diff --git a/src/content/docs/cloudflare-one/index.mdx b/src/content/docs/cloudflare-one/index.mdx
index 89ef759171d811f..a98fcf582147b8e 100644
--- a/src/content/docs/cloudflare-one/index.mdx
+++ b/src/content/docs/cloudflare-one/index.mdx
@@ -9,48 +9,154 @@ head:
content: Overview
---
-import { GlossaryTooltip, Render } from "~/components";
+import {
+ CardGrid,
+ Description,
+ Feature,
+ GlossaryTooltip,
+ LinkButton,
+ LinkTitleCard,
+ Plan,
+ RelatedProduct,
+ Render,
+} from "~/components";
-Cloudflare Zero Trust replaces legacy security perimeters with Cloudflare's global network, making the Internet faster and safer for teams around the world. Refer to our [reference architecture](/reference-architecture/architectures/sase/) to learn how to evolve your network and security architecture to our SASE platform.
+
-## Features
-**Zero Trust access for all of your applications.**
+Secure your organization with Cloudflare Zero Trust — a cloud security model that replaces legacy perimeters with Cloudflare’s global network.
-- Authenticate users on our global network
-- Onboard third-party users seamlessly
-- Log every event and request
+
-**A Secure Web Gateway to protect users and devices.**
+
-- Enforce your company's Acceptable Use Policy (AUP)
-- Block risky sites with custom blocklists and built-in threat intel
-- Enhance visibility and protection into SaaS applications
+Cloudflare Zero Trust is part of Cloudflare One, our name for the Secure Access Service Edge (SASE) platform that protects enterprise applications, users, devices, and networks.
-**A fast and reliable solution for remote browsing.**
+By progressively adopting Cloudflare One, organizations can move away from a patchwork of hardware appliances and point solutions, and instead consolidate security and networking through a unified control plane that includes products like [Cloudflare Access](/cloudflare-one/policies/access/), [Secure Web Gateway (SWG)](/cloudflare-one/policies/gateway/), [Cloudflare Tunnel](/cloudflare-one/connections/connect-networks/), [Data Loss Prevention (DLP)](/cloudflare-one/policies/data-loss-prevention/), [Remote Browser Isolation (RBI)](/cloudflare-one/policies/browser-isolation/), [Cloud Access Security Broker (CASB)](/cloudflare-one/applications/casb/), and [Email Security](/cloudflare-one/email-security/).
-- Execute all browser code in the cloud
-- Mitigate the impact of attacks
-- Seamless, lightning-fast end user experience
+Refer to our [SASE reference architecture](/reference-architecture/architectures/sase/) to learn how to plan, deploy, and manage SASE architecture with Cloudflare.
-**A Cloud Access Security Broker to safeguard data in the cloud.**
+
+ Get started
+
+ Zero Trust dashboard
+
+ Implementation guides
+
-- Protect users and sensitive data at rest in SaaS applications
-- Detect insider threats and unsanctioned application usage, also known as shadow IT
-- Ensure best practices to prevent data leaks and compliance violations
+## Products
-**A Data Loss Prevention solution to safeguard data in transit.**
+
-- Detect sensitive data as it moves to and from SaaS applications
-- Predefined DLP Profiles to quickly get started
-- Log or block DLP matches
+Authenticate users accessing your applications, seamlessly onboard third-party users, and log every event and request.
-**An Email Security solution to protect your email inbox.**
+
-- Configure policies to manage your inbox.
-- Automatically move emails based on a certain disposition.
-- Use screen criteria to investigate your email.
+
-## Availability
-Cloudflare Zero Trust offers both [Free and Paid plans](https://www.cloudflare.com/plans/zero-trust-services/). Access to certain features depends on a customer's plan type.
+Securely connect your resources to Cloudflare without exposing a public IP by using Cloudflare Tunnel, which establishes outbound-only connections from your infrastructure to Cloudflare’s global network via the lightweight `cloudflared` daemon.
+
+
+
+
+
+Inspect and filter DNS, network, HTTP, and egress traffic to enforce your company's Acceptable Use Policy (UAP), block risky sites with custom blocklists and threat intelligence, and enhance visibility and protection across SaaS applications.
+
+
+
+
+
+Protect corporate devices by privately sending traffic from those devices to Cloudflare's global network, build device posture rules, and enforce security policies anywhere.
+
+
+
+
+
+Mitigate the impact of attacks by executing all browser code in the cloud and securely browse high-risk or sensitive websites in a remote browser.
+
+
+
+
+
+Protect users and sensitive data at rest in SaaS applications and cloud environments, scan for misconfigurations, and detect insider threats as well as unsanctioned application usage to prevent data leaks and compliance violations.
+
+
+
+
+
+Scan your web traffic and SaaS applications for the presence of sensitive data such as social security numbers, financial information, secret keys, and source code.
+
+
+
+
+
+Configure policies to manage your inbox, automatically move emails based on disposition, and use screen criteria to investigate messages.
+
+
+
+
+
+Monitor device, network, and application performance across your Zero Trust organization.
+
+
+
+---
+
+## More resources
+
+
+
+
+ New to Zero Trust and SASE? Get started with our introductory SASE video series.
+
+
+
+ Explore our reference architecture to learn how to evolve your network and security architecture to Cloudflare One, our SASE platform.
+
+
+
+ Cloudflare Zero Trust offers both Free and Paid plans. Access to certain features depends on a customer's plan type.
+
+
+
+
+ Learn about account limits. These limits may be increased on Enterprise accounts.
+
+
+
+
+ Find answers to common questions or open a ticket with Cloudflare Support.
+
+
+
+ Ask questions, get answers, and share tips.
+
+
+
\ No newline at end of file
diff --git a/src/icons/browser-isolation.svg b/src/icons/browser-isolation.svg
new file mode 100644
index 000000000000000..89ab62983908b54
--- /dev/null
+++ b/src/icons/browser-isolation.svg
@@ -0,0 +1 @@
+
\ No newline at end of file
diff --git a/src/icons/casb.svg b/src/icons/casb.svg
new file mode 100644
index 000000000000000..d760493914271ee
--- /dev/null
+++ b/src/icons/casb.svg
@@ -0,0 +1 @@
+
\ No newline at end of file
diff --git a/src/icons/data-loss-prevention.svg b/src/icons/data-loss-prevention.svg
new file mode 100644
index 000000000000000..301a486051e328d
--- /dev/null
+++ b/src/icons/data-loss-prevention.svg
@@ -0,0 +1 @@
+
\ No newline at end of file
diff --git a/src/icons/dex.svg b/src/icons/dex.svg
new file mode 100644
index 000000000000000..b05f31872f018c5
--- /dev/null
+++ b/src/icons/dex.svg
@@ -0,0 +1 @@
+
\ No newline at end of file
diff --git a/src/icons/gateway.svg b/src/icons/gateway.svg
new file mode 100644
index 000000000000000..ef9ce4cc98833bf
--- /dev/null
+++ b/src/icons/gateway.svg
@@ -0,0 +1 @@
+
\ No newline at end of file
diff --git a/src/icons/zero-trust-networks.svg b/src/icons/zero-trust-networks.svg
new file mode 100644
index 000000000000000..fde4f5cab1a897b
--- /dev/null
+++ b/src/icons/zero-trust-networks.svg
@@ -0,0 +1 @@
+
\ No newline at end of file