Physical penetration testing

A failure of the physical security controls can immediately result in the theft of a laptop, as well as access to an internal network, to a wiring closet or even to a data centre.

Physical penetration testing may include activities such as attempting to gain access to a critical infrastructure or Executive area in a Control Centre and/or Service Centre; it can alo mean attempting to gain access to satellite facilities/branches. Tailgating (similar to Piggybacking) is one way of compromising physical security by following somebody through a door meant to keep out intruders. Tailgating is actually a form of social engineering, whereby someone who is not authorized to enter a particular area does so by following closely behind someone who is authorised.

How we can help

Depending on your objectives, we may use various physical penetration testing techniques. The testing is intended to provide you with assurance as it relates to various physical security controls. It includes an assessment of:

  • Physical security perimeter (e.g. fencing, car barriers);
  • Physical entry controls
    • Guard posts/patrols
    • Mechanical controls(gates, doors, locks, etc.)
    • Electronic controls(magnetic key cards, RFID, proximity, etc.; biometrics; etc.).
  • Surveillance/Monitoring Techniques (e.g. Cameras/CCTV);
  • Deterrents:
    • Alarms;
    • Security Lighting;
    • Intrusion Detection/Motion Sensors.
  • Office/desktop security;
  • Logging/Auditing;
  • Security of equipment off-premises.