diff --git a/contribute-docs/_snippets/applies_to-key.md b/contribute-docs/_snippets/applies_to-key.md
index ebf9776090..26f39f44b3 100644
--- a/contribute-docs/_snippets/applies_to-key.md
+++ b/contribute-docs/_snippets/applies_to-key.md
@@ -1,7 +1,7 @@
`applies_to` accepts the following keys in this structure.
* `serverless`: Applies to [Elastic Cloud Serverless](https://www.elastic.co/docs/deploy-manage/deploy/elastic-cloud/serverless).
- * `security`: Applies to Serverless [security projects](https://www.elastic.co/docs/solutions/security/get-started/create-security-project).
+ * `security`: Applies to Serverless [security projects](https://www.elastic.co/docs/solutions/security/get-started#create-sec-serverless-project).
* `elasticsearch`: Applies to Serverless [search projects](https://www.elastic.co/docs/solutions/search/serverless-elasticsearch-get-started).
* `observability`: Applies to Serverless [observability projects](https://www.elastic.co/docs/solutions/observability/get-started).
* `stack`: Applies to the [Elastic Stack](https://www.elastic.co/docs/get-started/the-stack) including any Elastic Stack components.
diff --git a/deploy-manage/deploy/elastic-cloud/create-an-organization.md b/deploy-manage/deploy/elastic-cloud/create-an-organization.md
index 68481db651..daa6d91e90 100644
--- a/deploy-manage/deploy/elastic-cloud/create-an-organization.md
+++ b/deploy-manage/deploy/elastic-cloud/create-an-organization.md
@@ -47,7 +47,7 @@ For more information, check the [{{ech}} documentation](cloud-hosted.md).
* [{{es}}](../../../solutions/search.md)
* [Observability](../../../solutions/observability.md)
-* [Security](../../../solutions/security/elastic-security-serverless.md)
+* [Security](../../../solutions/security.md)
When you create a project, you select the project type applicable to your use case, so only the relevant and impactful applications and features are easily accessible to you.
diff --git a/deploy-manage/deploy/elastic-cloud/create-serverless-project.md b/deploy-manage/deploy/elastic-cloud/create-serverless-project.md
index c5acd76ff2..72ffaeee0b 100644
--- a/deploy-manage/deploy/elastic-cloud/create-serverless-project.md
+++ b/deploy-manage/deploy/elastic-cloud/create-serverless-project.md
@@ -19,5 +19,5 @@ Choose the type of project that matches your needs and we’ll help you get star
| | |
|  | **Elasticsearch**
Build custom search applications with {{es}}.
[**View guide →**](/solutions/search/get-started.md)
|
|  | **Observability**
Monitor applications and systems with Elastic Observability.
[**View guide →**](/solutions/observability/get-started.md)
|
-|  | **Security**
Detect, investigate, and respond to threats with Elastic Security.
[**View guide →**](/solutions/security/get-started/create-security-project.md)
|
+|  | **Security**
Detect, investigate, and respond to threats with Elastic Security.
[**View guide →**](/solutions/security/get-started.md#create-sec-serverless-project)
|
| | |
\ No newline at end of file
diff --git a/deploy-manage/deploy/elastic-cloud/serverless.md b/deploy-manage/deploy/elastic-cloud/serverless.md
index 44e03d3883..b95f5e673c 100644
--- a/deploy-manage/deploy/elastic-cloud/serverless.md
+++ b/deploy-manage/deploy/elastic-cloud/serverless.md
@@ -29,7 +29,7 @@ Elastic provides three serverless solutions available on {{ecloud}}. Follow thes
* **[{{es-serverless}}](/solutions/search/get-started.md)**: Build powerful applications and search experiences using a rich ecosystem of vector search capabilities, APIs, and libraries.
* **[{{obs-serverless}}](../../../solutions/observability/get-started.md)**: Monitor your own platforms and services using powerful machine learning and analytics tools with your logs, metrics, traces, and APM data.
-* **[{{sec-serverless}}](../../../solutions/security/get-started/create-security-project.md)**: Detect, investigate, and respond to threats with SIEM, endpoint protection, and AI-powered analytics capabilities.
+* **[{{sec-serverless}}](../../../solutions/security/get-started.md#create-sec-serverless-project)**: Detect, investigate, and respond to threats with SIEM, endpoint protection, and AI-powered analytics capabilities.
