What are the key security considerations when securing data-at-rest versus data-in-transit in an AWS or Azure environment?