If your company is of relatively limited size and it's practical to walk around every once in a while, you might want to use the RF scanning approach. There's a free product called NetStumbler available to assist you with this task.
There are also various products that claim to perform rouge access point detection from the wired network. I've never worked with any of these personally, but you might want to try looking at the WiSentry product. One of the biggest advantages of this approach is that you'll be able to detect activity from access points that don't broadcast their SSIDs. Tools like NetStumbler are unable to detect these sneaky APs.
Related Q&A from Mike Chapple, Enterprise Compliance
The HHS security risk assessment tool is designed to help healthcare providers meet the HIPAA security requirement. Expert Mike Chapple explains how ...continue reading
PCI DSS requirement 6.6 demands application security compliance through one of two options: an application firewall or a code review. Expert Mike ...continue reading
Are HIPAA-compliant hosting services a better option for compliance than a secure storage API? Expert Mike Chapple analyzes.continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.