Name: Exploring the top threats and vulnerabilities facing modern APIs and AppSec
Start: 2025-05-29T19:00:00Z
End: 2025-05-29T19:00:30.000Z
Location: BrightTALK
Rating: 5

Upwind is a platform that brings deep DevOps and cloud infrastructure experience to the forefront of cloud security—making it as easy to secure cloud and AI as it is to consume it. As a runtime security platform, Upwind enables security professionals to navigate effectively toward the root cause of issues despite the headwind of cloud chaos and alerting noise. 

In today’s threat landscape, a cyber attack is no longer a question of if—but when. The real test is how quickly and confidently an organization can bounce back. Unfortunately, traditional tools often leave teams scrambling with delayed insights, noisy alerts, and outdated assumptions—especially when AI workloads and modern cloud environments are in play.
 
During this fireside chat, you’ll witness an expert deep dive into what happens after a security breach—and how to turn a moment of crisis into a catalyst for security maturity. By watching, you’ll learn how to:
 
• Detect, contain, and mitigate threats in real time
• Prevent AI-specific risks
• Build lasting resilience through continuous visibility and intelligent automation
• And more
 
Tune in now to equip your organization with the strategies needed to bounce back stronger than ever in 2025 and beyond.

Best Practices for Bouncing Back Stronger after a Cyber Attack

In today’s threat landscape, a cyber attack is no longer a question of if—but when. The real test is how quickly and confidently an organization can bounce back. Traditional tools often leave teams scrambling with delayed insights, noisy alerts, and outdated assumptions—especially when AI workloads and modern cloud environments are in play.

Join CSO & Board Member Rinki Sethi and Upwind CPO Joshua Burgin for a deep dive into what happens after the breach—and how to turn a moment of crisis into a catalyst for security maturity. We’ll explore the critical capabilities security teams need to contain threats, prioritize risk, and rebuild trust—with speed and precision.

You’ll learn how to:
• Use live runtime signals to reconstruct what happened—across cloud and GenAI workloads
• Cut through the noise and focus
• Detect, contain, and mitigate threats in real time, not post-mortem
• Prevent AI-specific risks
• Align security and engineering for a faster, more coordinated response
• Build lasting resilience through continuous visibility and intelligent automation

Whether you’re responding to your first major breach or refining your playbook, this session will equip you with the strategies—and tech stack—to bounce back stronger than ever in 2025 and beyond.

Respond Smarter, Recover Faster, and Build Resilience with Runtime and GenAI-Aware Security

APIs and modern applications move fast—and so do today’s attackers. From broken authentication to data exposure, AppSec threats often hide in plain sight, undetected by legacy scanners and static policies. That’s where Cloud Application Detection & Response (CADR) comes in: surfacing live, contextual signals that reveal and respond to what’s actively exploitable, not just what once was.

Join Upwind CPO Joshua Burgin and Analyst James Berthoty of Latio Tech for a behind-the-scenes look at how CADR is redefining API and AppSec security. You’ll see what’s changing, what’s not working, and how to stay one step ahead of runtime threats.

You’ll learn how to:
• Expose hidden risks in your APIs and apps using runtime data
• Detect and contain API attacks as they unfold—not after the fact
• Prioritize real threats with real-time, in-context visibility
• Automate protection with enforcement that scales with your cloud
• Align AppSec, DevSecOps, and response teams around one source of truth

This webinar will showcase how you can gain real-time clarity and control for securing cloud-native apps and legacy APIs during runtime, protecting critical assets and enhancing API and the best AppSec strategies in the industry.

How to Secure Your Cloud Apps in Real Time with CADR

Security Information and Event Management (SIEM) offerings are over twenty years old. SIEM's log aggregation and compliance focus has taken a backseat to other emerging cybersecurity technologies which are more proactive. However, technological improvements have led to a resurgence in SIEM offerings. SIEMs can now enhance real-time threat detection, automate incident response, and support zero trust architectures. Most importantly, they are in a better position to support modern cloud environments and to address sophisticated cyberattacks.

Tune in to the presentation from business owner and professor Charles Kolodgy, who will provide insights and examples on how SIEM improvements are enhancing cybersecurity operations, particularly in the security operations center (SOC). The discussion will cover the benefits of orchestration and automation capabilities, threat intelligence integration, and AI implementation.

Join this discussion to learn:
- How the SIEM has evolved from a log consolidator to an integrated security platform that can provide full visibility, alerting, and detection while adding automation and response and other capabilities.
- The capabilities, advantages, and disadvantages of modern SIEM technology.
- The cost savings and operational efficiencies that come with SIEM technology improvements.
- The synergies between next-gen SIEM and a zero trust architecture.
- How the modern SIEM can work with and integrate well with other SOC elements.
- The leading advanced SIEM products.

The Evolution of the SIEM: Seeing and Doing More to Stop Attacks

As digital transformation accelerates and cloud-native applications become the new norm, application security faces a constantly evolving threat landscape. This session from TD Bank's Pankul Chitrav explores how organizations can adapt their security posture to defend against increasingly sophisticated attacks, from zero-day exploits to API abuse and supply chain vulnerabilities. We’ll outline modern security frameworks, such as DevSecOps and zero trust, and highlight practical strategies to embed security into every stage of the application lifecycle. 

Learn how to future-proof your security architecture and maintain resilience in the face of persistent and emerging threats.

Future-Proof Your Security Architecture Against Today's Persistent Threats

As organizations shift to cloud-native architectures, securing workloads becomes increasingly complex. Traditional methods like hardcoded secrets and service accounts were designed for static systems, not the dynamic, distributed applications we build today. In this session, learn the concept of Trusted Workload Identity—a new approach that doesn’t just manage secrets but verifies identity at runtime using open standards and cutting-edge security practices.

