| Alerting on Symptoms, Not Causes; the Silent Runner Problem | concept | 3 | Open |
| Dashboards That Answer Questions, Not Decorations | concept | 3 | Open |
| Data Classification and Minimization | concept | 3 | Open |
| Defense in Depth: Network, Host, App, Data Layers | concept | 3 | Open |
| Distributed Tracing: OpenTelemetry and Sampling Strategies | concept | 3 | Open |
| Encryption: At-Rest, In-Transit, and KMS Envelope Encryption | concept | 3 | Open |
| Identity-Centric Security: The New Perimeter | concept | 3 | Open |
| Image Hardening, Minimal Base Images, and Supply-Chain Scanning | concept | 3 | Open |
| Metrics: Cardinality, Exemplars, and USE/RED in Cloud-Native | concept | 3 | Open |
| Runbooks and On-Call Hygiene | concept | 3 | Open |
| Runtime Detection and Response: CSPM and CWPP | concept | 3 | Open |
| Secret Management: Vaults, Dynamic Secrets, Rotation | concept | 3 | Open |
| Security Groups, NACLs, and VPC Endpoints: The Network Moat | concept | 3 | Open |
| Structured Logging and Log Routing | concept | 3 | Open |
| Threat Modeling (STRIDE) for Cloud Services | concept | 3 | Open |