1) Yes, they are needed.
VLANs are needed to systematize the work of the network and specific departments. Of course, you can break all accesses on the server, but it's better to do it physically. At my work, I got rid of a bunch of unmanaged switches and configured VLANs on a couple of switches, this allowed me to normalize the network and remove a bunch of probable and incredible interference and glitches.
2) No, they are not needed.
If you have one and a half servers, then VLANs are not needed. Distribution between Gateway - Server, Gateway - user in this case is simple and does not require additional equipment.
You can choose any of the equipment available to you without focusing on the brand. Mikrotik is primarily a flexible OS designed to work on network equipment, but do not forget that both HP and (I didn’t think I would say this) the latest D-link models are distinguished by sufficient stability and speed. Look towards Juniper, Huawei you will be pleasantly surprised.
In order to understand whether you need VLANs or not, take a pen and draw your network with all accesses. Maybe it's really easier to solve on AD/LDAP? But get rid of spurious traffic from unmanaged switches.

It's up to you to decide.
In general, they are needed for security.
Mikrotik - any. But in general, there is a lot of equipment that the vilans will provide, including much cheaper. At the same time, I do not deny that Mikrotik is good equipment and very flexible in its capabilities.

vlan is a tool for a specific task, not a silver bullet. Maybe with 2 computers you need a vlan, or maybe you don’t need a thousand.
To begin with, set yourself a task by answering the questions:
Do I need to drive large amounts of data between departments? Are p2p protocols used?
Is it used in the broadcast network? If so, which computers should listen to it?

Up to a maximum of 100 hosts feel fine in one vlan. If security issues do not require the presence of vlan - in your case, you can not block them, but get rid of the hubs and replace them with switches.
Regarding Mikrotik - any Mikrotik switch from 14 ports will do) There are not so many of them in the CRS series ...

VLAN is network segmentation. If you have a need to segment the network, then do it, if not, then no.
VLAN by departments in general, in my opinion, is a strange thing, why they really need a mystery.
I don’t really imagine a network in which there are 40 computers and if there is a need for a 14 port router.
Or do l3 at the access level, then you need microtics immediately on "40" ports (10 by 4, or two by 24, it's up to you). Or do l2 access, but then why are there 14 ports on Mikrotik?