"Effectively Incorporating API Security into the Overall Security Workflow"

#1717122: "Effectively Incorporating API Security into the Overall Security Workflow"

Description:	As APIs become central to modern application ecosystems, the importance of API security has skyrocketed. However, focusing on API security in isolation is insufficient. To effectively safeguard APIs, enterprises must integrate them into broader security workflows, ensuring alignment with organizational policies, processes, and technologies. In this webinar, Josh Goldfarb, Field CISO at F5, and Joe Martin, Sr. Solutions Architect at F5, will provide strategic insights and actionable guidance on effectively incorporating API security into overarching enterprise workflows. From leveraging DevSecOps principles to implementing real-time monitoring and adopting scalable security practices, attendees will gain practical takeaways to develop a cohesive API security strategy that strengthens their organization’s overall cybersecurity posture. This webinar will cover four core learning objectives: Understand API Security Risks and Threats: Gain a foundational understanding of common API vulnerabilities, attack vectors, and risk categories, and learn how they align with broader enterprise security concerns. Integrate API Security into the Security Workflow: Learn practical strategies for embedding API security into your organization’s existing security practices, including DevSecOps processes, threat modeling, code reviews, and incident response plans. Implement Best Practices for Strengthening API Security: Explore actionable best practices, covering authentication, authorization, encryption, input validation, and secure API design principles to enhance your organization’s API security posture. Measure and Monitor API Security Posture: Discover tools, metrics, and techniques for continuously assessing, monitoring, and improving API security controls within the context of your organization's broader security ecosystem. Speakers: Josh Goldfarb, Field CISO, F5 Josh Goldfarb is currently Field CISO at F5. Earlier in his career, Josh served as the Chief of Analysis for the United States Computer Emergency Readiness Team, where he built from the ground up and subsequently ran the network, endpoint, and malware analysis/forensics capabilities for US-CERT. In addition to Josh's blogging and public speaking appearances, he is also a regular contributor to Dark Reading and SecurityWeek. Joe Martin, Sr. Solutions Architect, F5 Joe Martin is an experienced professional in the field of network security, currently serving as a Security Solutions Architect at F5 Networks since April 2013. Prior to this role, Joe held the position of Specialist Systems Engineer - Security at the same company. Joe's career includes significant experience as a Principal Network Engineer with The Church of Jesus Christ of Latter-day Saints from December 2003 to April 2013. Moderator: Terry Sweeney, Moderator - Contributing Editor, Dark Reading Terry Sweeney is a Los Angeles-based writer and editor who's covered business technology for three decades. He's written about cyber security for more than 15 years and was one of the founding editors of Dark Reading. Sweeney has covered enterprise networking extensively, as well as its supporting technologies like storage, wireless, cloud-based apps and the emerging Internet of Things. He's been a contributing editor to The Washington Post, Crain’s New York Business, Red Herring, Information Week, Network World, SearchAWS.com, and Stadium Tech Report.
More info:	https://dr-resources.darkreading.com/free/w_fnet60/

Description:

As APIs become central to modern application ecosystems, the importance of API security has skyrocketed. However, focusing on API security in isolation is insufficient. To effectively safeguard APIs, enterprises must integrate them into broader security workflows, ensuring alignment with organizational policies, processes, and technologies.

In this webinar, Josh Goldfarb, Field CISO at F5, and Joe Martin, Sr. Solutions Architect at F5, will provide strategic insights and actionable guidance on effectively incorporating API security into overarching enterprise workflows. From leveraging DevSecOps principles to implementing real-time monitoring and adopting scalable security practices, attendees will gain practical takeaways to develop a cohesive API security strategy that strengthens their organization’s overall cybersecurity posture.

This webinar will cover four core learning objectives:

Understand API Security Risks and Threats: Gain a foundational understanding of common API vulnerabilities, attack vectors, and risk categories, and learn how they align with broader enterprise security concerns.
Integrate API Security into the Security Workflow: Learn practical strategies for embedding API security into your organization’s existing security practices, including DevSecOps processes, threat modeling, code reviews, and incident response plans.
Implement Best Practices for Strengthening API Security: Explore actionable best practices, covering authentication, authorization, encryption, input validation, and secure API design principles to enhance your organization’s API security posture.
Measure and Monitor API Security Posture: Discover tools, metrics, and techniques for continuously assessing, monitoring, and improving API security controls within the context of your organization's broader security ecosystem.
Speakers:
Josh Goldfarb, Field CISO, F5
Josh Goldfarb is currently Field CISO at F5. Earlier in his career, Josh served as the Chief of Analysis for the United States Computer Emergency Readiness Team, where he built from the ground up and subsequently ran the network, endpoint, and malware analysis/forensics capabilities for US-CERT. In addition to Josh's blogging and public speaking appearances, he is also a regular contributor to Dark Reading and SecurityWeek.

Joe Martin, Sr. Solutions Architect, F5
Joe Martin is an experienced professional in the field of network security, currently serving as a Security Solutions Architect at F5 Networks since April 2013. Prior to this role, Joe held the position of Specialist Systems Engineer - Security at the same company. Joe's career includes significant experience as a Principal Network Engineer with The Church of Jesus Christ of Latter-day Saints from December 2003 to April 2013.

Moderator:
Terry Sweeney, Moderator - Contributing Editor, Dark Reading
Terry Sweeney is a Los Angeles-based writer and editor who's covered business technology for three decades. He's written about cyber security for more than 15 years and was one of the founding editors of Dark Reading. Sweeney has covered enterprise networking extensively, as well as its supporting technologies like storage, wireless, cloud-based apps and the emerging Internet of Things. He's been a contributing editor to The Washington Post, Crain’s New York Business, Red Herring, Information Week, Network World, SearchAWS.com, and Stadium Tech Report.

More info:

https://dr-resources.darkreading.com/free/w_fnet60/

Date added	Dec. 21, 2025, 6:32 p.m.
Source	DarkReading
Subjects	API - Application Programming Interface - Various DevOps / DevSecOps PodCasts / Webcast / Webinar / eSummit / Virtual Event etc. Security Management/Strategic Security/ROI/ROSI - CISO and Higher Level
Venue	Jan. 28, 2026, midnight - Jan. 28, 2026, midnight