All Sessions>

Talk: “Why Devs Struggle with Application and API Security”

Talk: “Why Devs Struggle with Application and API Security”

We’ve all heard the buzz around pushing application security into the hands of developers, but if you’re like most companies, it has been hard to actually make this a reality. You aren’t alone - putting the culture, processes, and tooling into place to make this happen is tough. Join Stackhawk CSO Scott Gerlach as he shares his triumphs and failures while building devsecops practices and tools at companies such as godaddy, sendgrid, and Twilio. Dig into specific reasons why developers struggle with appsec and what you can do to make it work better.

Scott Gerlach, CSO and Co-founder at StackHawk.

Scott Gerlach

CSO and Co-founder

StackHawk

Interested in Postman Galaxy 2022?

Join the mailing list for the latest Galaxy updates.

Stars background
Stars background

View More Talks from Postman Galaxy

More on Security from the Postman Blog

Wed Jul 28 2021

APIs for Application Security

Looking for new APIs? Check out these security-minded companies working hard to keep your applications safe and sound in Postman’s latest featured list: APIs for Application Security. Play with these APIs by forking their collections to your own workspace, and explore the possibilities. Let’s see who made the list. Ping Identity Ping Identity is an…

Continue reading

Wed Jun 30 2021

Postman’s New SOC 2 Type 2 Report: How (and Why) We Did It

At Postman, we’ve always been deeply committed to keeping the Postman platform secure and keeping customer data safe. As part of that commitment, in early 2019 we kicked off an initiative to perform a series of System and Organization Controls (SOC) examinations to adhere to the security, availability, and confidentiality standards set forth in SOC’s…

Continue reading

Fri Jun 18 2021

Introducing Security Warnings During API Validation

At Postman, we’re committed to empowering the API-driven economy. Since our first release as a Google Chrome extension, we’ve studied the needs of our users and evolved the product to enable easier collaboration across stakeholders of the API lifecycle. A key aspect of the API lifecycle management that we continue to focus on is API…

Continue reading