Defense in Depth Security Architecture
Layered security controls from perimeter to identity. Six layers: Perimeter (DDoS, WAF, Firewall), Network (segmentation, NACLs), Host (hardening, AV/HIDS), Application (OWASP, SAST/DAST), Data (encryption, tokenization, DLP), and Identity (MFA, RBAC, PAM).
general · architecture diagram.
Layered security controls from perimeter to identity. Six layers: Perimeter (DDoS, WAF, Firewall), Network (segmentation, NACLs), Host (hardening, AV/HIDS), Application (OWASP, SAST/DAST), Data (encryption, tokenization, DLP), and Identity (MFA, RBAC, PAM).
Created by
February 9, 2026
Updated
February 13, 2026 at 5:47 PM
Type
architecture
Describe your architecture in plain English and get a production-ready Draw.io diagram in seconds. Works for AWS, Azure, GCP, Kubernetes, and more.
