HIPAA requires security for both wired and wireless networks. Is there a specific doucument other people are using to advise customers on both the wireless/switching equipment that CWNP professionals typically "touch" as well as the areas that are usually outside of the technical arena, such as user training against social engineering, password policies that may be enforced by outsourced IT that is not involved with the wireless lan, etc.?
I have found a white paper by Xirrus that is light, but it has some good guidelines http://www.brainworks.de/hersteller/xirrus/docs/xirrus_hippa_compliance.pdf
This appears to be a good reference as well
What I am looking for is a good roadmap that allows one to deploy HIPAA compliant wifi and make recommendations to the non wireless that they may not have direct control over. Any insight would be greatly appreciated.