DATA SECURITY, ENTERPRISE IDENTITY, ENTERPRISE SECURITY

Salt Security Strengthens Executive Leadership Team as Demand for API Security Accelerates

Salt Security | October 28, 2022 | Read time : 03:00 min

Salt Security
Salt Security, the leading API security company, today announced additions to the leadership team to support growth in employees and customers worldwide. Salt has established two new executive leadership roles, naming Renee Hollinger as Chief People Officer and Amelia Forrest Kaye as Vice President of Customer Success. Both Hollinger and Kaye will play pivotal roles in supporting the company's operations and expanding global customer base.

Over the past 12 months, Salt Security has expanded its customer base by more than 300%. New Salt customers include Zoom Communications, Aon, New American Funding, Moneris, Riskified, Open Line NL, and many others. To support this growth, Salt has increased its customer success team six fold, including international representation in Europe, Africa, and Latin America.

"Both Renee and Amelia are accomplished leaders within the technology and security industries with deep expertise shepherding human resource functions and growing customer success teams, respectively. "As API security risks continue to rise, having their experience shaping our initiatives will ensure that Salt continues our leadership role in this market we've pioneered. Their contributions will be instrumental in how we take care of our own people and our customers as we grow worldwide."

Michael Nicosia, COO and co-founder, Salt Security

Hollinger joins Salt with more than 20 years' experience in human resources, having held leadership positions at well-known global brands such as The Gap, Urban Outfitters, Warner Brothers and Levi Strauss. Hollinger also served as Executive Vice President, Global Human Resources, at ironSource, a leading business platform for the app economy. Most recently, Hollinger was Chief Human Resource Officer at Reltio, a software management provider, where she played a key role in expanding the company's global employee footprint.

"I am excited to join Salt at such a pivotal time in the API security industry," said Hollinger. "Salt Security provides the most proven and robust API security solution available. I was drawn to the company's culture of trust and integrity, and I look forward to fostering an environment where all our employees can thrive and succeed as we rise to meet growing demand for our market-leading technology."

As an experienced global customer success leader with over 15 years' experience in customer and client success, Kaye joins Salt from Tanium, a provider of converged endpoint management, where she led the company's customer engagement function. Prior to Tanium, she held management positions at Deloitte and Reflektive.

"I am privileged to join a company that recognizes that phenomenal customer service has become a critical business differentiator," said Kaye. "As our customer base continues to grow, I look forward to working with this talented customer success team to deliver ongoing value and exceed customer expectations in every step of the API security journey."

Today's announcement follows a slew of recent strategic initiatives at Salt Security. Most recently, CrowdStrike, a leader in cloud-delivered protection of endpoints, cloud workloads, identity and data, publicly announced its strategic investment in Salt Security via its investment arm, Falcon Fund. Salt has also recently expanded its channel program, making the Salt platform more broadly available to companies around the globe through an increasing network of distributors, channel partners, consultancies, and integrators.

On October 26, Salt Security will be hosting its second API Security Summit, featuring conversations with AWS, Google, CrowdStrike, MuleSoft, and other partners, customers, and industry experts. More information about the event and registration can be found here. Salt also introduced its refreshed branding in concert with the API Security Summit.

About Salt Security
Salt Security protects the APIs that form the core of every modern application. Its patented API Protection Platform is the only API security solution that combines the power of cloud-scale big data and time-tested ML/AI to detect and prevent API attacks. By correlating activities across millions of APIs and users over time, Salt delivers deep context with real-time analysis and continuous insights for API discovery, attack prevention, and shift-left practices. Deployed in minutes and seamlessly integrated within existing systems, the Salt platform gives customers immediate value and protection, so they can innovate with confidence and accelerate their digital transformation initiatives.

Spotlight

The SuperViz SDK is designed to be the easiest way to add immersive collaboration with video conferencing and avatars to any 3D web application with just a few lines of code.

We sat down with SuperViz CEO and Cofounder, Russ Rive, and VP of Engineering  Tommy Lindestrom, for a series of conversations about the value of creating immersive experiences with a sense of presence and the benefits of building collaboration into web applications.

Spotlight

The SuperViz SDK is designed to be the easiest way to add immersive collaboration with video conferencing and avatars to any 3D web application with just a few lines of code.

We sat down with SuperViz CEO and Cofounder, Russ Rive, and VP of Engineering  Tommy Lindestrom, for a series of conversations about the value of creating immersive experiences with a sense of presence and the benefits of building collaboration into web applications.

Related News

DATA SECURITY,PLATFORM SECURITY,SOFTWARE SECURITY

Legit Security Discovers New Class of Development Pipeline Vulnerabilities; Open-Source Rust Programming Language Found Vulnerable

