Salt Security, the API security company, is working with Guild Education, the leader in opportunity creation for America’s workforce, to implement the Salt Security API Protection Platform to secure its growing application programming interface (API) ecosystem. Guild relies on APIs for the exchange of private and sensitive student, employer, and school data across its Career Opportunity Platform. With the Salt platform, Guild gains automatic and continuous API visibility, insights into potential data exposure, and API runtime protection to ensure the safety of its customers’ critical data.
“Guild supports workers, companies, and educational organisations to build new career opportunities and address increasing talent shortages. Keeping employee, employer, and school data secure has always been a top priority,” said Julie Chickillo, VP, head of security, Guild Education. “The visibility we get with Salt eliminates blindspots, allowing us to better protect the critical and personal information – including employer eligibility updates, student loan reimbursement data, and program applications – being shared via our APIs.”
Although Guild looked at other API security solutions, Salt provided the most actionable insights and the most mature platform. Leveraging the robust Salt API security platform, Guild gains:
- Discovery of shadow APIs – to ensure a complete and accurate API inventory and understand what unknown APIs might exist that could pose security risks
- Attack prevention – the most proven algorithms in API security to pinpoint attacker reconnaissance activity, even drawn out over days and weeks, and stop attackers before they reach their objective
- API security testing – to gain vulnerability insights in pre-production, empowering the Guild development team to improve the security posture of its new APIs
According to the Salt Security State of API Report, Q3 2022, over one third of organisations have experienced more than 100 attempted API attacks per month. Salt Security enables Guild to easily monitor and analyse all API traffic, maintaining an up-to-date view of their entire attack surface.
The Salt Security platform enables organizations to catalogue their APIs, see where they expose sensitive data, detect and block API attackers, scan and test APIs, and provide remediation insights that developers can use to harden APIs and improve the security posture over time. Through its patented API Context Engine (ACE) architecture, the platform can identify the early indicators of an attack, stop attackers from advancing and turn attackers into penetration testers, leading to valuable feedback for security teams to identify and eliminate API vulnerabilities.