Have you ever thought of how effective your physical security is?  Could it be bypassed by a Criminal or a security penetration tester?  How safe is your workplace data, would your staff alert Security or Management if they see someone suspicious?  Do you have a social engineering programme, can your security or staff recognise the signs?  happens when a person is in your building who isn't booked in?  Could your staff or systems recognise keyloggers, are your proximity cards strong enough not to be copied?

Every successful project being worked on is only as good as the compliance and audit control of how it gets to its final phase, if the integrity fails through human negligence than your company could suffer financially through bad business reputation.  

What does a 'Pen' tester look like, do they speak the same business language, could they sit in your smoking gazebo or shelter for days and study your staff, security passes, lanyards etc.  Could they go unnoticed and would your staff report an unknown person in an area where they should not be?  Criminals study a business for some time before they choose their time to attack on their terms.  Investing in testing your physical security could help determine your current security posture and how it protects your staff, property and data.