How would you design a secure architecture for a cloud-based application under strict cost and latency constraints?