SAVE YOUR SEAT: Getting started on API Pen Testing |  12/12 @ 12pm ET

Sunwest Innovates & Strengthens Security with Automated Continuous API Testing

APIsec has significantly enhanced Sunwest Bank's API security testing capabilities, providing comprehensive coverage and real-time risk management. This collaboration has led to efficient deployment and quick time to value, proving the effectiveness of proactive and continuous API security measures in protecting sensitive data within the dynamic banking industry.
Published: 
January 25, 2024
Read Time:

The Business Impact:

Coverage of APIs

1000’s of API tested as frequently as needed

Cost Per Vulnerability

<$100 per vulnerability detected

Time Saved

4 person years of effort saved through APisec

Matthew March

Matthew March

EVP/CIO

"There are API security solutions that may monitor for anomalies or alert you when something might be under attack. That information is valuable, but the reactive nature of it is dangerous, especially in this industry, because that's where breaches happen. The ability to do proactive, continuous scanning of our APIs offers a much more comprehensive approach to API security. APIsec is always checking our APIs, finding vulnerabilities, and the level of detail is amazing."

About Sunwest Bank

Company: Sunwest Bank
Founded: 1969
Industry: Banking
Locations: Arizona, California, Idaho, Florida, Utah
Mission: Helping entrepreneurs achieve their American dream and giving back to our community.

Sunwest Bank, founded in Tustin, CA, has been serving the nation for over fifty years. Under the guidance of industry veteran CIO Matt March, Sunwest has transformed its technology landscape, focusing on APIs, banking-as-a-service, payment rails, fintech integration, proprietary application development, data management, information security, information technology, and regulatory compliance.

Business Challenge

Sunwest Bank needed to secure a continuously expanding API landscape across a distributed development model involving internal and third-party applications. Their key challenges included:

  • Managing APIs developed by internal, partner, and external teams.
  • Continuously evolving applications with complex business logic.
  • Adhering to stringent regulatory requirements.
  • Maintaining security without hindering innovation.

To address these challenges, Sunwest required a robust API security program that supported close collaboration between development, IT, and security teams.

The Solution

APIsec’s pre-production, automated, and continuous API testing solution was the perfect fit for Sunwest Bank’s needs. The solution effectively monitors all of Sunwest’s APIs, providing real-time updates on risks and issues, which are crucial for maintaining platform security.

Features of APIsec:

  • Automated daily penetration tests against the latest API build.
  • Real-time updates on security risks and issues.
  • Seamless integration into Sunwest’s LMS system for continuous employee security training.

The Business Impact

Coverage

"There are API security solutions that may monitor for anomalies or alert you when something might be under attack. That information is valuable, but the reactive nature of it is dangerous, especially in this industry, because that's where breaches happen. The ability to do proactive, continuous scanning of our APIs offers a much more comprehensive approach to API security. APIsec is always checking our APIs, finding vulnerabilities, and the level of detail is amazing."  ~Matthew March

Responsiveness

"As with any security implementation, some things that need to be solved will pop up. With APIsec, the few things that have come up, they've embraced and formed a solution efficiently.” Matthew March

Speed to Value

"We've basically gone from ground zero – evaluating the solution, to onboarding our APIs and building our models, to seeing significant progress against our API security in a short span of time. It's been incredible for me to see that level of growth in such a short amount of time."  Matthew March

Frictionless

"In many situations, security solutions create friction where it doesn't need to exist. APIsec supports our "one team" approach in a way that makes it easy for all of us to work together to ensure we're identifying and fixing vulnerabilities; to deliver experiences with the speed and security that serves our customers." Matthew March

Commitment to Future Security and Innovation

Looking ahead, Sunwest Bank is dedicated to further strengthening its API security measures. Their future focus includes:

  • Expanding Testing Coverage: Continuously broadening the scope of API security tests to cover new functionalities and services.
  • Enhancing Automation: Increasing automation in security processes to reduce manual intervention and accelerate response times.
  • Ongoing Training: Investing in continuous training for their development and security teams to stay updated with the latest security practices and threats.
  • Collaborating with APIsec: Leveraging new features and updates from APIsec to enhance their security posture.

By focusing on these areas, Sunwest Bank aims to stay ahead of potential threats, ensure robust protection of sensitive data, and reinforce its commitment to security and customer trust.

Similar Case Studies

Check out how some of the world's most successful companies use APIsec to protect their APIs
R1 RCM

R1 RCM Advances API Security Program with APIsec

September 11, 2024
5 minutes
Sally Beauty

Sally Beauty Automates API Security with APIsec

July 15, 2024
5 minutes
Supreme Lending

Supreme Lending Enhances API Security with APIsec

July 12, 2024
5 minutes
Automate Your API Security.
APIsec University
CoursesResources
Events
APISEC|CONLive API Security WorkshopPrivate API Security Workshop
About
Who is APIsec?BlogCase StudesSupport
Copyright © 2024 APIsec.ai
Free License Agreement
Terms & Conditions
Privacy Policy