There are numerous technical controls available to help minimize the impact of social engineering attacks. The Department of Homeland Security has promulgated Binding Operational Directive 18-01. DHS recognizes the threat from phishing and web attacks. There are many solutions out there to help organizations with their phishing campaigns. There are even companies that will do the engagement from start to finish for you; all you do is provide an email list and optionally approve the phish. Run phishing exercises. Train your people. Incorporate training and awareness into the corporate culture.”]
Source: https://www.csoonline.com/article/3235658/5-ways-to-minimize-phishing-attacks.html