Name: API Security Challenges and Best Practices
Start: 2023-04-27T08:44:00Z
End: 2023-04-27T08:44:59.000Z
Location: BrightTALK
Rating: 5

With 20+ years of application service experience, F5 provides the broadest set of services and security for enterprise-grade apps, whether on-premises or across any multi-cloud environment.

F5 A Force For Cybersecurity hosts a new webinar every month around cloud and security topics, so do stay tuned to this channel to get the latest information!


The Payment Card Industry (PCI) Security Standards Council released a revised version of its Data Security Standard, PCI DSS 4.0, which delineates the minimum-security requirements that merchants must meet when they store, process, and transmit cardholder data. This brings significant changes to the payments security ecosystem and compliance standards, emphasizing governance, organizational maturity, technical controls, and targeted risk analysis to a greater extent.

Is your organization prepared for the transition to PCI DSS 4.0?

Join this webinar to gain valuable insights that will help you adapt to the new PCI DSS v4.0 requirements, enhance your compliance journey, and ensure the security and trust of your payment ecosystem.

Key takeaways:

- How digital skimming and Magecart attacks are conducted and why they are successful
- What new PCI DSS 4.0 client-side and API requirements were added to address these challenges
- Best practices and resources available for meeting those requirements
Timelines you should be aware of and the steps you can take now

Navigating the new PCI DSS 4.0 client-side and API requirements

Applications have become increasingly complex, are consistently changing and still include legacy code. In addition to this, they are decoupled as microservices, leverage public APIs and rely on nested open source and third-party dependencies. The rapid release cycles of modern software have meant an increasing reliance on third-party development environments with build tools and pipelines in hybrid and multi-cloud environments.

Join F5 Principal Security Architect Shain Singh and guest speaker Forrester Principal Analyst Sandy Carielli in this 45-min session to explore how organizations are looking to adopt DevOps principles and technology to keep up with the rate of change in application delivery and security.

Attend this webinar to learn more about:
- Insights from Forrester State of Application Security 2023 report
- DevOps principles and technology

State of Application Security 2023: Navigating complexity with DevOps principles

Apps and APIs span every generation of architecture—from monoliths to microservices and from client-server to mobile—across data centers, clouds, and at the edge. Organizations strive to achieve digital resiliency, yet 9 out of 10 companies that operate in multi-cloud environments are struggling to maintain a consistent security posture.

Join this webinar to learn how to gain the observability, security, and agility you need to compete in a complex hybrid and multi-cloud digital world.

In this webinar, you'll learn:

- The challenges of securing the enterprise architecture for digital business.
- How the right solutions protect all apps and APIs—legacy and modern— from core to cloud to edge.
- Best practices for deploying comprehensive protection and consistent security that unleashes innovation and digital velocity.

Application Security for a Hybrid and Multi-Cloud Digital World

The threat landscape is rapidly evolving, and businesses of all sizes must stay vigilant against the rising tide of DDoS attacks. In this recent F5 Labs 2023 DDoS attack trends report, applications layer attacks are up by 165% and the technology sector is the most attacked industry in 2022. It is no wonder that we see a continuing trend of increases in DDoS events in terms of frequency and complexity of these attacks, with a significant focus on application vectors and multi-vector approaches. Organizations heavily reliant on web applications must be prepared to combat web-based denial of service attacks.

In this 1-hour webinar, we will delve into the current DDoS threat landscape trends, and explore latest insights and measures to safeguard your business.

Key topics covered:
- Understanding the Shifting Landscape of DDoS Attacks
- The Impact on Web-based Denial of Service
- Effective strategies to protect against evolving DDoS attacks

Join us to hear F5 Security Practice Lead David Arthur and guest speaker Forrester Senior Analyst David Holmes share their insights, practical advice and real-world experiences to help you fortify your defences and safeguard your critical web applications.

Secure your spot today by registering for the webinar!

DDos Attacks Trends and Solutions

Security executives have the arduous task of handling various cybersecurity risks in their organizations. In a rapidly evolving digital landscape, APIs are the lifeblood of businesses, making it imperative for CISOs in organizations to protect the organizations’ API traffic. In June 2023, The Open Web Application Security Project (OWASP) released the OWASP Top 10 API Security Risks as the reference for all industries. However, some CISOs may still have misconceptions about API security, which can hinder their ability to develop effective security designs in their organizations.

In this webinar, we will demystify the essential components to build the API security design for CISOs. We will also cover how F5 solutions can tackle the newly introduced API vulnerability such as ‘API10: Unsafe Consumption of APIs’ in the webinar.

Don't miss this opportunity to fortify your organization's defenses and navigate the complex API security landscape. Join us to stay ahead of the cybersecurity curve!

A CISO’s Guide to Prevent OWASP API Top 10 vulnerabilities

If improving application security matters to you, you need the latest emerging trends in web application and API protection. Join us on May 24 to explore and learn practical guidance on how to mitigate common threats and vulnerabilities to ensure web application and API security in your organization.

Key topics that will be covered:

- Application security trend and range of tools
- Overview of application security deployment trends in APCJ
- Building a robust web application and API security with F5 Distributed cloud
- Real world case study of an application attack

Through the live session, our very own expert speaker and guest speaker will provide you with practical advice and insights that you can put into action right away to enhance the security and resilience of the web application and APIs!

Don’t miss this opportunity to stay ahead of the curve on safeguarding your web application and APIs & save your spot today!