Afterwards, you can:
diff --git a/deploy-manage/users-roles/cloud-organization/user-roles.md b/deploy-manage/users-roles/cloud-organization/user-roles.md
index 5c73418113..3eeb8defbb 100644
--- a/deploy-manage/users-roles/cloud-organization/user-roles.md
+++ b/deploy-manage/users-roles/cloud-organization/user-roles.md
@@ -96,20 +96,20 @@ You can optionally [create custom roles in a project](/deploy-manage/users-roles
| Name | Description | Available |
| --- | --- | --- |
-| Admin | Has full access to project management, properties, and security privileges. Admins log into projects with superuser role privileges. | [](../../../solutions/search.md)[](../../../solutions/observability.md)[](../../../solutions/security/elastic-security-serverless.md) |
+| Admin | Has full access to project management, properties, and security privileges. Admins log into projects with superuser role privileges. | [](../../../solutions/search.md)[](../../../solutions/observability.md)[](../../../solutions/security.md) |
| Developer | Creates API keys, indices, data streams, adds connectors, and builds visualizations. | [](../../../solutions/search.md) |
-| Viewer | Has read-only access to project details, data, and features. | [](../../../solutions/search.md)[](../../../solutions/observability.md)[](../../../solutions/security/elastic-security-serverless.md) |
-| Editor | Configures all Observability or Security projects. Has read-only access to data indices. Has full access to all project features. | [](../../../solutions/observability.md)[](../../../solutions/security/elastic-security-serverless.md) |
-| Tier 1 analyst | Ideal for initial alert triage. General read access, can create dashboards and visualizations. | [](../../../solutions/security/elastic-security-serverless.md) |
-| Tier 2 analyst | Ideal for alert triage and beginning the investigation process. Can create cases. | [](../../../solutions/security/elastic-security-serverless.md) |
-| Tier 3 analyst | Deeper investigation capabilities. Access to rules, lists, cases, Osquery, and response actions. | [](../../../solutions/security/elastic-security-serverless.md) |
-| Threat intelligence analyst | Access to alerts, investigation tools, and intelligence pages. | [](../../../solutions/security/elastic-security-serverless.md) |
-| Rule author | Access to detection engineering and rule creation. Can create rules from available data sources and add exceptions to reduce false positives. | [](../../../solutions/security/elastic-security-serverless.md) |
-| SOC manager | Access to alerts, cases, investigation tools, endpoint policy management, and response actions. | [](../../../solutions/security/elastic-security-serverless.md) |
-| Endpoint operations analyst | Access to endpoint response actions. Can manage endpoint policies, {{fleet}}, and integrations. | [](../../../solutions/security/elastic-security-serverless.md) |
-| Platform engineer | Access to {{fleet}}, integrations, endpoints, and detection content. | [](../../../solutions/security/elastic-security-serverless.md) |
-| Detections admin | All available detection engine permissions to include creating rule actions, such as notifications to third-party systems. | [](../../../solutions/security/elastic-security-serverless.md) |
-| Endpoint policy manager | Access to endpoint policy management and related artifacts. Can manage {{fleet}} and integrations. | [](../../../solutions/security/elastic-security-serverless.md) |
+| Viewer | Has read-only access to project details, data, and features. | [](../../../solutions/search.md)[](../../../solutions/observability.md)[](../../../solutions/security.md) |
+| Editor | Configures all Observability or Security projects. Has read-only access to data indices. Has full access to all project features. | [](../../../solutions/observability.md)[](../../../solutions/security.md) |
+| Tier 1 analyst | Ideal for initial alert triage. General read access, can create dashboards and visualizations. | [](../../../solutions/security.md) |
+| Tier 2 analyst | Ideal for alert triage and beginning the investigation process. Can create cases. | [](../../../solutions/security.md) |
+| Tier 3 analyst | Deeper investigation capabilities. Access to rules, lists, cases, Osquery, and response actions. | [](../../../solutions/security.md) |
+| Threat intelligence analyst | Access to alerts, investigation tools, and intelligence pages. | [](../../../solutions/security.md) |
+| Rule author | Access to detection engineering and rule creation. Can create rules from available data sources and add exceptions to reduce false positives. | [](../../../solutions/security.md) |
+| SOC manager | Access to alerts, cases, investigation tools, endpoint policy management, and response actions. | [](../../../solutions/security.md) |
+| Endpoint operations analyst | Access to endpoint response actions. Can manage endpoint policies, {{fleet}}, and integrations. | [](../../../solutions/security.md) |
+| Platform engineer | Access to {{fleet}}, integrations, endpoints, and detection content. | [](../../../solutions/security.md) |
+| Detections admin | All available detection engine permissions to include creating rule actions, such as notifications to third-party systems. | [](../../../solutions/security.md) |
+| Endpoint policy manager | Access to endpoint policy management and related artifacts. Can manage {{fleet}} and integrations. | [](../../../solutions/security.md) |
## Role scopes [ec-role-scoping]
diff --git a/explore-analyze/alerts-cases/alerts/maintenance-windows.md b/explore-analyze/alerts-cases/alerts/maintenance-windows.md
index a708bf0b24..9e3215c792 100644
--- a/explore-analyze/alerts-cases/alerts/maintenance-windows.md
+++ b/explore-analyze/alerts-cases/alerts/maintenance-windows.md
@@ -12,7 +12,7 @@ products:
# Maintenance windows
-This content applies to: [](../../../solutions/observability.md) [](../../../solutions/security/elastic-security-serverless.md)
+This content applies to: [](../../../solutions/observability.md) [](../../../solutions/security.md)
You can schedule single or recurring maintenance windows to temporarily reduce rule notifications. For example, a maintenance window prevents false alarms during planned outages.
