Dealing with the threat of social engineering [Q&A]

Mostly, reducing social-type risks requires security awareness that helps employees understand what social engineering is and gives examples of the ways it is leveraged to launch an attack. A pen tester can identify which system or employees you need to concentrate on protecting and inform you on what types of social engineering attacks you may be prone to. I would be remiss if I didn't also mention pen testing as one of the most effective approaches to prevent social engineering attacks.