The correct answer is 'Role-based access control policy (RBAC)'. RBAC is a policy that restricts network access based on individual user roles within an enterprise and ensures that only authorized users have access to certain resources or information. This is consistent with the scenario described where access is to be restricted based on job roles. 'Password policy' typically governs the creation, rotation, and complexity of passwords and would not specifically deal with access based on roles. 'Onboarding and offboarding policy' typically refers to the procedures for granting access when employees join the company and revoking access when they leave, not their daily access based on job roles. 'Remote access policy' defines how users can access the network remotely and would not usually delineate access restrictions based on job roles within the network.