What it is

A controlled, authorised test of physical security controls to identify vulnerabilities that could be exploited in real conditions. Physical penetration testing evaluates how people, procedures, and physical controls perform together, and provides practical recommendations to improve prevention, detection, and response.‍ ‍

When to use this service‍

• You want to validate whether physical security controls work in practice, not just on paper

• You have had incidents involving unauthorised access, theft, or repeated perimeter breaches

• You are concerned about insider risk, tailgating, or weak operational security behaviours

• You have recently upgraded access control, CCTV, or perimeter controls and want assurance

• You manage high-value assets, sensitive areas, or critical operations and need higher confidence

• You need independent assurance for executives, boards, or governance committees‍

What you will receive

• Penetration testing report with findings, evidence, and practical recommendations

• Identified vulnerabilities across perimeter, entry points, internal zones, and operational behaviours

• Assessment of detection and response effectiveness (for example, monitoring and escalation)

• Prioritised remediation plan (quick fixes, procedural changes, and design improvements)

• Optional re-test plan to confirm improvements are effective‍

Our process

1. Authorisation and rules of engagement: We confirm written authorisation, scope boundaries, safety requirements, and acceptable test methods. We agree the test objectives, timing, and escalation contacts.

2. Pre-test review: We review relevant site information, access arrangements, and known concerns. This may include access control configuration, security zoning, and incident history.

3. Test planning: We develop test scenarios aligned to realistic threats and site context. Scenarios may include perimeter approach, entry point testing, tailgating attempts, and secure area access attempts.

4. On-site testing (controlled): We conduct controlled tests of physical controls and operational behaviours, within agreed boundaries. We document what was attempted, what succeeded, and what prevented access.

5. Detection and response assessment: We assess whether attempted breaches were detected, how quickly they were identified, and how response and escalation occurred.

6. Findings and root cause analysis: We identify why vulnerabilities exist, including design issues, maintenance gaps, procedural weaknesses, training issues, or supervision and accountability gaps.

7. Recommendations and prioritisation: We provide practical recommendations that improve prevention, detection, and response. Recommendations may include physical improvements, procedural changes, training, and technology adjustments.

8. Reporting and debrief: We deliver a detailed report and conduct a debrief with stakeholders to confirm understanding and agree next steps.‍ ‍

What we test (examples)

• Perimeter integrity and delay measures

• Entry points, doors, gates, and after-hours access

• Access control effectiveness and credential handling

• Security zoning and secure area controls

• Tailgating and visitor/contractor management behaviours

• CCTV coverage, monitoring, and response arrangements

• Alarm response and escalation pathways

Frequently asked questions

1. Is physical penetration testing the same as cyber penetration testing? No. This service tests physical security controls and operational behaviours. PSA does not provide cyber security services.

2. Will testing disrupt operations? Testing is planned to minimise disruption and is conducted within agreed rules of engagement. Where any activity could affect operations, we agree the timing and approach in advance

3. Is this legal and safe? Yes, when properly authorised. We require written authorisation, clear scope boundaries, and agreed escalation contacts. Safety is a core requirement. ‍

4. Do you test staff without telling them? We can design tests with different levels of disclosure depending on objectives and organisational requirements. The approach is agreed in advance and documented in the rules of engagement.

5. Can you re-test after we fix issues? Yes. Re-testing confirms whether remediation actions are effective and whether new vulnerabilities have been introduced.‍ ‍

Related services ‍

• ‍‍ ‍Security Audits & Reviews

• ‍ ‍Security Risk Assessment

• ‍ ‍Physical Security Design

• ‍ Security Management Plans

‍ ‍

Need to validate whether your physical security controls work in practice? Contact us for a confidential consultation