Name: Ep. 2 - Application Security ≠ API Security. Rethinking Application, API & LLM Security
Start: 2025-08-13T06:00:00Z
End: 2025-08-13T06:00:40.000Z
Location: BrightTALK
Rating: 5

Akamai is the cybersecurity and cloud computing company that powers and protects business online. Our market-leading security solutions, superior threat intelligence, and global operations team provide defense in depth to safeguard enterprise data and applications everywhere. Akamai’s full-stack cloud computing solutions deliver performance and affordability on the world’s most distributed platform. Global enterprises trust Akamai to provide the industry-leading reliability, scale, and expertise they need to grow their business with confidence. Learn more at akamai.com and akamai.com/blog, or follow Akamai Technologies on X and LinkedIn.

現代のアプリケーションはAPIを中心に構築され、攻撃者もその構造を熟知しています。実際、最近のインシデントの約3分の1はAPIの脆弱性が原因で発生しています。本ウェビナーでは、実際の攻撃事例を交えながら、APIのどこにリスクが潜み、どのように可視化・検知・防御すべきかを解説します。アカマイが提供する無料のAPIヘルスチェックを活用し、まずは“見えていないリスク”を把握しましょう。

このような方におすすめ
・自社のAPIがどのようなリスクに晒されているかを理解したい方
・APIの脆弱性対策を検討しているセキュリティ担当者・アーキテクト
・APIを活用した新規サービスを推進する開発・運用チーム
・セキュリティ戦略の見直しを検討しているマネージャー・リーダー層

API  Security 基礎編　モバイルオーダー不正からデータ漏洩まで─API攻撃の最新手口と防御の具体策

In the final episode of our three-part series, experience TrafficPeak's powerful real-time observability platform in action with product demos. Watch how you can leverage real-time insights to optimize your content delivery and enhance viewer engagement.

 During this interactive session, you'll discover how to: 

-Gain Instant Visibility: Explore TrafficPeak's intuitive dashboard to monitor key metrics such as latency, buffering rates, and content popularity in real-time. 
-Proactively Resolve Issues: Learn how TrafficPeak identifies performance bottlenecks, empowering you to troubleshoot problems before they impact your audience. 
-Maximize Content Impact: See how actionable insights can help you fine-tune content promotion strategies and improve user retention. 
-Simplify Operations: Discover automation capabilities that streamline caching decisions and improve overall delivery efficiency. 

Whether you're looking to improve streaming performance, drive engagement, or enhance your observability strategy, let this demo show you the power of TrafficPeak's capabilities.

Don't miss this opportunity to see TrafficPeak in action and innovate your streaming experience.

Ep. 3 - Experience Real-Time Observability: Join us for a Demo

In the second episode of our three-part series, we take a deep dive into real-world customer experiences with TrafficPeak’s edge observability. Join us for an exclusive subject matter expert fireside chat where we’ll explore how businesses across media streaming, e-commerce, and finance have successfully implemented cost-effective observability to overcome challenges and enhance performance.

You’ll be able to gain valuable insights into:


-Customer Success Stories – Learn how businesses are improving performance, reliability, and user engagement with real-time observability.
-Practical Applications – Understand how observability strategies can be tailored to optimize as per your needs
-Overcoming Industry Challenges – Discover how our customers tackle scalability, latency, security, and compliance hurdles.
-Impact of Cost-effective Solutions - See how affordable observability drives results without breaking the bank

Don’t miss this insightful discussion that bridges the gap between insights and real-world applications, highlighting impactful results.
 Stay tuned for our final episode, which will feature a live product demo showcasing the power of Trafficpeak’s observability platform.

Ep. 2 - Cost-effective Edge Observability in action: Customer Success Insights

In today's fast-paced digital landscape, real-time observability is crucial for delivering seamless experiences, ensuring system reliability, and optimizing performance across industries like media streaming, e-commerce, and finance. TrafficPeak on Akamai Cloud provides instant insights that drive smarter decisions and better outcomes.