diff --git a/manage-data/ingest/transform-enrich/logstash-pipelines.md b/manage-data/ingest/transform-enrich/logstash-pipelines.md
index 9da26526c0..bf520de851 100644
--- a/manage-data/ingest/transform-enrich/logstash-pipelines.md
+++ b/manage-data/ingest/transform-enrich/logstash-pipelines.md
@@ -10,7 +10,7 @@ products:
# Logstash pipelines [logstash-pipelines]
-This content applies to: [](../../../solutions/search.md) [](../../../solutions/observability.md) [](../../../solutions/security/elastic-security-serverless.md)
+This content applies to: [](../../../solutions/search.md) [](../../../solutions/observability.md) [](../../../solutions/security.md)
On the **{{ls-pipelines-app}}** management page, you can control multiple {{ls}} instances and pipeline configurations.
diff --git a/redirects.yml b/redirects.yml
index 7d17022b1e..c06d373213 100644
--- a/redirects.yml
+++ b/redirects.yml
@@ -587,6 +587,11 @@ redirects:
# Related to https://github.com/elastic/docs-team/issues/104
'solutions/observability/get-started/what-is-elastic-observability': 'solutions/observability.md'
+ 'solutions/security/get-started/create-security-project.md':
+ to: 'solutions/security/get-started.md'
+ anchors:
+ 'create-sec-serverless-project':
+ 'solutions/security/elastic-security-serverless.md': 'solutions/security.md'
# Related to https://github.com/elastic/docs-content/pull/3808
- 'solutions/observability/get-started/other-tutorials/add-data-from-splunk.md': 'solutions/observability/get-started.md'
\ No newline at end of file
+ 'solutions/observability/get-started/other-tutorials/add-data-from-splunk.md': 'solutions/observability/get-started.md'
diff --git a/solutions/security/ai/ease/ease-intro.md b/solutions/security/ai/ease/ease-intro.md
index 9ff3fda554..2f4c368bab 100644
--- a/solutions/security/ai/ease/ease-intro.md
+++ b/solutions/security/ai/ease/ease-intro.md
@@ -14,7 +14,7 @@ This page describes how to create an EASE project, how to ingest your data, and
To create an EASE project:
-1. [Create](/solutions/security/get-started/create-security-project.md) an {{sec-serverless}} project, and on the **Confirm your project settings** page, select **Elastic AI SOC Engine**.
+1. [Create](/solutions/security/get-started.md#create-sec-serverless-project) an {{sec-serverless}} project, and on the **Confirm your project settings** page, select **Elastic AI SOC Engine**.
:::{image} /solutions/images/security-ease-create-ease-project.png
:alt: The Confirm your project settings page
diff --git a/solutions/security/elastic-security-serverless.md b/solutions/security/elastic-security-serverless.md
deleted file mode 100644
index 9123ba6b3f..0000000000
--- a/solutions/security/elastic-security-serverless.md
+++ /dev/null
@@ -1,41 +0,0 @@
----
-navigation_title: Elastic Security Serverless
-mapped_pages:
- - https://www.elastic.co/guide/en/serverless/current/what-is-security-serverless.html
-applies_to:
- serverless:
- security: all
-products:
- - id: cloud-serverless
----
-
-# {{sec-serverless}} [what-is-security-serverless]
-
-
-{{elastic-sec}} combines threat detection analytics, cloud native security, and endpoint protection in a single solution, so you can quickly detect, investigate, and respond to threats and vulnerabilities across your environment.
-
-Serverless projects provide you with the existing {{elastic-sec}} on-premise and {{ecloud}} deployment functionality, and the following new features and capabilities:
-
-* Continuous onboarding hub at the center of the **Get started** page
-* Security-focused, single-level navigation
-* **Osquery** availability within **Investigations**
-* **Assets** management for {{fleet}}, endpoints, and Cloud
-* Security-specific roles
-* Machine learning nodes included, by default
-* Developer tools for interacting with your data
-
-
-## Get started [_get_started_2]
-
-* [Create a Security project](get-started/create-security-project.md): Create your first serverless Security project.
