OPEN TALK (API): How a Combined Shift-Left and Shield-Right Approach Enables Continuous API Security

Isabelle Mauny
42Crunch, Field CTO & Co-Founder

Isabelle is a co-founder and field CTO of 42Crunch. She spent most of her early career at IBM, in a variety of technical roles and managed relations with some of the world's largest organizations both as a solutions architect and services professional. She subsequently joined Vordel (acquired by Axway) as head of product management and then moved to WSO2 as VP of Product Strategy. Isabelle is passionate about delivering customer-focused solutions and evangelizing them to the community. She has authored multiple books, is Co-Chair of the BGB for OpenAPI and is a regular speaker at technical conferences.

Are you struggling to keep up with the increasing volume and scale of API development ? Are you finding that traditional security solutions simply cannot address all API security challenges ? You’re not alone! APIs have given us unprecedented integration capabilities, but are also greatly increasing our attack surface. Trying to cope with issues by deploying tools after APIs are done and delivered is simply not going to work. Instead we need to take a proactive approach to API security.

Isabelle explores how a continuous approach to API security can be achieved, combining design-time security measures driven by development with continuous API threat analysis, API-specific vulnerability detection and runtime policy enforcement. She proposes an approach known as security as code to establish a common language across Dev, Sec and Ops teams and demonstrates an automated workflow, from design through deployment that ensures API issues are caught and addressed as early as possible in the API lifecycle.