A company has launched a new web application hosted on Amazon EC2 instances behind an Application Load Balancer (ALB), with the instances managed by an Amazon EC2 Auto Scaling group. The application will be accessed globally by enterprise customers, whose employees will connect via HTTPS from their office locations. The company needs to configure firewalls to restrict outbound traffic to only approved IP addresses while ensuring minimal latency for employee access.

What infrastructure modification should a network engineer implement to fulfill these requirements?