Beginning with cloud-native architecture，this article provides a brief overview of the current development status of cloud-native technology and the security challenges it presents. To address these security challenges，we have drawn from the comprehensive security frameworks developed by Gartner and the Institute of Information and Communications Technology，adapting them to domestic requirements，and proposed our design concepts for a security framework. Following this approach，we present an introduction to the security protection capabilities of cloud-native technology throughout its entire lifecycle. This includes aspects such as cloud infrastructure security，product security，runtime security，and others. Additionally，we propose a plan for constructing and operating an integrated security operation platform. Finally，we provide a brief overview of a practical deployment application case.