Properly securing the application environment is one of the most daunting challenges facing any enterprise security team. These environments are a complex and dynamic collection of legacy, hybrid, and cloud-native applications, each with myriad network and data path interactions within and between them. 

This guide is intended to help security leaders answer the question: "How well are you securing your application environment?" The guide uses a series of scorecard questions divided into four categories:

1. Understanding your application environment
2. Securing your application environment
3. Application-centric detection & response capabilities
4. Continuous application risk posture assessment and visibility