Salt Security is working to tackle the rising threat of logic-based API attacks. The company’s API Protection Platform is now available in the CrowdStrike Marketplace aiming to provide a comprehensive security solution for Crowdstrike’s extensive customer base. In this video, Salt Security co-founder Michael Nicosia discusses the evolving API Security landscape saying, “We look at this API security journey to reduce your risk associated with any kind of potential vulnerability or breach.”

API security platform in the cloud-native era

• Salt Security co-founder Michael Nicosia discusses the company’s API security platform, which is now available in the CrowdStrike Marketplace.
• In 2018, Nicosia and co-founder and CEO, Roey Eliyahu, saw the growing threat of logic-based potential attacks at the API level and created Salt Security to address this gap in security tools.

API security threats and partnership with CrowdStrike

• Salt Security focuses on API security and aims to become the leader in managing and securing APIs across any organization and its entire environment.
• CrowdStrike and Salt Security’s partnership provides API security solutions to CrowdStrike customers, offering ease of use, and procurement efficiencies while enabling Salt Security to tap into the massive market of 30,000+ customers.
• The partnership leverages Salt Security’s API security expertise and CrowdStrike’s XDR solution to provide a comprehensive security ecosystem for customers, with unique benefits for both parties.

API security and breach prevention

• CISOs are increasingly aware of API security and its importance, with Gartner identifying it as the biggest threat vector in security.
• With the shift left movement, security often falls into the developer’s domain but CISOs want to empower themselves to make security decisions. Nonetheless, they still recognize the importance of security being integrated into the development process from the beginning.
• Nicosia emphasizes the importance of API security, citing the potential for breaches and the need to reduce the risk associated with vulnerabilities.
• Nicosia outlines three components of the API security journey: visibility, posture governance, and compliance, highlighting the need for a comprehensive approach to address security gaps.

API security, regulations, and compliance

• Nicosia discusses the importance of API security and how generative AI can impact code security. He talks about how they are embedding their LLM solution into their dashboard for easier operation and securing API-driven environments.
• Nicosia explains the importance of compliance with regulations and laws in the digital economy, particularly for CISOs. He talks about how their solution helps with posture governance so that organizations stay compliant.

Guest: Michael Nicosia (LinkedIn)
Company: Salt Security (Twitter)
Show: Let’s Talk

This summary was written by Emily Nicholls.