You are tasked with configuring firewall policies in Google Cloud to meet strict security requirements:

1. Always allow SSH access from your corporate IP address.
2. Deny SSH access from all other IP addresses.

Given that your organization has multiple projects and VPCs, how would you enforce these requirements while preventing other VPC firewall rules from bypassing them?