You mention needing to use personal connectivity. I don't think that's necessary. HTTPS should protect you from malicious networks.
Yes, but on the kind of network we're talking about, you probably won't be able to make an outbound HTTPS connection at all if you're not going via the required security infrastructure with an appropriate corporate-issued cert.
