<img src="https://certify.alexametrics.com/atrk.gif?account=8w5fq1Fx9f207i" style="display:none" height="1" width="1" alt="">
API Security: Everything You Need to Know To Protect Your APIs


Think About Your Audience Before Choosing a Webinar Title

Sponsored by TRACEABLE AI

Wednesday, March 17, 2021
1 p.m. ET
With more APIs in circulation than ever before, there has been a direct correlation to the number of API abuses reported across industries. This is because APIs are such a valuable asset to bad actors, but many organizations have not yet woken up to the realities of the need to protect their APIs from abuse. If you couple that with the fact that attacks on APIs have become more sophisticated, with some attackers even using AI themselves, then you can see why even some of the more security-conscious organizations can have trouble properly securing their APIs.
A robust API Security posture can be broken down into several areas including:
  • Proper design and coding during the development process
  • API governance and compliance through visibility of all your APIs (shadow too!) and a mapping of how they connect to each other.
  • General application and API protection from tools such as API gateways, WAFs, NG-WAF, and RASPS
  • An always-updating understanding of your user behaviors regarding your APIs.
You won’t have comprehensive API security without solutions in each of these areas.
We will also discuss:
  • The roles of API developers, infosec, support, and enterprise architects as it relates to API security
  • Microservices role in making it difficult to secure your APIs
  • The importance of inventorying your APIs
  • How technologies like Traceable can help protect your APIs against advanced attacks
Key takeaways:
  • Why your API's are a key attack surface for modern bad actors
  • Why APi's are so much harder to secure than traditional web traffic
  • What's necessary to secure your APIs
  • Why yesterday's solutions can't solve today's new API security challenges
Aaron Lieberman
Cloud Practice Manager and Architect - Big Compass
Aaron’s passion for technology and for enriching connectivity between people and between systems drives him to find innovative ways to help advance organizations through technology. Aaron is the Cloud Practice Manager and an Architect at Big Compass. He has rich experience in a variety of integration environments. He brings a unique integration background where he has worked with multiple technologies to deliver creative implementations in the cloud. Aaron loves delivering rich experiences for his clients through deep connections, and has a passion for working with microservices, serverless technology, DevOps, APIs, and API security. Aaron has led various implementations as a developer, architect, and development manager, so he brings the perspective of each role to every project to align people around a common goal. Aaron is also very involved in the integration community where he leads two Meetups: Denver MuleSoft Meetup and All Things Integration. He uses these Meetups to bring people together to create a community, share knowledge, and enhance collaboration. This platform allows him to engage the local community and beyond to spread knowledge and thought leadership while connecting people and ideas.
Dan Gordon
Dir, Technical Evangelism - Traceable AI
Dan Gordon leads Technical Evangelism at Traceable AI. Dan is passionate about advancing the adoption of modern software development and delivery practices. Previously in the trenches as a developer, an infra and network admin, security operations, and a security architect, he’s first hand experienced how poor practices can make everyone’s lives harder, and won’t rest until we move everyone forward in a better way. As a product manager at leading IT and DevOps tool vendors, Dan created and/or was responsible for multiple award winning DevOps tools including the ElectricCloud ElectricFlow Release Automation suite. As a technical evangelist he's excited to teach organizations about adopting new DevSecOps software practices and tools so they can rapidly AND securely develop, deliver, and operate in the ever evolving IT landscape.

On-Demand Viewing:

What You’ll Learn in This Webinar

You’ve probably written a hundred abstracts in your day, but have you come up with a template that really seems to resonate? Go back through your past webinar inventory and see what events produced the most registrants. Sure – this will vary by topic but what got their attention initially was the description you wrote.

Paint a mental image of the benefits of attending your webinar. Often times this can be summarized in the title of your event. Your prospects may not even make it to the body of the message, so get your point across immediately.  Capture their attention, pique their interest, and push them towards the desired action (i.e. signing up for your event). You have to make them focus and you have to do it fast. Using an active voice and bullet points is great way to do this.

Always add key takeaways. Something like this....In this session, you’ll learn about:

  • You know you’ve cringed at misspellings and improper grammar before, so don’t get caught making the same mistake.
  • Get a second or even third set of eyes to review your work.
  • It reflects on your professionalism even if it has nothing to do with your event.