What security controls would you implement to defend against a Distributed Denial of Service (DDoS) attack at Sra Group?