Join us to discover how TrafficPeak on Akamai Cloud can help you:


-Real-Time Insights for Smarter Decisions –Instantly monitor user behavior, system performance, and content delivery to optimize operations.
-Enhance Performance & Reliability – Predict traffic surges, balance workloads, and resolve issues before they impact users.
-Optimize Costs & Resource Allocation – Streamline caching, network routing, and cloud spend to maximize efficiency.
-Improve Security & Compliance – Detect anomalies, mitigate threats, and meet industry-specific compliance requirements.
-Stay Ahead with Best Practices – Explore the latest trends in observability and learn how industry leaders are leveraging TrafficPeak.

This is the first episode of a three-part series—stay tuned for upcoming sessions featuring real-world customer case studies and a live product demo in the final episode.

Ep. 1 - Cost-effective Edge Observability with TrafficPeak

APIs are integral to modern applications including AI's operational and functional aspects. Vulnerabilities and misconfigurations in APIs can lead to severe consequences like data breaches, fines, and reputational damage.

Join our live API Security demo to discover how to:

-Gain complete visibility into your APIs, and the data they handle
-Instantly create an API inventory to meet regulatory compliance requirements
-Leverage AI and machine learning to analyze API transactions and detect posture and business logic vulnerabilities
-Automate workflows for alerts, ticketing, event logs, remediation guidance, and attacker blocking
-Reduce risks early with Shift-Left API testing during the development phase

This presentation is ideal for security professionals, developers, and business leaders looking to stay ahead in the ever-changing landscape of API security.

AI-Powered API Security in Action

Generative AI reshapes API security, posing new threats and solutions. In this session, we will explore how malicious actors could leverage generative AI to exploit API vulnerabilities. And outline how Akamai integrates cutting-edge AI technologies to defend against these threats.

In this practical session, you will learn:

1. How generative AI is being used by attackers to discover vulnerabilities, and automate API exploitation

2. How Akamai API Security employs advanced AI models to identify suspicious patterns and predict threats in real time

3. Real-world examples of how generative AI is used in Akamai API Security to strengthen defenses

This presentation is ideal for security professionals, developers, and business leaders looking to stay ahead in the ever-changing landscape of API security.

Generative AI and API Security: Staying Ahead with Akamai API Security

APIs have long been the important connective tissue that enables modern applications to function, interact, and scale effectively.

In the age of AI, APIs serve as the critical infrastructure that enables seamless communication between AI systems and other applications, facilitating real-time interactions between applications, data sources, and services.

However, as APIs become more integral to AI's operational and functional aspects, they also present a growing attack surface for cyber threats. 

In this session, you will learn:

 1. The Role of APIs in AI and Agentic Systems
 2. How compromised APIs can disrupt AI systems and expose sensitive data
 3. Top security risks affecting APIs and their impact
 4. Mitigating API risks with best practices and AI-powered tools
 5. Key takeaways and next steps

This presentation is ideal for security professionals, developers, and business leaders looking to stay ahead in the ever-changing landscape of API security.

API security in the age of AI

Achieving a solid network segmentation policy is only the beginning. In today’s dynamic threat landscape, even the most well-architected segmentation policies require continuous tuning and vigilance after deployment. This session dives deep into the evolving world of Day-2 network security — where static rules become liabilities, and policy maintenance is a continuous battle against misconfigurations, overly permissive access, and silent policy failures.

Join us to explore 7 critical real-world scenarios that expose hidden gaps in segmentation strategies — from overshadowed and zero-hit rules to unrestricted admin access and rogue remote tools. Learn how attackers exploit these weaknesses and how security teams can shift from a “set it and forget it” mindset to a proactive, adaptive approach.

We’ll cover actionable techniques to:
- Detect and eliminate overly broad or obsolete rules
- Enforce least-privilege communication at scale
- Use automation and traffic intelligence to continuously optimize your policy
- Bring hidden attack paths to light — before adversaries do

Akamai is an approved ISC2 CPE Submitter Partner. Earn CPE Credits by watching our Webinar.

