The service carried out was based on the analysis of the external and internal infrastructure of the organization and to verify its robustness and maturity in terms of cybersecurity. In addition, social engineering exercises have been carried out to test the weakest link in the security chain, the human being, by testing with real phishing attacks for subsequent employee awareness.