Defense in Depth Security Layers Layer Controls 1. Perimeter - Web Application Firewall (WAF) - DDoS protection - Rate limiting - Bot detection 2. Network - Network segmentation (VPCs, subnets) - Security groups / firewalls - VPN for internal access - Zero-trust network access 3. Host - OS hardening - Patch management - Endpoint protection - File integrity monitoring 4. Application - Authentication (OAuth2, OIDC) - Authorization (RBAC, ABAC) - Input validation - Output encoding - Session management - Secure headers 5. Data - Encryption at rest (AES-256) - Encryption in transit (TLS 1.3) - Key…