Wi-Fi Network Access Policy
Purpose
This policy defines the rules and procedures for connecting to wireless networks within Global Bank facilities. Wireless access is provided as a convenience to support flexible working; however, all usage must comply with the bank's information security standards.
Policy Reference: IT-NET-002
Effective Date: 1 January 2025
Review Date: 1 January 2026
Applies To: All employees, contractors, visitors, and temporary staff
Available Wireless Networks
| Network SSID | Purpose | Authentication | Access Level |
|---|---|---|---|
| GB-Corporate | Corporate devices | 802.1X certificate-based | Full internal network |
| GB-Secure | BYOD enrolled devices | 802.1X with user credentials | Limited internal resources |
| GB-Guest | Visitors and guests | Captive portal with sponsor approval | Internet only |
Corporate Network (GB-Corporate)
Eligibility
Only corporate-issued devices that are domain-joined and have a valid machine certificate may connect to GB-Corporate. This network provides the same level of access as a wired Ethernet connection.
Connection Procedure
- Ensure your device is powered on and within range of a Global Bank access point.
- Your device should automatically detect and connect to GB-Corporate if properly configured.
- If the network does not appear, verify that your Wi-Fi adapter is enabled and that your device has a current machine certificate. Contact the Service Desk if the issue persists.
BYOD Network (GB-Secure)
Eligibility
Personal devices enrolled in the bank's Mobile Device Management (MDM) platform may connect to GB-Secure. Enrolment requires approval from your line manager and completion of the BYOD registration form (see BYOD Policy, IT-DEV-004).
Connection Procedure
- Select GB-Secure from available networks on your personal device.
- When prompted, enter your corporate username (DOMAIN\username) and password.
- Approve the MFA prompt.
- Accept the Acceptable Use Policy displayed on screen.
Guest Network (GB-Guest)
Eligibility
The guest network is available to visitors, clients, and external meeting attendees. Access requires sponsorship by a Global Bank employee.
Connection Procedure
- The guest selects GB-Guest from available networks.
- A captive portal page opens in the browser.
- The guest enters their name, email address, and the name of their Global Bank sponsor.
- The sponsor receives an approval request via email and must authorise the connection within 15 minutes.
- Once approved, the guest receives internet-only access for a maximum of 24 hours.
Prohibited Activities
- Connecting unauthorised access points, repeaters, or wireless bridges to any Global Bank network.
- Attempting to access network segments or resources beyond those assigned to your network profile.
- Sharing Wi-Fi credentials with unauthorised individuals.
- Using wireless networks for activities that violate the bank's Acceptable Use Policy (IT-GEN-003).
- Packet sniffing, network scanning, or any form of wireless network reconnaissance.
Security Requirements
- All devices connecting to corporate wireless networks must have current antivirus software and operating system patches.
- Devices that fail the Network Access Control (NAC) health check will be quarantined and redirected to a remediation portal.
- Wireless connections are monitored by the Security Operations Centre (SOC) in accordance with applicable data protection regulations.
Non-Compliance
Violation of this policy may result in immediate revocation of network access and disciplinary action in accordance with the bank's Human Resources policies. Serious breaches may be reported to regulatory authorities.
Contact
For wireless connectivity issues or policy queries:
- IT Service Desk: servicedesk@globalbank.com | Ext. 2000
- Infrastructure Services: infrastructure@globalbank.com