-* [Ingest data](get-started/ingest-data-to-elastic-security.md): Learn how to add your own data to {{elastic-sec}}.
-
-
-## How to [_how_to_2]
-
-* [Enable detection rules](detect-and-alert.md): Activate prebuilt rules from Elastic, and create your own custom rules.
-* [Protect endpoints](configure-elastic-defend/install-elastic-defend.md): Install and configure real-time endpoint protection with {{elastic-defend}}.
-* [Secure your cloud](cloud.md): Improve cloud security posture, scan for vulnerabilities, and monitor workloads.
-* [Triage and respond to alerts](detect-and-alert/manage-detection-alerts.md): Analyze potential threats and launch investigations.
-* [Investigate security events](investigate.md): Query security event data and hunt for threats.
-* [Visualize security data](dashboards.md): Use prebuilt dashboards and create your own visualizations.
diff --git a/solutions/security/get-started.md b/solutions/security/get-started.md
index 482446e9c9..af9c6ce82a 100644
--- a/solutions/security/get-started.md
+++ b/solutions/security/get-started.md
@@ -17,7 +17,7 @@ New to {{elastic-sec}}? Follow the instructions in this topic to get started. Th
::::::{{stepper}}
:::::{{step}} Choose your deployment type
-Elastic provides several self-managed and Elastic-managed options. For simplicity and speed, we recommend [](./elastic-security-serverless.md), which enables you to run {{elastic-sec}} in a fully managed environment so you don’t have to manage the underlying {{es}} cluster and {{kib}} instances.
+Elastic provides several self-managed and Elastic-managed options. For simplicity and speed, we recommend {{sec-serverless}}, which enables you to run {{elastic-sec}} in a fully managed environment so you don’t have to manage the underlying {{es}} cluster and {{kib}} instances.
$$$create-sec-serverless-project$$$
::::{dropdown} Create an {{sec-serverless}} project
diff --git a/solutions/security/get-started/create-security-project.md b/solutions/security/get-started/create-security-project.md
deleted file mode 100644
index 8c7f044b55..0000000000
--- a/solutions/security/get-started/create-security-project.md
+++ /dev/null
@@ -1,27 +0,0 @@
----
-mapped_pages:
- - https://www.elastic.co/guide/en/serverless/current/security-create-project.html
-applies_to:
- serverless:
- security: all
-products:
- - id: cloud-serverless
----
-
-# Create an {{sec-serverless}} project [security-create-project]
-
-An {{sec-serverless}} project enables you to run {{elastic-sec}} in an autoscaled and fully managed environment, where you don’t have to manage the underlying {{es}} cluster and {{kib}} instances.
-
-## Create project [security-create-project-create-project]
-
-Use your {{ecloud}} account to create a fully managed {{sec-serverless}} project:
-
-1. Navigate to [cloud.elastic.co](https://cloud.elastic.co/).
-2. Log in to your {{ecloud}} account and select **Create project** from the **Serverless projects** panel.
-3. Select **Next** from the **Security** panel.
-4. Name your project and select your feature tier. For more information about tiers, refer to [pricing](https://www.elastic.co/pricing/serverless-security).
-5. Select a cloud provider and region.
-6. Select **Create project**. It takes a few minutes to create your project.
-7. Once the project is ready, select **Continue** to open the **Get started** page (you might need to log in to {{ecloud}} again).
-
- From here, you can learn more about {{elastic-sec}} features and start setting up your workspace.
diff --git a/solutions/security/get-started/get-started-cloud-security.md b/solutions/security/get-started/get-started-cloud-security.md
index a9150a8aeb..818f9d60ff 100644
--- a/solutions/security/get-started/get-started-cloud-security.md
+++ b/solutions/security/get-started/get-started-cloud-security.md
@@ -15,7 +15,7 @@ In this quickstart guide, you'll learn how to get started with Elastic Security
## Prerequisites
-* You can follow this guide using any deployment. To get up and running quickly, we recommend [](/solutions/security/elastic-security-serverless.md) with the **Security Analytics Complete** [feature tier](/deploy-manage/deploy/elastic-cloud/project-settings.md#elastic-sec-project-features). For a complete list of deployment options, refer to [](/deploy-manage/deploy.md#choosing-your-deployment-type).
