Consider:
Mentioning IAST wherever SAST and DAST are mentioned if applies in context
change "scan" or "Scanning" to application security testing to be more consistent
should it just be Software Integrity as Data Integrity could be covered by injection?