It should be determined whether the customer plans to implement a wireless intrusion detection or prevention system (WIDS or WIPS) for protection against rogue APs and the many other types of wireless attacks.
A comprehensive interview regarding security expectations will provide the necessary information to make competent security recommendations after the site survey has been conducted and prior to deployment.
Industry-specific regulations may have to be taken into account when making security recommendations such as:
- Health Insurance Portability and Accountability Act (HIPAA)
- Payment Card Industry (PCI)
- U.S. government installations may have to abide by the strict Federal Information Processing Standards (FIPS) 140-2 regulations, and all security solutions may need to be FIPS compliant.
All of these answers should also assist in determining whether the necessary hardware and software exists to perform these functions.
If not, it will be your job to consider the requirements and recommendations that may be necessary.