How are you assessing the security posture of third-party APIs the business relies on? What criteria do you use currently?

Security Strategy & RoadmapThreat & Vulnerability Management
2.2k viewscircle icon2 Comments
Sort by:
Senior Director Of Technology in Softwarea year ago

We do internal vulnerability testing of 3rd party APIs like we do for ours.

Lightbulb on1
Director of IT in IT Servicesa year ago

We evaluate third-party API security through comprehensive risk assessments, focusing on authentication protocols, data encryption, and vendor compliance.

Content you might like

Any tips for evaluating/implementing solutions for application detection and response? What’s your experience been like with these tools so far?

When it comes to digital forensics and incident response, are you mostly relying on internal or external resources to conduct forensics?

External54%

Internal45%

Not sure

View Results

What were your org’s biggest motivations for implementing a cloud native application protection platform (CNAPP)? Pick the top 2.

Improve container security1%

Improve app security24%

Improve cloud security posture overall28%

Streamlining security operations15%

DevSecOps integration24%

Compliance needs6%

Reduce complexity1%

Something else

View Results

What’s your “hot take” when it comes to security questionnaires?

Read More Comments

We’re evaluating a new ERP. Our company, PROENERGY is a vertically integrated power partner (gas plant design/build, O&M, manufacturing including our PE6000 turbine, and 2.6 GW ERCOT operations).

Considering: SAP Public Cloud, Oracle Fusion Cloud, Microsoft Dynamics, IFS, and Infor Construction Cloud.

Key needs: manufacturing, complex structure with built-in consolidation/reporting, long-range planning, procurement/inventory, and core accounting.

We use Microsoft Dynamics today for CRM/Field Service. Biggest concerns: implementation partners and support resources.

Would love your thoughts.