Key Terms
AI (Artificial Intelligence): Computer systems designed to perform tasks that normally require human intelligence, such as learning, reasoning, prediction, and decision-making.
AppSec (Application Security): The practice of identifying, fixing, and preventing security vulnerabilities within software applications.
DAST (Dynamic Application Security Testing): Security testing performed on a running application to identify vulnerabilities during execution.
SAST (Static Application Security Testing): Security analysis of source code without executing it, used to identify vulnerabilities early in development.
SCA (Software Composition Analysis): Analysis of third-party libraries and open-source dependencies to identify known vulnerabilities and license risks.
SDLC (Software Development Life Cycle): The structured process for designing, developing, testing, deploying, and maintaining software.
Zero Trust: A security model that assumes no user, system, or workload is trusted by default and requires continuous verification.