Loading…
September 28-29, 2021
Virtual
View More Details & Registration

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for API Specifications Conference to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Pacific Daylight Time (UTC -7). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.
Back To Schedule
Wednesday, September 29 • 1:00pm - 1:30pm
Time to break the vicious circle: inject Security into API Development! - Isabelle Mauny, 42Crunch

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
Feedback form is now closed.
Each time we talk to our customers, the same story repeats. Hundreds of APIs are being built by agile development teams, released several times per week, with limited consideration for how secure they will be. AppSec teams play a constant game of whack-a-mole, trying to patch issues in production, issues which occur because they could not test and review the APIs as they were published. Too many changes, too little time, very few resources.
How do we break this vicious circle ?
This talk is inspired by my experience working with many large enterprises, helping them engrain security into their APIs lifecycle and changing their development culture. I will share the lessons learned as we worked together on breaking the habits that led to 1 billion of data records leaked via APIs in the last 12 months alone. We will use real data breaches to illustrate the mistakes that lead to those security issues and explain how to address them by changing the way you design and develop your APIs.
Speakers
avatar for Isabelle Mauny

Isabelle Mauny

Field CTO, 42Crunch
Isabelle Mauny, co-founder and Field CTO of 42Crunch, is a technologist at heart. She worked at IBM, WSO2 and Vordel across a variety of roles, helping large enterprises design and implement integration solutions. At 42Crunch, Isabelle manages customer POCs , partners integrations... Read More →

MAUNY ASC APISecurityAtDesign pdf
Wednesday September 29, 2021 1:00pm - 1:30pm PDT
Virtual Experience
  Process and Techniques