An employee of a financial institution is required to work remotely from home. Their job involves accessing sensitive client data which is restricted and can only be accessed through the company's secure network. To ensure the confidentiality and integrity of the data when the employee connects to the corporate network remotely, which of the following should be implemented?
Install a captive portal on the employee's home network to provide a secure connection to the corporate resources.
Implement a client-to-site VPN for the employee's remote connection to securely tunnel traffic to the internal network.
Configure split tunneling on the employee's home router to direct traffic to the sensitive client data over a secure channel while allowing other traffic to use the internet directly.
Set up SSH access to the company's server so that the employee can securely access the required data remotely.