Making Cyber Resilience Work for Critical Infrastructure

Zero Trust isn’t just about security—it’s a critical pillar of cyber resilience. But how do you measure its impact? In this final episode of our cyber resilience webinar series, we’ll break down the real ROI of implementing Zero Trust and how Akamai Guardicore Segmentation helps you maximize security while minimizing costs.

Join us as we explore:

-How to reduce attack surfaces and simplify compliance, and enhance operational security
-How granular segmentation prevents lateral movement and minimizes business disruptions
-Real-world use cases and key metrics to quantify the financial and security benefits

Whether you’re starting or fine-tuning your security strategy, this session will equip you with insights to measure success, reduce risks, and enhance cyber resilience. Don’t miss this opportunity to take that final step in your Zero Trust journey!

Ensure Cyber Resilience: Maximizing ROI on Your Zero Trust Journey with Akamai

Modern cyber threats are more sophisticated than ever, bypassing even the most advanced security defenses. Akamai HUNT takes security to the next level by leveraging real-time segmentation data, third-party integrations, and cutting-edge telemetry to uncover and neutralize hidden threats before they cause damage. With no additional agent rollout required, organizations can seamlessly enhance their security posture while avoiding alert fatigue and unnecessary operational burdens.

In this webinar, we’ll walk you through the power of Akamai HUNT, real-world success stories, and a live product demo showcasing how security teams can detect and respond to advanced threats in real time.

What You’ll Learn:
- Understanding Akamai HUNT – How it enhances Guardicore segmentation and integrates with OSquery for deep visibility.
- Real-World Threat Hunting Scenarios – Case studies showcasing how Akamai HUNT identified crypto-mining malware, admin credential leaks, and PowerShell abuse.
- Advanced Threat Detection & Incident Response – How Hunt’s detection engine minimizes false positives and prioritizes the most critical threats.
- Live Demo – See how Hunt visualizes threats, maps attack paths, and provides actionable remediation steps.
- Security Best Practices & Future Innovations – Insights into upcoming enhancements to segmentation rules and proactive threat prevention.

Hunting the Most Evasive Cyber Threats With Akamai HUNT

It has been established that microsegmentation is a fast-growing essential business building block - from gaining visibility into your applications and workloads, developing your security posture, and enabling Zero Trust - microsegmentation represents exciting advancements for operational security.

But there are many approaches organizations have at their disposal, and understanding the tools and solutions that suit your business needs and requirements is essential for longevity and success.

In this session, we’ll be reviewing the solutions and tools available today, the mistakes to avoid, and how to set your business up for success.

Join Akamai and Enterprise Strategy Group Analysts as we discuss:

- Considerations before assessing Microsegmentation vendors
- Where historical microsegmentation tools have fallen short in the past, and the tools available today
- How you can gain visibility into your network using Microsegmentation
- AI and machine learning in the microsegmentation space
- And more!

Fortifying Cyber Resilience: Tackling Top Threats with Segmentation

With ransomware attacks crippling businesses and data breaches exposing sensitive information on the rise, the question is no longer if an attack will happen, but when— and how prepared you are. That’s why maintaining business continuity and security has never been more critical.

This webinar will break down cyber resilience—What it means and why it’s crucial for businesses of all sizes.In short, cyber resilience is about staying operational and recovering quickly from cyberattacks or system failures.

In this session, we’ll explore how to improve cyber resilience through deeper visibility and threat insights across the technology stack with a focus on improving incident response. We will also be diving into the following topics:

-What are the four pillars of essential visibility and the benefits
-How a multi-layered defense improves cyber resilience
-Walkthrough of a customer case study 

Join us and take the next step in strengthening your cyber defenses and build the cyber resilience you need to protect yourself in today’s digital world.

Understanding Cyber Resilience: Why It’s Crucial for Your Business Now

Join us to understand how DDoS Attacks against the Financial Sector have moved from nuisance to strategic threat as well as how those same trends are impacting other industries. DDoS attacks have grown in complexity, scope and speed with many being driven by political vs cybercriminal goals, which require new risk analysis and protections. Financial Services Information Sharing and Analysis Center (FS-ISAC) and Akamai have teamed up to share:
 
• Trends in threat methodology, tactics, and motivations
• Attacks by region, infrastructure, and motivations 
• Best practices and maturity model to protect against DDoS

Akamai is an approved ISC2 CPE Submitter Partner. Earn CPE Credits by watching our Webinar.

