In designing a new global application utilizing Compute Engine instances, to be exposed by a global HTTP(S) load balancer, ensuring security against distributed denial-of-service and application layer (layer 7) attacks is paramount. What action should you take to achieve this security objective?