Traditional information security practices used to be relatively easy to perform compared to those needed in today’s world of microservices and the public cloud. Security professionals mitigated most attacks traditionally at the centralized network firewall level. If that failed, the end host firewall could act as a safety net for attacks that slipped through. On-premises applications ran on local dedicated servers or in virtual machines hosted in corporate data centers—you didn’t need to worry about configuring distributed access rules because the entire local network could be trusted.