ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "Akansha Shukla - Modern AppSec: Securing APIs with Threat Modeling and DevSecOps"
Episode Synopsis
Our guest today is Akansha Shukla, an information security professional with over 10 years of experience in application security, DevSecOps, and API security. We’re discussing why API security remains one of the least mature areas of AppSec today and exploring the challenges developers face when securing APIs. Akansha shares her insights on incorporating APIs into threat modeling exercises, the ongoing struggles with API discovery and inventory management, and the authorization challenges highlighted in the OWASP API Security Top 10. The conversation also touches on whether "shift left" is truly dead and why we still haven't solved basic security problems like input validation despite having the frameworks to address them.FOLLOW OUR SOCIAL MEDIA: ➜Twitter: @AppSecPodcast➜LinkedIn: The Application Security Podcast➜YouTube: https://www.youtube.com/@ApplicationSecurityPodcast Thanks for Listening! ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
More episodes of the podcast The Application Security Podcast
OWASP Candidate Debate - 2025 Edition
15/10/2025
Francesco Cipollone - Agentic AI Manifesto
23/09/2025
Getting Ready for the EU CRA
20/08/2025
Marisa Fagan - Measuring Security Culture
05/08/2025
Sean Varga -- OWASP Top 10 for AppSec Sales
15/07/2025
In God we trust