network – Best approach for WIFI and LAN Separation

a company has two networks

  1. WIFI which is used for open surfing and Isolated from the network and company servers (used for Google researching and some open needed usage)
  2. LAN which is very restricted with proxy and whitelisting of hostnames

There is an idea of making two shortcuts in User’s Desktop to Enable / disable between the two Network (WIFI & LAN)

The company is using on premise Antivirus and patching system which is more healthy when a computer connected to the LAN

Is there other approach or technique other than this separation (with no extra cost) to have separation and applying whitelisting but also maintain the security level