An enterprise wireless network should use the following as techniques to reduce the risk of wireless network attacks:

• Implement a wireless intrusion prevention system (WIPS) on each wireless network owned and managed by the organization.
• Ensure that all wired and wireless devices have the latest firmware and patches installed.
• Ensure that devices and configurations are compliant with the National Institute of Standards and Technology (NIST). Take a look at the Establishing Wireless Robust Security Networks section in the NIST framework at https://csrc.nist.gov/publications/detail/sp/800-97/final for more information.
• Whenever possible, implement multi-factor authentication to access the corporate network.
• Implement the Extensible Authentication Protocol (EAP)—Transport Layer Security (TLS) certificate-based method to ensure the confidentiality and authenticity of wireless communication.
• Use WPA2-Enterprise with AES encryption.
• Implement an isolated guest wireless network.

Implementing these techniques and controls can help reduce the security risks on an enterprise network. In the following section, we will cover the steps we need to follow in order to configure and secure a wireless network.