee awareness about how to respond to the current breach and future attacks by the Social Engineer.
The FraudReady Social Engineering Intrusion Detection system is the only Social Engineering IDS in the market. All data is presented in an Executive Dashboard, with the ability to drill down from a high-level overview to a single security incident. The FraudReady Social Engineering IDS monitors multiple data sources and alerts you to possible fraudulent action taking place against your organization via:
- Email,
- Phone,
- IM / Point to Point,
- Web,
- Wireless,
- Facility / Proximity
» Tools and Additional Resources