”

rify their code. This is a serious problem, as we have seen several high profile breaches involving APIs. I think CISOs can be instrumental by ensuring that security practitioners are part of the development cycle, and developers are trained on how to secure their code. Additionally, CISOs should ensure that they have an API gateway deployed at the perimeter of their network to protect all APIs from attacks such as SQL Injection or Cross-Site Scripting (XSS). The API gateway should also enforce authentication/authorization policies for all APIs being exposed outside the enterprise network boundaries
https://t.co/wKok0fyyCA