The 3 Pillars of API Security Success


APIs are everywhere. Any business with a mobile app, modern web apps (SPAs), using the cloud, doing a digital transformation, integrating with business partners, running microservices or using kubernetes all have APIs. There's a good foundation of AppSec knowledge out there but API Security isn't exactly the same as AppSec. Additional complexity is part of the landscape with multiple competing API technologies like REST, gRPC and GraphQL plus stakeholders spread across multiple parts of the business.

How do you make sense of the API Security landscape?

This talk will cover the three fundamental areas to consider, the various chess pieces in play and the many ways those pieces can be put on your API chessboard. The goal is for you to leave knowing how to map out your API Security landscape and reach a state of solid API Security.