Saved by Chad Hudson
Why Enterprises Can’t Afford to Overlook API Security in 2023
The truth is that in today’s hyperconnected world, maturity-based cybersecurity programs are no longer adequate for combatting cyberrisks. A more strategic, risk-based approach is imperative for effective and efficient risk management (Exhibit 2).
Jim Boehm • The Risk-Based Approach to Cybersecurity
he global AI race has become a matter of national security for many countries, therefore, state-backed cybercrime groups and mercenaries are aggressively targeting AI vendors, from talented startups to tech giants like Google or OpenAI
Fiona Jackson • OpenAI Secrets Stolen in 2023 After Internal Forum Was Hacked
Given that break-ins into corporate networks are now routine (and sometimes state-sponsored), the idea that data is somehow safer behind the corporate firewall is absurd. The only way to effectively secure data is strong encryption combined with rigorous hygiene around key management and access controls. This can be done as effectively in the cloud
... See moreJoanne Molesky • Lean Enterprise: How High Performance Organizations Innovate at Scale
-Identity: API-first companies in the identity space make it easy to authenticate users either in terms of identifying attributes (credit card info, email etc.), exploiting tailwinds of the increased need for digital authentication in a COVID era.
Grace Isford • The Third-Party API Economy
What are some ways you can mitigate this? Note, we won’t go into too much depth on this here, but some things to consider are:
• putting a governance framework around it
• having strong security processes
• developing for failure – testing to see how it can be broken and fixing during development
• checking data is encrypted in transit and at rest
• acc