How do you secure data-in-transit and data-at-rest within a microservices architecture running on public cloud infrastructure?