1 files changed, 29 insertions, 0 deletions

diff --git a/doc/user/project/clusters/protect/index.md b/doc/user/project/clusters/protect/index.md
new file mode 100644
index 00000000000..c489a0ddd30
--- /dev/null
+++ b/doc/user/project/clusters/protect/index.md
@@ -0,0 +1,29 @@
+---
+stage: Protect
+group: Container Security
+info: To determine the technical writer assigned to the Stage/Group associated with this page, see https://about.gitlab.com/handbook/engineering/ux/technical-writing/#designated-technical-writers
+---
+
+# Protecting your deployed applications
+
+GitLab makes it straightforward to protect applications deployed in [connected Kubernetes clusters](index.md).
+These protections are available in the Kubernetes network layer and in the container itself. At
+the network layer, the Container Network Security capabilities in GitLab provide basic firewall
+functionality by leveraging Cilium NetworkPolicies to filter traffic going in and out of the cluster
+and traffic between pods inside the cluster. Inside the container, Container Host Security provides
+Intrusion Detection and Prevention capabilities that can monitor and block activity inside the
+containers themselves.
+
+## Capabilities
+
+The following capabilities are available to protect deployed applications in Kubernetes:
+
+- Web Application Firewall
+  - [Overview](web_application_firewall/index.md)
+  - [Installation guide](web_application_firewall/quick_start_guide.md)
+- Container Network Security
+  - [Overview](container_network_security/index.md)
+  - [Installation guide](container_network_security/quick_start_guide.md)
+- Container Host Security
+  - [Overview](container_host_security/index.md)
+  - [Installation guide](container_host_security/quick_start_guide.md)