Impart Security Inc.

Going to BSides NY next week? Our CEO and co-founder Jonathan DiVincenzo is going to be speaking on a star studded panel about being a Cybersecurity founder. We'll also have a booth there and will be giving away swag. Stop by the panel or our booth!

Megabit-level sponsorships for BSidesNYC are completely sold out! Much appreciation to AirMDR, Inc., Akto.io, Breez Security, Bright, Hunters, Impart Security Inc., Jit, Opal Security, Radiant Security, Sandfly Security, SplxAI, Stellar Cyber, and Trout for all your support for our upcoming event on October 19, 2024.

Thank you to Impart Security Inc. for supporting #OWASP Global AppSec San Francisco as a start-up exhibitor. We are looking forward to having you join us. https://lnkd.in/gNGj8frx #developer #appsec #cybersecurity #ai

Looking forward to seeing everyone this week!!

Most security teams have an outdated DevEx, which creates room for manual errors. Let's take runtime firewall rules an example: Source control? Remember which rules you turned on and off! Unit testing? Run some cURLS, and maybe use Regex Pal Regression testing? Deploy it to production in logging mode and hope nothing breaks! Troubleshooting failure cases (i.e. false positives)? Turning some rules on and off again. These are all potential rakes to step on ?? But times are changing: Kyle Polley shared two weeks ago how his team at Pipe is giving his teams the ability to define rate limiting policies directly in their source code via backend API codegen. Filip Stojkovski from Snyk did a great breakdown yesterday of when and where Low Code rule builders fall short. The reality of security today is that security teams need to (and are starting to demand) the same quality of tooling that engineering teams use daily.

I don’t know how easy it is to teach someone Founder Mode, but you usually know it when you see it. How??Because I've been able to work with great founders. I've had the benefit of working for?awesome founders like Andrew Peterson, Nick Galbreath, Zane Lackey, Nancy Kramer, James Segil & Alex Kazerani, seeing them build and scale their companies at all different stages. The common thread? A deep intrinsic understanding of their business needs. As a founder, this is what I do now.?I bring in the best people I can, and rally them all around a common goal, while also pushing, pulling, digging, building, designing, running and crawling, with them. Some people require a more hands on approach. Some require a more hands off approach. In either case, the best founders I've seen know their business like the back of their hand.?They don't just need metrics, they don't just need KPIs, they don't just need OKRs.?They just know what they need to be successful, and they get everyone around them to understand it too. https://lnkd.in/dBjP9pTc

?? New Feature Alert: Rule Tracing ?? We’ve just launched Rule Tracing—a game-changer for security engineers! ?? No more digging through logs to figure out why a request was blocked. With Rule Tracing, you’ll instantly know which security rule triggered a block, making it easier than ever to design, test, and optimize your security policies. What you get from Rule Tracing: ?? Instant understanding of what rule blocked traffic ??? Filters for all requests blocked by a specific rule ?? Faster rule development cycles Learn more at: https://lnkd.in/gA_Bb7Mw

"What if we can bring in data from eBPF, logs, and API discovery tooling and build this into the same inspection that used to just be looking at HTTP packets with a regex? How about we add info from CI/CD on what is actually being built into the app? What if we add the API spec knowledge into the mix to really understand all the endpoints that are live? Business logic? A WAF nightmare. Well we include it in our model and can truly understand login, password reset, AuthN/AuthZ issues, etc. - This would’ve been fully out of a WAFs scope. Combine this with the ability to write complex custom rules that teach our protection platform about your web app specifically, and now we can move way beyond the catching of injection attacks and start preventing attacks against business logic." Our CEO Jonathan DiVincenzo shares our vision for how we are bringing multiple sources of context into real time behavioral models, resulting in more accurate and trustworthy security decisions about what to block.

Keeping things moving at OWASP Global San Francisco this year! ?? Impart Security is exhibiting on the floor - stop by for demos and some awesome Impart swag at booth SU8! ?? Meet an Impart founder! Schedule time with us to meet an Impart Founder Jonathan DiVincenzo, Brian Joe, or Marc Harrison! Book a meeting today! https://try.imp.art/

Say goodbye to guesswork! Our new Simulated Blocking feature gives security engineers with complete visibility into blocking actions—without impacting live traffic. How does that help? ?? Clear Insights: See exactly what would have been blocked by your rules. ?? No Guesswork: Understand rule impacts with complete transparency. ?? Complete Data Visibility: Get a comprehensive view without missing critical information. ?? Easy Rule Adjustments: Quickly detect and adapt to rule changes. ??? Safe Testing: Experiment with complex rules confidently, knowing your live environment stays secure. Check out https://try.imp.art/ today to experience for yourself!