Legit Security | December 12, 2022

Legit Security, a cyber security company with an enterprise platform that protects an organization's software supply chain from attack and ensures secure application delivery, today announced that it discovered a new class of software supply chain vulnerabilities that leverage artifact poisoning to attack underlying software development pipelines. The vulnerability was found in GitHub Actions, a platform for orchestrating and automating software development pipelines, and the vulnerability was identified in the highly popular programming language Rust. Many other GitHub Action projects remain potentially vulnerable and a technical disclosure blog including information to protect organizations from attack is available on Legit Security’s website. The discovered pipeline vulnerability could allow any GitHub user to replace legitimate development artifacts with malicious ones, enabling attackers to modify source code, steal secrets and create CodeCov-like wide-reaching software supply chain attacks. Rust, an extremely popular programming language used by millions of developers, acknowledged and fixed the vulnerability after initial disclosure by the Legit Security Research Team. GitHub Actions is part of the extremely popular GitHub source code management system at the heart of many organization’s software supply chains and used by software developers globally. The vulnerability affects the GitHub Actions artifacts storage mechanism, which is used to store and transfer build artifacts between software development build jobs. Due to a limitation in the cross-workflow artifact communication mechanism, vulnerable workflows cannot distinguish between legitimate project artifacts and artifacts that were created by the project’s forks or copies, allowing any user to create a fork, and then craft a malicious artifact that will be treated as a legitimate one. “This is a different class of vulnerability that can lead to attacks and modification of the development pipeline itself, not just modification of the code. “A simple analogy could be made to a car assembly line. This is an attack on the assembly line itself that could include stealing sensitive parts, turning off certain steps, or substituting any valid part for a malicious one. It’s a powerful attack vector that gives cyber criminals a lot of options to inflict damage. In this case, the vulnerable targets are software supply chains that use GitHub Action.” Liav Caspi, co-founder and CTO, Legit Security The Legit Security Research Team also disclosed the security issue to the GitHub security team. GitHub responded by simply updating their API to include information that could help prevent this vulnerability. It should be noted that GitHub didn’t address the root cause of the issue, thus leaving many other GitHub Action projects vulnerable to the aforementioned software supply chain attacks. Legit Security’s technical disclosure blog includes important information on how to protect organizations from this type of attack. More information about general GitHub security best practices can also be found here. Legit Security Legit Security protects an organization's software supply chain from attack and ensures secure application delivery, governance and risk management from code to cloud. The platform’s unified application security control plane and automated SDLC discovery and analysis capabilities provide visibility and security control over rapidly changing environments, and allow security issues to be prioritized based on context and business criticality to improve security team efficiency and effectiveness.

Read More

DATA SECURITY,PLATFORM SECURITY,SOFTWARE SECURITY

Top-notch Compliance and Security With New Vonage Salesforce Shield Security for Contact Centers

Vonage | December 12, 2022

Contents 1. Enhanced Security with Vonage Contact Center with Salesforce 2. Salesforce Security Shield for Compliance and Security 3. Optimize Your Customer Engagement Having all your customer engagement data on a single platform is all about integrating all the communication channels the way you need them. It is important for contact centers to enhance trust, transparency, and governance for agents while they access information. It controls and improves the customer experience while meeting security requirements on a single, integrated platform. 1. Enhanced Cloud Security with Vonage Contact Center with Salesforce The Salesforce CTI integration is one of the most effective cloud-based contact center integrations, supporting a dynamic omni-channel experience. Vonage’s state-of-the-art contact center cloud-native solutions are built for flexibility, privacy, and reliability. It helps you get actionable data insights that let your conversations flow. 2. Salesforce Security Shield for Compliance and Security Salesforce integration with Vonage is the best in the market and enables features exclusively for contact centers, including optimizing team performance, contact center and customer experience. It uses full AES 256-bit encryption to protect sensitive data across all Salesforce apps. With the addition of Salesforce Shield, Vonage is ensuring that organizations worldwide can better serve their customers while meeting compliance or governance requirements – all from a single, secure platform. Sanjay Macwan, CIO & Chief Information Security Officer at Vonage 3. Optimize Your Customer Engagement Secure cloud communications via Vonage Contact Center (VCC) integration with Service Cloud Voice (SCV) assist your business in meeting the most recent cloud security compliances, regulations, and policies . Such communication not only provides a business and the customer with confidence but also ensures the entire chain of communication remains interconnected and seamless. This helps contact centers deliver a quality customer experience on time.

Read More

ENTERPRISE SECURITY,PLATFORM SECURITY,SOFTWARE SECURITY

AWS Clients Globally Can Now Use Apiiro Cloud Application Security Platform

Apiiro | January 04, 2023

Apiiro, the market leader in Cloud-Native Application Security, announced that its award-winning security platform is now accessible on AWS Marketplace. Apiiro's solution intends to assist developers and security engineers in resolving significant risks across the software supply chain before launching apps to the cloud. Instead of a single vulnerability or misconfiguration, multiple isolated and unconnected findings are scattered throughout the source code, configurations, open-source packages, and cloud infrastructure that, when combined with appropriate context, form a Risk Story that attackers can exploit. Its Risk Graph technology integrates these endless elements with actionable information to provide developers and security teams with an entirely new way to fix problems. Apiiro has introduced a whole new approach to application security by offering complete visibility into code bases, analyzing risks from design to code to the cloud, and proactively addressing actual vulnerabilities that attackers can exploit before they even get released to the cloud. By connecting to their source control managers via API, Fortune 500 businesses can cut operational costs and risks at scale while ensuring seamless deployment. Now that it is accessible in the AWS marketplace, customers may deploy Apiiro's Cloud Application Security Platform through their AWS Marketplace accounts, enabling them to quickly secure everything they develop and deliver to the cloud by proactively resolving risks with actionable context. About Apiiro Apiiro is a Cloud Application Security Platform that provides comprehensive insight and actionable context to security and development teams to proactively fix risks before releasing them to the cloud. It also assists them in addressing threats throughout the software supply chain. Since its inception, the Apiiro Cloud-Native Application Security Platform has been deployed by developers and security experts in the world's biggest organizations to handle critical threats across more than 1 million code repositories, CI/CD pipelines, and cloud infrastructures.

Read More