PRO WORKSHOP (API): API MythBusters: Crushing Five Security Myths that are Crushing Your Safety

- PDT
API World -- PRO Stage 2
Join on Hopin

Michael Isbitski
Salt Security, Technical Evangelist

Michael Isbitski is Technical Evangelist at Salt Security, helping to improve awareness and technical understanding in the area of API security. Prior to joining Salt, Michael was a Senior Director Analyst at Gartner for Technical Professionals (GTP). He researched and advised on a range of application security and infrastructure security topics including API security, security testing, secure design, secure SDLC, application protection, container security, Kubernetes security and secure continuous delivery. Michael also has more than 20 years of hands-on practitioner and leadership experience in the fields of application security, vulnerability management, risk assessment, enterprise architecture, and systems engineering.


Digital transformation and application modernization are exponentially driving up the use of APIs. We’re using more APIs than ever, and they’re more functional than ever. They’re also more attractive to hackers than ever, but lots of organizations are hanging onto old ways of thinking about API security.

Join our lively discussion on the top five common industry myths surrounding API security. You’ll learn the pitfalls of some misguided API security approaches, cut through the hype around a few security trends, and get recommendations on how to improve your organization’s API security strategy.

Key takeaways:

  • The impact trends such as zero trust, cloud migration, containerization, and shift-left are having on API security

  • The role of traditional security controls in API security – what they deliver and where they fall short

  • The value of a full lifecycle approach in grappling with API security

  • How to deploy dedicated API security that fits today’s automated, agile, and cloud-first environments