Join cybersecurity advocate Sal Kimmich for an accessible introduction to key technologies like SPIFFE, SPIRE, JWT-SVIDs, and confidential computing. You’ll learn how these tools work together to automatically assign cryptographic identities to workloads and enable secure, policy-driven communication across clouds, containers, and even serverless functions.

Whether you’re a developer, DevSecOps engineer, or app security lead, this session will help you understand how workload identity fits into modern application security—and why it’s quickly becoming a critical piece of secure-by-design infrastructure.

Key Takeaways:
- Why legacy secret management no longer meets today’s security demands.
- What "workload identity" means and how it's different from user authentication.
- How open-source tools like SPIFFE and SPIRE simplify identity and trust.
- What confidential computing adds to runtime verification and secure execution.
- Practical steps to start implementing workload identity in your environment.

Discover the Future of Trusted Workload Identity to Secure Your Sensitive Applications

Security Operations Centers are on the front lines of defense against rising API threats. This panel from security professional Naomi Buckwalter and David Lindner addresses the critical need to enhance SOC capabilities with application security expertise and runtime intelligence. They'll delve into why a shift-right approach is essential to complement shift-left practices, providing the real-time visibility necessary to detect and respond to application-layer attacks. 

Learn how to build effective AppSec incident response playbooks within the SOC, enabling proactive threat hunting, faster incident triage, and reduced breach impact. The panel will also discuss the importance of cross-functional collaboration and the future of AppSec in the SOC.

The AppSec-Enabled SOC: Addressing Modern Challenges in Incident Response

Application security remains one of the most complex challenges in cybersecurity. Unlike traditional infrastructure, applications are difficult to test across all possible attack vectors, and security failures can lead to devastating breaches. 

Tune into this session led by CISO Alex Holden as he explores emerging threats based on insights from the dark web and real-world incident response cases. The webinar will also dive into vulnerabilities of various application environments, flaws in business logic, next-generation penetration testing scenarios, and the evolving risks of AI manipulation by threat actors. 

Join us to uncover how attackers are targeting applications in 2025 -- and how to stay ahead.

Smarter App Security Strategies to Enhance Today’s Cyber Defense

Most organizations operating web and mobile applications focus on identity proofing and authenticating customers. However, as phishing schemes become more advanced, customers also need organizations to better "prove you are you" before they are willing to engage and share sensitive information. 

Tune into this session presented by Lucy Yang and Kaliya Young, partners from Identity Woman in Business, as they speak about experiences interacting with a scam chatbot and the lack of intuitive ways for customers to know whether they are engaging with a legitimate human or AI agent of an application. They’ll also explore organizational identity which has been one area of focus of the EU Digital Identity Wallet Large-Scale Pilots. As standards mature around digital wallets, it is time for organizations at large to think about how an organizational wallet can help you address identity and cybersecurity threats. 

Key Takeaways:
- Understand the business risks caused by not being able to "prove you are you" .
- Learn about the emerging topic of organizational identity and mutual authentication.
- Discover the organizational digital identity wallet and the technical standards that underpin it.

The "Proving You Are You" Problem for Organizations

Threat detection solutions come in many forms; extended detection and response (XDR), endpoint detection and response (EDR) and network detection and response (NDR). When it comes to detecting threats to an organization each of these “DRs” identifies specific elements of an attack path, but they may be lacking visibility into application-specific threats because these solutions see an application as a “black-box”. 

This session covers Application detection and response (ADR) solutions which look for vulnerabilities and exploits within the application itself. 

Key takeaways:
- Understand how ADR observes and analyses applications bringing visibility and context down to the code level. 
- How to contrast ADR with application layer coding verification mechanisms such as RASP, SCA, SAST and DAST.
- Understand how ADR differs from deploying a WAF or CNAPP solution.
- Learn how ADR observations and context can be integrated with the other ”DRs” to build a more complete picture of an attack to ensure an end-to-end response.

About the Speaker
Natalie is a Security and Compliance Consultant that has been involved in security technologies for more than 20 years. Natalie has advisory and engineering experience in multi-vendor network security architecture and deployment, security compliance and governance, security analytics and threat detection and response. Natalie was a former Program Leader for the CCIE Security certification track and has been a keynote speaker at various Cybersecurity events both in the US and Australia.

Natalie is also a three-time Cisco Distinguished Speaker award winner, a published author with Cisco Press and a freelance technical writer and presenter.

ADR: Not Just “Another” Detection and Response Solution

Advancing App Security for a New Era of Threats

APIs and modern applications move fast—and so do today’s attackers. From broken authentication to data exposure, AppSec threats often hide in plain sight, undetected by legacy scanners and static policies. That’s where Cloud Application Detection & Response (CADR) comes in: surfacing live, contextual signals that reveal—and respond to—what’s actively exploitable, not just what once was.

During this session, you’ll join Upwind CPO Joshua Burgin for a behind-the-scenes look at how CADR is redefining API and AppSec security. You’ll see what’s changing, what’s not working, and how to stay one step ahead of runtime threats. You’ll also learn how to:
 
• Expose hidden risks in your APIs and apps using runtime data
• Prioritize real threats with real-time, in-context visibility
• Automate protection with enforcement that scales to your cloud
• And more
 
Watch now to learn how you can confidently secure your cloud apps.

Exploring the top threats and vulnerabilities facing modern APIs and AppSec

APIs

Application Security

Authentication

Data Best Practices

Cloud Applications

Threat Detection

Cloud Security

Threat Defence

CADR

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Exploring the top threats and vulnerabilities facing modern APIs and AppSec

Presented by

About this talk

Upwind Security, Inc. - NA - Channel