+* You can follow this guide using any deployment. To get up and running quickly, we recommend [{{sec-serverless}}](/solutions/security/get-started.md#create-sec-serverless-project) with the **Security Analytics Complete** [feature tier](/deploy-manage/deploy/elastic-cloud/project-settings.md#elastic-sec-project-features). For a complete list of deployment options, refer to [](/deploy-manage/deploy.md#choosing-your-deployment-type).
* An admin account for the cloud service provider (CSP) you want to use.
diff --git a/solutions/security/get-started/get-started-detect-with-siem.md b/solutions/security/get-started/get-started-detect-with-siem.md
index b4daed5bc1..f170f1a4c2 100644
--- a/solutions/security/get-started/get-started-detect-with-siem.md
+++ b/solutions/security/get-started/get-started-detect-with-siem.md
@@ -15,7 +15,7 @@ In this quickstart guide, we'll learn how to use some of {{elastic-sec}}'s SIEM
## Prerequisites
-* You can follow this guide using any deployment. To get up and running quickly, we recommend [](/solutions/security/elastic-security-serverless.md) with the **Security Analytics Complete** [feature tier](/deploy-manage/deploy/elastic-cloud/project-settings.md#elastic-sec-project-features). For a complete list of deployment options, refer to [](/deploy-manage/deploy.md#choosing-your-deployment-type).
+* You can follow this guide using any deployment. To get up and running quickly, we recommend [{{sec-serverless}}](/solutions/security/get-started.md#create-sec-serverless-project) with the **Security Analytics Complete** [feature tier](/deploy-manage/deploy/elastic-cloud/project-settings.md#elastic-sec-project-features). For a complete list of deployment options, refer to [](/deploy-manage/deploy.md#choosing-your-deployment-type).
* If you're using the recommended integration in this guide, {{elastic-defend}}, then:
* Ensure you have the minimum [system requirements](/solutions/security/configure-elastic-defend/elastic-defend-requirements.md) to install {{elastic-defend}}.
* Ensure you grant the appropriate [{{elastic-defend}} sub-feature privileges](/solutions/security/configure-elastic-defend/elastic-defend-feature-privileges.md). At the least, you need `All` access for the **Endpoint List** and **Elastic Defend Policy Management** sub-features.
diff --git a/solutions/security/get-started/get-started-endpoint-security.md b/solutions/security/get-started/get-started-endpoint-security.md
index 2fa314d38b..71c1efcdb2 100644
--- a/solutions/security/get-started/get-started-endpoint-security.md
+++ b/solutions/security/get-started/get-started-endpoint-security.md
@@ -15,7 +15,7 @@ In this guide, you’ll learn how to use {{elastic-sec}} to protect your hosts f
## Prerequisites
-* You can follow this guide using any deployment. To get up and running quickly, we recommend [](/solutions/security/elastic-security-serverless.md) with the **Security Analytics Complete** [feature tier](/deploy-manage/deploy/elastic-cloud/project-settings.md#elastic-sec-project-features). For a complete list of deployment options, refer to [](/deploy-manage/deploy.md#choosing-your-deployment-type).
+* You can follow this guide using any deployment. To get up and running quickly, we recommend [{{sec-serverless}}](/solutions/security/get-started.md#create-sec-serverless-project) with the **Security Analytics Complete** [feature tier](/deploy-manage/deploy/elastic-cloud/project-settings.md#elastic-sec-project-features). For a complete list of deployment options, refer to [](/deploy-manage/deploy.md#choosing-your-deployment-type).
* Ensure you have the minimum [system requirements](/solutions/security/configure-elastic-defend/elastic-defend-requirements.md) to install {{elastic-defend}}.
* Ensure you grant the appropriate [{{elastic-defend}} sub-feature privileges](/solutions/security/configure-elastic-defend/elastic-defend-feature-privileges.md). We recommend granting them all, but you need at least `All` access for the **Endpoint List** and **Elastic Defend Policy Management** sub-features.
diff --git a/solutions/toc.yml b/solutions/toc.yml
index df2ad35fcc..0c1f0de30e 100644
--- a/solutions/toc.yml
+++ b/solutions/toc.yml
@@ -525,7 +525,6 @@ toc:
- file: observability/observability-serverless-feature-tiers.md
- file: security.md
children:
- - file: security/elastic-security-serverless.md
- file: security/get-started.md
children:
- file: security/get-started/quickstarts.md
@@ -534,7 +533,6 @@ toc:
- file: security/get-started/get-started-endpoint-security.md
- file: security/get-started/get-started-cloud-security.md
- file: security/get-started/elastic-security-requirements.md
- - file: security/get-started/create-security-project.md
- file: security/get-started/elastic-security-ui.md
- file: security/get-started/ingest-data-to-elastic-security.md
children: