You've already got Mitnick down.
Bruce Schneier covers SE in his books (Secrets and Lies anyway) but with other things.
http://www.schneier.com/books.html

Ask Gore, he's a student of SE.

A lot of it is common sense if you just think about it and the only real defense is user awareness and training.

Do it yourself, phone up staff from a cell phone and try to conn their passwords out of them.

Tuck your pass in a pocket wander round and sit at other peoples desks. Tailgate people into work without using your pass.

Remember to get a "get out of jail" pass in writing from senior management before you go playing though. You'll piss people off and scare them even if it is for their own good.