In this episode, Jason and Kevin join guest Adam Fisher, Principal Security Engineer at Salt Security. We focus on a very common threat vector and component in modern web applications, the topic of API security. API security is the process of protecting APIs from attacks. Because APIs are very commonly used, and because they enable access to sensitive software functions and data, they are becoming a primary target for attackers. In this episode, we’ll look at why API security is at an all-time high on the concerns lists for companies. If it’s not on your top 5 list of concerns, it SHOULD be! APIs connect systems together everywhere and we use them every day. We discuss some of the biggest API breaches you’ve likely heard about. We also cover why we’re vulnerable but more importantly, what you can do about it!  

Jason Popillion is a CISSP and serves as a CIO/CTO of a SaaS company and Kevin Pentecost is a CISSP, CISM, CEH, CPT, MCSE, CCA, ITIL-F and serves as an Information Security Director for a manufacturing company.