IE11 Not Supported

For optimal browsing, we recommend Chrome, Firefox or Safari browsers.
Important Message

To focus on the most effective ways to serve Florida’s gov tech community, we’ve made the decision to sunset Industry Insider – Florida as of May 31.

We’re focusing our efforts on our popular in-person events in Florida, known for their high-impact outcomes.

Have any questions? We’re happy to help – reach us anytime at hello@industryinsider.govtech.com

But don’t worry – we’re still here for you in other ways, too!

Anatomy of API Security and Detecting Data Exposure Across Digital Government Systems

Learn how to see, analyze and mitigate risks for APIs in production, with insights on how Akamai can help with runtime security for APIs.

Why API security is imperative
In the race to meet customers’ needs, organizations face pressure to quickly develop and produce and enhance applications, services, and GenAI tools. This need for speed unfortunately results in a hidden risk: The APIs working behind the scenes for all these innovations are often built with misconfigurations, coding errors, and missing security controls. And when these APIs reach the production stage, it’s not just end users interacting with them; attackers are constantly testing out ways to compromise the APIs and access the data they exchange.

Misconfigured and compromised APIs are increasingly a key driver of significant data breaches, and yet few organizations are able to keep tabs on the thousands of API calls within their digital ecosystems. Fewer still are fully protected against runtime API threats. For example, in 2021, a fitness retail company found a bug in an API for user account data allowing anyone to make unauthenticated requests for data including age, gender, city, weight, and birthdate. While this vulnerability was thankfully detected and reported to the company by a security researcher, bugs like this can go unnoticed and be exploited for weeks or months.

When it comes to securing APIs, the traditional tools that organizations typically rely on — for example, API gateways and web application firewalls — can provide a baseline of protection. However, today’s security teams require additional security layers, as API attacks grow in number and sophistication. The key is augmenting existing controls with deeper insights into vulnerabilities, potential attack paths, malicious activity, and API behavior.

READ MORE
Akamai’s industry leading platform has proven to integrate well with existing IT environments and data integration requirements across Florida’s state agencies and local partners for statewide Digital Security Solutions. Akamai Digital Security Solutions are provided in accordance with Chapter 282, Florida Statutes (F.S.), Rule Title 60GG, Florida Administrative Code (F.A.C.), and cybersecurity best practices. Our Digital Security Solutions meet or exceed the applicable state and federal laws, regulations, and standards for cybersecurity, including the National Institute of Standards and Technology Cybersecurity Framework.
Industry Insider - Florida has sunset to better focus on serving Florida's govtech community in other ways.
To read this full article and more like it, visit: 
Stay Informed on FL News