CloudSec 아카데미

SOC threat hunting is a proactive cybersecurity practice where analysts actively search for signs of malicious activity that bypass traditional security controls.

Indicators of compromise are forensic artifacts that prove a security breach has already happened. Think of IOCs as digital fingerprints left behind at a crime scene—they're specific pieces of evidence that confirm an attacker was in your system.

Enrichment in threat intelligence is the process of adding context, metadata, and relationships to raw security data to make it actionable.

An application security engineer is a security professional who protects software applications from threats throughout the entire development process.

Vulnerability threat intelligence is the practice of combining vulnerability assessment data with real-world threat information to understand which security weaknesses actually matter.

Digital risk protection (DRP) is a cybersecurity discipline that monitors and mitigates threats to your digital assets across public, deep, and dark web channels.

Copyleft is a licensing method that uses copyright law to ensure software freedom and requires derivative works to maintain the same open license.

While the deep web is mostly used for legitimate, private activities, the dark web hosts both illegal marketplaces and serves as a haven for privacy-seekers and activists in repressive regimes.

Allison Jackson

10월 22, 2025

API security risks are the complete spectrum of threats targeting application programming interfaces (APIs), including technical vulnerabilities, misconfigurations, and business logic flaws.

Kubernetes security incidents differ fundamentally from traditional IT breaches. Containers and pods are ephemeral—some containers live for only seconds or minutes. They're created, destroyed, and moved within seconds, making it far harder to track attacks compared to static servers.

Snegha Ramnarayanan

10월 20, 2025

Agentic AI security protects AI systems that autonomously make decisions, use tools, and take action in live environments. Agentic AI doesn't just answer questions—it acts on them.

Ziad Ghalleb

10월 17, 2025

SAST(Static Application Security Testing)는 소프트웨어를 배포하거나 실행하기 전에 애플리케이션의 소스 코드, 바이트 코드 또는 바이너리 코드에서 보안 취약성을 식별하는 방법입니다. 

Cloud ransomware is malware that targets data in cloud environments by exploiting features and APIs to encrypt, exfiltrate or destroy data.

DevOps is a way of working that breaks down walls between development and operations teams. This means developers and IT operations work together instead of in separate silos, which helps companies build and release software faster.

Threat hunting frameworks provide structured, repeatable methodologies for proactively searching for hidden threats that have bypassed traditional security defenses in cloud environments.

The threat intelligence lifecycle is a continuous, six-phase process that transforms raw data about potential cyber threats into refined, actionable intelligence

Threat hunting actively searches for hidden threats already inside your network, while threat intelligence gathers external information about potential threats to inform security strategy.

Secrets management is the practice of securely storing, controlling access to, and managing digital credentials like passwords, API keys, and certificates.

Shaked Rotlevi

10월 17, 2025

이 가이드에서는 AI 거버넌스가 조직에 매우 중요해진 이유를 분석하고, 이 공간을 형성하는 주요 원칙과 규정을 강조하고, 자체 거버넌스 프레임워크를 구축하기 위한 실행 가능한 단계를 제공합니다.