Debunking the Myths Around API Security Research Slides

| @ema_research
Debunking the Myths
Around API Security
Christopher M. Steffen, CISSP, CISA
Managing Research Director, EMA
CSteffen@enterprisemanagement.com
Sponsored by

| @ema_research 2
Watch the On-Demand Webinar
• Debunking the Myths Around API Security On-Demand Webinar:
https://info.enterprisemanagement.com/api-security-2023-webinar-ws
• Check out upcoming webinars from EMA here:
https://www.enterprisemanagement.com/freeResearch
© 2023 Enterprise Management Associates, Inc.

| @ema_research
| @ema_research
Featured Speaker
Chris brings over 20 years of industry experience as a noted
information security executive, researcher, and presenter, focusing
on IT management/leadership, cloud security, and regulatory
compliance.
His technical career started in the financial services vertical in systems
administration for a credit reporting company, eventually building the
network operations group, as well as the information security practice
and technical compliance practice for the company before leaving
as the Principal Technical Architect. He was the Director of
Information for a manufacturing company and the Chief Evangelist
for several technical companies, and also held the position of CIO of
a financial services company, overseeing the technology-related
functions of the enterprise. He currently leads the information security,
risk, and compliance management practice for Enterprise
Management Associates (EMA), a leading industry analyst firm that
provides deep insight across the full spectrum of IT and data
management technologies.
Chris holds several technical certifications, including Certified
Information Systems Security Professional (CISSP) and Certified
Information Systems Auditor (CISA), and was awarded the Microsoft
Most Valuable Professional Award five times for virtualization and
cloud and data center management (CDM). He holds a Bachelor of
Arts (Summa Cum Laude) from Metropolitan State College of Denver.
© 2023 Enterprise Management Associates, Inc. 3
Christopher Steffen
Managing Research Director
Information Security, Risk and Compliance Management
Enterprise Management Associates
| @ema_research

| @ema_research
| @ema_research
Agenda
Introduction
1 2 3
Voices from
the Survey
Research
Findings
4
Conclusions

| @ema_research
| @ema_research
Sponsors

| @ema_research
| @ema_research
Demographics & Methodology
Sample Size = 229

| @ema_research
Voices of the Survey –
Respondent Quotes

| @ema_research
| @ema_research
Securing our API is important so
confidential and trusted information can
be sent securely. It gives us peace of
mind when the messages are in transit
through encryption. It also validates and
authenticates the data being sent. By
accepting queries sent over a secure
channel, we maintain production and
efficiency without the risk of a breach.
Securing our organization's API is
important because it helps protect
sensitive data, maintain customer trust
and reputation, ensure legal compliance,
and maintain a competitive advantage.
Our executive has made securing my
organization's API the highest priority and
is putting others on hold to achieve that
objective. My organization receives and
sends files to external organizations and
governments to meet regulatory and
compliance requirements.
Securing our APIs is critical to avoid
security breaches, as well as to remain in
compliance. Right now, many
organizations are at risk due to poorly
secured APIs and resources, and it is
essential to harden services to ensure an
organization is protected.
API security is critical for our business
because APIs are used to connect
services and transfer data, and a hacked
API can result in a data breach since we
are working in the mobile software
industry. Also, we provide information and
technology consultation services, so we
put a high focus on secured APIs.
API security is crucial to our business
because it facilitates shielding the facts
that are being transferred and stored.
When an API is not comfy, it is vulnerable
to theft and misuse. Stolen authentication
records can be used to get entry to
personal facts, control transactions, and
damage reputations. This can result in
financial losses, prison, and customer
dissatisfaction, all of which can have a
drastic effect on an enterprise.
Securing an organization's API is critical for
business since it prevents private data
from being accessed or abused.
Businesses may guarantee that only
authorized users can use the API and that
the data is safe from bad actors by
implementing encryption and
authentication mechanisms.
Voices from the Survey – Open Ended Responses
Describe why securing your organization’s API is important to your business.

| @ema_research
Research Findings

| @ema_research
| @ema_research

| @ema_research
| @ema_research
Conclusions
Management
understands the
importance of
API security.
25% of all APIs are
undiscovered or
undocumented.
API security
should not wait
until production.
Integrations are
key.

| @ema_research
| @ema_research
Get the Report!
Learn more and download at
http://bit.ly/3YIHgGA

Debunking the Myths Around API Security Research Slides

Recommended

Recommended

More Related Content

Similar to Debunking the Myths Around API Security Research Slides

Similar to Debunking the Myths Around API Security Research Slides (20)

More from Enterprise Management Associates

More from Enterprise Management Associates (20)

Recently uploaded

Recently uploaded (20)

Debunking the Myths Around API Security Research Slides