Safeguarding Web Application and APIs: Emerging Trends and Best Practices

Automated threats and bots have a rippling effect, impacting everyone from your customers to your business. Throw in malware on mobile devices, and it seems like businesses have a lot to deal with from compromised security of your customers’ sensitive information to the erosion of trust and confidence in your brand. To deal with these scenarios, we cannot just look at one aspect of defense. These considerations are typically done by the businesses, and it might seem like we are losing this battle.

What if we can help secure our customers’ devices and safeguard against such threats. Join us in this webinar with F5 to find out how we can help you defend against automated threats, sustain business success and secure your customers’ digital experience, from end-to-end.

Beyond Bots: Securing Your Customers’ Digital Experience, End-to-End

As organizations work to keep up with the demands of digital transformation, they encounter many challenges. Often, they must choose between deployment velocity, app security, and performance. But if you work with a unified set of flexible tools, you don’t need to choose between speed, effective app deployment, and management.

Join us to discover how BIG-IP Automation Toolchain can help you keep up with the speed of your business. You’ll see how to deploy infrastructure as code (IaC) and empower your DevOps team to use a single declarative API. We’ll present real-world use cases, lessons learned, and best practices you can take away for your organization.

In this webinar, we’ll cover how to:

- Accelerate and simplify deployment of critical app services
- Automate service discovery and BIG-IP platform provisioning
- Deploy apps consistently and repeatably – on premises and in the cloud

F5 Automate BIG-IP to Enable Digital Transformation

DDoS Attack Trends and Solutions

As the technology landscape evolves at an unprecedented pace, organizations are facing new challenges and opportunities in creating cutting-edge applications that cater to the demands of the digital age.

Join NGINX Director, Solutions Engineering Laurent Petroque and guest speaker Forrester Senior Analyst Janet Worthington in this 45-min session as they share invaluable insights, practical tips, and strategies to excel in the era of Modern Application Development. Whether you are a seasoned developer, IT professional, or decision-maker, this webinar promises to equip you with the knowledge and tools needed to thrive in the ever-evolving technology landscape.

Attend this webinar to learn more about:
- Security in Modern Applications
- Operating microservices at scale
- Smoothen multi-cloud operations

Modern Application Development embraces the Shift Everywhere Movement

If improving application security matters to you, you need the latest emerging trends in web application and API protection. Explore and learn practical guidance on how to mitigate common threats and vulnerabilities to ensure web application and API security in your organization.

Key topics that will be covered:

- Application security trend and range of tools
- Overview of application security deployment trends in APCJ
- Building a robust web application and API security with F5 Distributed cloud
- Real world case study of an application attack

Through the live session, our very own expert speaker and guest speaker will provide you with practical advice and insights that you can put into action right away to enhance the security and resilience of the web application and APIs!

Don’t miss this opportunity to stay ahead of the curve on safeguarding your web application and APIs & save your spot today!

While security and operations teams care deeply about their ability to deliver the best experience possible for their customers while enhancing operational efficiencies, there is plenty left for the board and the executive staff to consider when it comes to bots and automated attacks.

Join Joshua Haslett, Strategic Technology Partner Manager at Google Cloud, and Jim Downey, Cybersecurity Evangelist at F5, for an in-depth conversation to help crack the code on “bot economics” so you can learn how to:

• Calculate financial revenue and reputation costs
• Identify and control operational expenses
• Develop a cost/benefit analysis for bot mitigation
• Prepare for that much-needed business conversation with key stakeholders

F5 Distributed Cloud Bot Defense for Google Cloud enables frictionless security that complements performance, automation, and insight to deliver and scale the application experience. Join the conversation to determine the economic impact of bots on your business so you can demonstrate to the board that the top and bottom lines are safe from bot-generated compromise.

Bots to Board Room: The Often-Missed Economic Impact of Bots

Security in the Hybrid, Multi-Cloud Digital World

"You can't protect what you can't see" and "it takes a village" are familiar expressions within security and risk teams. Visibility and policy enforcement are fundamental pillars in cybersecurity and critical components within a holistic API security strategy. But the existing landscape complicates those efforts.

Why? Architecture is becoming de-centralized and distributed, transforming apps into a digital fabric of business logic interconnected by APIs. Yet the enterprise catalog continues to be powered by a mix of legacy and modern apps across data centers, clouds, and at the edge. This hybrid, multi-cloud digital world introduces major risks driven by third-party integrations, inconsistent security controls across cloud providers, and continuous code updates across complex software supply chains and CI/CD pipelines.

So how can you secure APIs in this modern digital fabric? Well, it takes a village

In this webinar, we’ll cover:
- The challenges of API security in a hybrid, multi-cloud digital world
- How to get a handle on API and tool sprawl
- Specific API security challenges and best practices for financial services
- Expert insights on trends and solutions for API security

API Security Challenges and Best Practices

Web Application Security

API Management

API security

IT Security

Cyber Security

Multi Cloud

Hybrid Cloud

Threat Detection

Threat Defence

Application Security

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Practicing business intelligence allows your company to transform raw data into sets of insights for targeted business growth. The business intelligence and analytics community on BrightTALK is made up of thousands of data scientists, database administrators, business analysts and other data professionals. Find relevant webinars and videos on business analytics, business intelligence, data analysis and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Business Intelligence and Analytics

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Get powerful insights on how to best serve today's customers. If you want to create a successful customer experience today, you will have to appeal to the need for “alone together” time. Millennials, Gen X, Boomers or Silent Generation all look for shared but individual experiences.

Customer Experience

The sales community on BrightTALK brings together thousands of engaged sales professionals. Learn about careers in IT sales and marketing, sales techniques and selling strategies. Join the discussion by participating in on-demand and live sales webinars and summits with leaders in the sales industry.

API Security Challenges and Best Practices

Presented by

About this talk

More from this channel