Official websites use .gov
Secure .gov websites use HTTPS
The Application and Workload Pillar focuses on securing all tasks and services, whether running on-premises or in the cloud, across the full technology stack, from the application layer down to the hypervisor. This includes managing and protecting applications, virtual machines, and compute containers to ensure they operate within a trusted environment.
Zero Trust (ZT) principles are applied through secure delivery methods like proxy technologies, which serve as decision and enforcement points for access control. Security begins at the development stage, where source code and shared libraries are rigorously vetted using DevSecOps practices to embed protection from the start.
Select a Capability below to explore detailed information and guidance