Phase I – Pre-engagement Interactions:
In this phase, SecureState works with the client to establish the rules of engagement as well as the scope and exchange contact information for both parties. SecureState provides a detailed Project Charter which contains information on scope and everything that will be required to conduct the testing. The Project Charter is discussed during the kickoff call prior to the beginning of the engagement.
Phase II – Information Gathering:
SecureState begins the Information Gathering phase by determining company naming conventions, company subsidiaries, and domain names. This information is required so we can determine how a company’s related names and domains are found on social media sites.
Our Team Members determine the current social media presence with deep research into the major social media sites such as Facebook, Twitter and LinkedIn. Once this information is determined, we work with the client to determine what is most valuable to the company from a social media perspective. This may include: include brand reputation, loss of confidential data, and employee abuse of social media or company policies. SecureState will analyze this information to help guide the analysis phase to determine what is most valuable to the client.
Phase III – Social Media Analysis:
Using custom and proprietary tools designed for social media information gathering, SecureState reviews over 40 social media sites including message boards, online forums, blogs and more for your company information and related conversations. In addition, SecureState dives deep into the most popular social media sites such as Facebook, LinkedIn, Twitter, Flickr, YouTube, and MySpace as well as the more obscure social networks such as Hi5, Tagged, Friendster, Bebo, Orkut, Yammer, and Yelp.
Phase IV – Reporting and Deliverables:
SecureState will deliver to your organization a comprehensive report showing screen shots, detailed conversations, names, and links back to the information collected. Additionally, we will provide an information linkage diagram (if applicable) showing how the company’s information is linked together. This will visually show, from a high level, the source or sources of the information. Finally, we will provide a detailed, professional analysis of the information gathered as well as a comprehensive risk rating for your organization. This is determined by considering the sensitivity of the information found as well as how your company ranks compared to your industry peers.