What are the primary security considerations when migrating a legacy on-prem application to a cloud-native architecture?