---
title: Securing Functions
description: Datadog, the leading service for cloud-scale monitoring.
breadcrumbs: Docs > Serverless > Serverless Monitoring for AWS Lambda > Securing Functions
---

# Securing Functions

{% callout %}
# Important note for users on the following Datadog sites: app.ddog-gov.com



{% alert level="danger" %}
This feature is not supported for your selected Datadog site. ().
{% /alert %}


{% /callout %}

[Datadog App and API Protection (AAP)](https://docs.datadoghq.com/security/application_security/) provides observability into application-level attacks that aim to exploit code-level vulnerabilities, and into bad actors targeting your systems.

AAP secures functions written in Python, Node, Go, Java, and .NET. Because AAP is built on top of Serverless APM, you can set it up by adding an environment variable.

AAP supports over 130 event rules across major threats such as injection attacks, cross-site scripting, security scanner, local file inclusion, and more.

You can [get started managing threats to your functions with AAP](https://docs.datadoghq.com/security/application_security/serverless/) today.

## Further reading{% #further-reading %}

- [App and API Protection](https://docs.datadoghq.com/security/application_security/)
- [How App and API Protection Works](https://docs.datadoghq.com/security/application_security/how-it-works)