The target is the accounting department computers. the plan is get direct physical access and plant a usb drive, programmed to allow remote access, and with various keylogger programs.
go to the building itself between 8-10am and 4-6pm to see how tight security remains while there are numerous employees entering the building. if they have a gated entry system, is it possible to shoulder surf entry.
If entry is possible, find the accounting department, and inspect it. having previously searched a contact for maersk within accounting from linkedin, contact the switchboard and ask for the direct number for this contact. Then phone them and explain that you are calling from tech support, we need to come and look at his computer. If an opportunity arises to gain access then take it, if not, find more information about how to gain access.
If entry is not possible, look at cleaning staff uniforms, get a replica and give some sort of excuse to security (if necessary), and then get inside and grab it.
And if access is still not possible, approach one of the cleaning staff and offer 100 euros for putting the usb stick in the accounting department.
I'm trying to look at security from the human point of view and find and exploit vulnerabilities. Then how to demonstrate these vulnerabilities to security officers, and how to compile a security review that is relevant and meaningful.
Thanks for the replies, they are giving me food for thought.
Attitude is no substitute for competence.