How would you design a secure architecture for a cloud-native application with multiple services and trust boundaries at Cisco?