Traceable AI, an API security company, has announced that John Kindervag, known for creating the Zero Trust Model for cybersecurity, will be joining Traceable as an advisor.

As one of the world’s foremost cybersecurity experts, the company says that Kindervag will be deeply involved in the product strategy for its API Security Platform, as well as helping educate the market on the urgency of prioritizing API security.

Kindervag currently serves as Senior Vice President, Cybersecurity Strategy and Global Fellow at ON2IT.

“APIs offer companies an unprecedented opportunity to drive economic growth,” said Kindervag. “But most people don’t understand how they work or why they essentially offer hackers the most direct route to the sensitive data they’re seeking. Traceable understands both the economic potential as well as the danger that APIs present for organizations and their customers, and I’m excited to work with them on bringing API security to the forefront of the industry’s priorities.”

In addition to lending his voice and expertise, working closely with Traceable’s customers and his expertise in the zero trust framework, Kindervag will help shape Traceable’s approach to product development and direction.

“APIs have become the universal attack vector,” said Traceable Co-Founder and CTO, Sanjay Nagaraj. “In the past, hackers had to find ways of bypassing existing solutions, such as WAFs, DLP and API Gateways, in order to find data and disrupt systems. Now, they can simply exploit an API and obtain access to sensitive data and not even have to exploit the other solutions in an organization’s security stack. APIs present the largest attack surface we have ever encountered in the industry.

“It’s for this very reason, we are committed to our mission to protect every API and that includes bringing on the right experts to help us fulfill that mission. We are thrilled to be working with John Kindervag, an industry pioneer who understands both the economic potential for APIs, as well as the urgency of API security, but also has the expertise to help us realize the full potential of zero trust in relation to APIs. Zero trust without API security is simply not zero trust and we are well on our way to providing the industry with innovative solutions to enhance and build on the zero trust framework.”