Nuisance to Strategic Threat: DDoS Attacks Against the Financial Sector

Ransomware has quickly become one of the most severe threats to the financial sector, with attacks skyrocketing by 70% over the past year. Unlike typical cyber incidents, today’s ransomware assaults are multi-staged and highly targeted, designed to not only disrupt operations but also exfiltrate sensitive data and amplify pressure through direct outreach to clients and regulators. Financial institutions face unique risks, from compromised reputation to operational paralysis, and require tailored defenses to stay protected.

In this webinar, our cybersecurity experts will reveal FS-ISAC’s latest findings on ransomware trends and defense strategies tailored for finance. Attendees will learn to build resilient defenses, create rapid response plans, and navigate high-stakes decision-making, equipping them with the critical tools needed to secure their organizations.

What You’ll Learn:
- Anatomy of a Ransomware Attack: From initial breach to quadruple extortion, learn the stages and tactics that make ransomware so disruptive to financial firms.
- Defense Essentials: Key cybersecurity fundamentals—like Zero Trust policies, multi-factor authentication, and isolated, resilient backup solutions—to stop ransomware in its tracks.
- Crisis Management and Compliance: Build an agile incident response plan, manage communication with clients, and navigate global regulations to reduce impact.
- Informed Decision-Making: Weigh the complex risks and compliance factors in ransom payments, with guidance for safeguarding both your operations and reputation.

Akamai is an approved ISC2 CPE Submitter Partner. Earn CPE Credits by watching our webinars.

Ransomware Readiness for Financial and Critical Industries

Join us for an exclusive webinar featuring a real-world success story from one of our customers who transformed their security posture through microsegmentation. In this live session, you’ll hear firsthand from Network Security Architect, Quynn Kars, and Network Security Engineer, Evan Martinez, on how they decided they needed a change, why their company chose microsegmentation, and how they compared pricing to legacy firewall options. Discover the strategic decisions, implementation best practices, and lessons learned throughout their journey—from initial planning and beyond. Whether you're just starting to explore microsegmentation or looking to optimize your existing approach, this webinar offers valuable insights and practical takeaways.

What You’ll Learn:
- Key drivers behind their decision to adopt microsegmentation
- Obstacles they encountered—and how they overcame them
- Tangible outcomes and metrics demonstrating success
- Recommendations for organizations considering microsegmentation

Akamai is an approved ISC2 CPE Submitter Partner. Earn CPE Credits by watching our Webinar.

Hear from a Peer: A Segmentation Journey told by an Akamai customer

Security buyers face endless claims about protection efficacy — but how do you separate marketing from measurable reality?

In this session, SecureIQLab and Akamai break down the results of the industry’s only recurring, standards-based comparative WAAP test. Join Cameron Camp, Analyst Security Researcher and Akamai’s Brent Maynard, to learn how independent testing is conducted, why resiliency and false-positive avoidance matter as much as detection rates, and where most vendors still fall short.

We’ll share Akamai’s top-performing results, key market learnings, and the practical questions every security leader should ask when evaluating a WAF or WAAP. Walk away with actionable insights to validate your current defenses and strengthen your buying decisions.


Akamai is an approved ISC2 CPE Submitter Partner. Earn CPE Credits by watching our Webinar.

Independent Testing, Real Results: How Secure Is Your WAAP?

As apps and APIs spread across cloud, on-prem, and hybrid environments, securing them consistently can be a challenge.

Watch this on-demand session to explore Akamai App & API Protector Hybrid — and see how you can extend powerful WAAP capabilities beyond the Edge.

