Salt Security, an API security company, announces today the Salt Technical Ecosystem Partner (STEP) program, making it easier and faster for enterprises to leverage the deep API adaptive intelligence Salt provides to reduce risk throughout their API ecosystem.
Salt is integrating its AI-driven API security insights across organizations’ existing workflows and tools as part of the program. The STEP program accelerates those integrations, enabling joint customers to strengthen their API security posture with solutions enhanced by the API security intelligence of the Salt Security API Protection Platform.
To kick off the STEP program, Salt introduces its inaugural partners, companies focused on API testing solutions. The partners include dynamic application security testing (DAST) leaders Bright Security, Invicti Security and StackHawk and interactive application security testing (IAST) leader Contrast Security.
With pre-built DAST and IAST integrations, Salt allows organizations to streamline deployment and:
- Move to a risk-based approach for API testing by connecting the cloud to code and focusing on sensitive data.
- Reduce risk with increased surface coverage by tapping the more accurate and up-to-date API inventory of Salt combined with vulnerability prioritization from testing partners.
- Gain better quality testing by leveraging best-of-breed testing capabilities spanning OWASP, MITRE, business logic, SQLi, XSS, SSRF, and other
- Reduce friction for DevOps and DevSecOps teams by enabling them to use their existing testing technologies designed for seamless integration into development pipelines.
- Speed time to value by working with organizations’ integrated development environments (IDEs), software pipeline tools, and other workflows.
- Improve efficiencies with context-rich OAS files automatically updated in real-time, showing what needs to be tested and the order of priority, extending the reach and applicability of companies’ existing API tests.
- Increase R&D velocity by focusing scanning efforts on priority APIs, such as external APIs or those that contain PII.
Along with its focus on testing, the Salt STEP program formalizes work Salt has done to integrate with other API ecosystem technologies, including WAFs, API gateways and cloud security providers. Salt will develop some integrations with partners and publish APIs to accelerate integrations to enable a range of partners to pull valuable API data from the Salt system.
No company can bring to bear all the required disciplines to fully secure APIs, and attempting to do so results in mediocre solutions that leave enterprises vulnerable. The integrations resulting from the STEP program will provide customers with capable, easy-to-deploy and effective API protection.
For more information, visit https://salt.security/