Information security is an integrated process that reduces information risk to acceptable levels based on an assessment of risks. Because penetration tests only measure the security posture at a point in time, increased testing frequency provides increased assurances that certain control processes that are in place are still functioning.
Social Engineering Testing
Social engineering tests your “human firewall”. This is a method of gaining access to an organization and its assets by tricking key personnel over communications medium such as telephone, email, chat, bulletin boards, etc. from a fraudulent "privileged" position. If your staff has received the training to defend itself, this test will enhance their effectiveness.
Modem Testing (WAR Dialing)
This is a method of enumerating modems and gaining access privileges to the modem-enabled systems of a target organization.