Skip to main content

RAD Security

Cloud Security

The RAD Security Connector integrates with the RAD Security platform (formerly KSOC) — a Kubernetes and cloud-native security platform. It synchronizes cloud and Kubernetes inventory, container image scan summaries, deployed agent plugins, and runtime/posture findings into Brinqa.

The connector syncs six models:

  • Cluster — Kubernetes clusters discovered per account (mapped to CloudResource).
  • Resource — Kubernetes objects discovered within each cluster (mapped to CloudResource).
  • Image — Container images scanned per account with vulnerability severity counts (mapped to ContainerImage).
  • Plugin — RAD agent plugins reporting heartbeats from each cluster.
  • Finding — Individual security findings within unified finding groups.
  • Finding Definition — The rule/definition backing a finding group.

Data is retrieved from the RAD Security REST API. Listing endpoints are paged (page/page_size) and fetched in parallel. All listing endpoints are relative to the configured url (default https://api.ksoc.com); account-scoped endpoints iterate over the child accounts of the configured Parent Account ID (GET accounts?parent_id={parentAccountId}).


Data retrieved from RAD Security

Connector ObjectRequiredMaps to Data Model
ClusterYesCloud Resource
ResourceYesCloud Resource
ImageYesContainer Image
PluginYesPlugin
FindingYesFinding
Finding DefinitionYesFinding Definition

Model relationships

note

For detailed steps on how to view the data retrieved from RAD Security in the Brinqa Platform, see How to view your data.