API Poll Results

Do you have an API security project in 2022?
Yes – Funded
17%
4
Yes – Investigating only
25%
6
No – Planned for 2023 +
17%
4
Not planning to pursue
42%
10
Who is responsible for API Security?
Security
8%
2
App Developers
38%
9
Application Security Champion
13%
3
DevOps
21%
5
Platform engineering
0%
0
Don’t know
21%
5
What is your API security maturity?
Well established
18%
4
Being defined
14%
3
Investigating
23%
5
Adhoc
27%
6
Not a current priority
18%
4
Does your DevSecOps prioritize API Security?
Yes
43%
10
No
22%
5
Not doing DevSecOps currently
35%
8
Which API Security practices do you follow most? (select all that apply)
Vulnerability identification
56%
14
OWASP API Top 10 remediation
40%
10
OAuth or other API authentication
52%
13
Rate limiting
36%
9
Zero-Trust
28%
7
API gateways
44%
11
Code scanning
36%
9