What you’ll learn:
- How to unify WAF policy enforcement across environments
- How to secure East-West and North-South traffic with built-in resiliency
- Strategies to simplify operations and reduce vendor complexity

Whether you're modernizing infrastructure or closing WAF coverage gaps, this session offers practical guidance to help protect what matters — wherever it runs.

Extend WAF Protection Across Environments

As AI adoption accelerates, new risks emerge — not just in the models themselves, but in the APIs that power them.

In this final session of our 3-part series, we move from strategy to implementation, showing how Akamai solutions can help organizations secure modern, AI-enabled applications. Large language models (LLMs) and AI services rely heavily on APIs to connect to data sources, integrate with applications, and deliver real-time value. This API dependency creates a broader, more dynamic attack surface that must be discovered and secured.

You will learn how Firewall for AI, WAAP, and API Security work together to secure AI workloads, protect sensitive data, and reduce organizational risk. You'll also see how to discover unknown APIs used by AI systems and defend against emerging threats like prompt injection and inference abuse.

What you’ll learn:
-How APIs underpin AI workloads and introduce new security concerns
-The role of API discovery in securing LLMs and AI services
-Demo: Using Akamai’s Firewall for AI with API Security and WAAP
-How to implement layered defenses for application, API, and AI traffic

Who should attend: Security Architects, AppSec leaders, DevSecOps, and teams deploying or securing AI systems.

Ep. 3 - Securing the AI-Powered Stack: How to Protect APIs, Models, and Applications

APIs are the foundation of modern digital services — enabling applications to interact, scale, and deliver seamless user experiences. In the AI era, APIs have become indispensable, acting as the fabric connecting AI systems with applications, data sources, and services in real time.

But this increased reliance comes with new risks. Recent research from Akamai’s State of the Internet: Web Application and API Threat Report 2025 and API Security Impact Study: APAC Edition 2025 highlights a sharp rise in API and web application attacks across APAC, fueled by AI-driven techniques and evolving threat vectors. In addition, AI deployments such as Large Language Models (LLMs) are also facing increased threats and vulnerabilities such as prompt injection attacks to model manipulation.

In this webinar, you will learn the latest insights from these reports, examining how organizations in APAC are navigating skyrocketing attack volumes, operational challenges, and compliance risks.
What you’ll learn:

-Web application and API attack trends impacting APAC
-How AI is influencing both attack methods and security strategies
-Common gaps in API inventory, visibility, and protection


Who should attend: CISOs, CIOs, Security Architects, SOC teams, DevSecOps, and security professionals responsible for securing modern applications and APIs.

Ep. 1 - 2025 API and Application Security: APAC Trends, Priorities and the Impact of AI

Securing the Modern Stack: AI, API and Application Protection in 2025

Modern applications rely on APIs to enable functionality, data exchange, and integration with other services. Yet while application security has traditionally focused on code vulnerabilities, misconfigurations, and runtime defenses, it often overlooks the distinct risks introduced by APIs — including exposure of sensitive data, authentication weaknesses, and business logic abuse.

In this webinar, Akamai security specialists will explore the connection between API security and application security, clarifying where they intersect, how they differ, and why both are essential in mitigating today’s evolving threats.

You’ll learn how strengthening API security not only addresses a growing and targeted attack surface but also plays a critical role in reducing overall business risk. We’ll discuss how to identify key API-related risks on your security heatmap and implement strategies to minimize both their likelihood and impact.

Key topics include:

-The relationship between application and API security
-Common API-specific risks and how they affect application security posture
-How API security contributes to risk reduction and operational resilience
-How Akamai can help mitigate against OWASP Top 10 vulnerabilities

Who should attend: CISOs, CIOs, Security Architects, SOC teams, DevSecOps, and security professionals responsible for securing modern applications and APIs.

Ep. 2 - Application Security ≠ API Security. Rethinking Application, API & LLM Security

APIs

API Management

Application Security

Web Application Security

Data Protection

Risk Management

Vulnerability Management

Artificial Intelligence

Large Language Model

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Ep. 2 - Application Security ≠ API Security. Rethinking Application, API & LLM Security

Presented by

About this talk

Akamai APAC