28m watch

Securing APIs With Zero Trust Strategies

Application programming interfaces (APIs) have become a growing target for cyber threats as agencies rely on them as mission-critical infrastructure to accelerate digital modernization and expand data sharing. Zero trust strategies are essential to securing APIs across cloud, edge and hybrid environments.

Leaders from Cybersecurity and Infrastructure Security Agency, the Centers for Medicare & Medicaid Services and Akamai discuss how agencies are strengthening API security while balancing open data mandates and preparing for emerging risks.

Learn more about:

Governance strategies to identify shadow APIs and manage the full API lifecycle. Timestamp 4:08.
Technical approaches for continuous monitoring, strong authentication and dynamic access policies in zero trust architectures. Timestamp 14:59.
Practical first steps agencies can take to secure APIs while maintaining mission requirements and enabling interoperability. Timestamp 18:36.

Featuring

Keith Busby Acting CISO, CMS
Keith Busby
- Acting CISO
- CMS
Bob Costello CIO, CISA
Bob Costello
- CIO
- CISA
Robert (Bob) Costello is the Chief Information Officer (CIO) at the Cybersecurity and Infrastructure Security Agency (CISA). As the CIO, he leads the Agency’s efforts to develop, deploy, secure, and support technology solutions for the agency.

Prior to this, he was a Public Sector Civilian Strategic Advisor at World Wide Technology. In this role, he engaged with federal government customers to identify and solve their most complex challenges, leveraging his extensive federal agency experience to develop and deliver innovative solutions that meet their needs and serve their mission.

Bob brings a wealth of experience serving over 13 years at DHS, both at Immigration and Customs Enforcement and Customs and Border Protection. He also served as the Senior Executive Service as the Executive Director (XD) of the Office of Information and Technology (OIT) Enterprise Networks and Technology Support Directorate (ENTSD) at CBP, as well as serving concurrently in the role of Acting XD of the Border Enforcement and Management Systems Directorate. During his tenure in ENTSD, he oversaw the modernization of the largest data network in DHS, improved connectivity to cloud service providers, and dramatically increased the agency’s usage of mobility platforms. He also oversaw the agency’s movement to the TIC 3.0 framework and implemented zero trust solutions at the network level. He led the operations of the agency’s land mobile radio network, the National Law Enforcement Communications Center, and maintenance of the non-intrusive inspection systems utilized at all ports of entry. He also directed all software development for the U.S. Border Patrol, and all of the agency’s mission support systems, moving over 100 applications to a SECDEVOPS development methodology. He was also heavily involved in implementing IT solutions for COVID-19, redesigning remote access solutions and deploying several new applications.
Brian Dennis Principal Technologist, Public Sector, Akamai Technologies
Brian Dennis
- Principal Technologist, Public Sector
- Akamai Technologies
Brian S. Dennis is the Principal Technologist for the Public Sector at Akamai Technologies, where he provides insight and strategic guidance on cybersecurity issues that the entirety of the public sector is facing. Prior to joining Akamai, he worked with university systems building the nation’s first Cybersecurity Center for Business. While in the education world, he created cybersecurity programs for the US Department of Defense and the US Department of Labor and created an accessible cyber-defense range for students and businesses.