Protecting APIs at Scale: Akamai Introduces Security Posture Center and Code-Runtime Mapping Capabilities
Akamai today announced the Security Posture Center and enhanced APIs-from-code capabilities, designed to help organizations understand and strengthen their API security posture at scale. These innovations transform fragmented API findings into business-relevant operational rules, directly linking live API activity to source code owners.
📋 Article Processing Timeline
- 📰 Published: May 11, 2026 at 20:00
- 🔍 Collected: May 11, 2026 at 11:31
- 🤖 AI Analyzed: May 12, 2026 at 03:03 (15h 31m after Collected)
Akamai (NASDAQ: AKAM), a company that helps organizations understand and strengthen their API security posture (security health) at scale, today announced the Security Posture Center and enhanced APIs-from-code (a feature to identify APIs from source code). These innovative new capabilities transform fragmented API findings into business-relevant operational rules, directly linking live API activity to source code owners.
*This release is an abridged version of the press release announced on May 5, 2026 (local time) in Cambridge, Massachusetts, USA.
APIs are rapidly expanding in use as they are integrated into modern digital services and AI-driven applications. Meanwhile, security teams struggle to quantify overall risk, unable to escape alert-driven workflows. Akamai solves this challenge by providing a unified system of record for API risks across the entire development lifecycle, enabling teams to consistently measure, prioritize, and improve security.
Key elements of the new features:
Security Posture Center: Instead of individually tracking alerts, it measures compliance with API security best practices across areas such as authentication, data protection, and API hygiene. By mapping findings to a structured set of controls, organizations gain a clear understanding of their security posture and can track progress towards predefined goals (full alignment with API security best practices).
Code-Runtime Mapping: Akamai links APIs observed in actual traffic to specific repositories, code files, and the last updater (committer). This eliminates the need for manual owner tracking, providing developers with the context needed to quickly understand, reproduce, and remediate issues. As a result, the Mean Time To Remediate (MTTR) is significantly reduced.
Oz Golan, Vice President of API Security at Akamai, stated: "Traditional API security has been driven by fragmented findings, making it difficult for organizations to understand their true security posture or measure progress in improvements." He added, "The Security Posture Center changes this by defining 'secure states' through policy-based controls. Simultaneously, the ability to directly map any API to code fills a critical gap in the industry. By providing visibility into traffic, code, and configurations, Akamai not only identifies risks but also helps organizations respond quickly and confidently."
These capabilities provide comprehensive visibility across the entire API lifecycle, from discovery and posture management to runtime protection and remediation, solidifying Akamai API Security's position as an essential tool for API security and risk management. By translating technical findings into actionable operational rules and linking them directly to development workflows, organizations can govern API sprawl in the era of agent-driven AI, demonstrate compliance, and mitigate risks without slowing down innovation.
About Akamai
Akamai is a cybersecurity and cloud computing company that powers and protects online businesses. Our market-leading security solutions, superior threat intelligence, and global operational teams provide multi-layered defense to protect enterprise data and applications everywhere. Akamai's full-stack cloud computing solutions deliver high performance and cost efficiency on the world's most distributed platform. Many global companies trust Akamai to provide the industry-leading reliability, scalability, and expertise needed for business growth. For more information, visit akamai.com and akamai.com/blog, or follow Akamai Technologies on X or LinkedIn.
*Akamai and the Akamai logo are trademarks or registered trademarks of Akamai Technologies Inc.
*Other company names and organization names mentioned are trademarks or registered trademarks of their respective owners.
*This release is an abridged version of the press release announced on May 5, 2026 (local time) in Cambridge, Massachusetts, USA.
APIs are rapidly expanding in use as they are integrated into modern digital services and AI-driven applications. Meanwhile, security teams struggle to quantify overall risk, unable to escape alert-driven workflows. Akamai solves this challenge by providing a unified system of record for API risks across the entire development lifecycle, enabling teams to consistently measure, prioritize, and improve security.
Key elements of the new features:
Security Posture Center: Instead of individually tracking alerts, it measures compliance with API security best practices across areas such as authentication, data protection, and API hygiene. By mapping findings to a structured set of controls, organizations gain a clear understanding of their security posture and can track progress towards predefined goals (full alignment with API security best practices).
Code-Runtime Mapping: Akamai links APIs observed in actual traffic to specific repositories, code files, and the last updater (committer). This eliminates the need for manual owner tracking, providing developers with the context needed to quickly understand, reproduce, and remediate issues. As a result, the Mean Time To Remediate (MTTR) is significantly reduced.
Oz Golan, Vice President of API Security at Akamai, stated: "Traditional API security has been driven by fragmented findings, making it difficult for organizations to understand their true security posture or measure progress in improvements." He added, "The Security Posture Center changes this by defining 'secure states' through policy-based controls. Simultaneously, the ability to directly map any API to code fills a critical gap in the industry. By providing visibility into traffic, code, and configurations, Akamai not only identifies risks but also helps organizations respond quickly and confidently."
These capabilities provide comprehensive visibility across the entire API lifecycle, from discovery and posture management to runtime protection and remediation, solidifying Akamai API Security's position as an essential tool for API security and risk management. By translating technical findings into actionable operational rules and linking them directly to development workflows, organizations can govern API sprawl in the era of agent-driven AI, demonstrate compliance, and mitigate risks without slowing down innovation.
About Akamai
Akamai is a cybersecurity and cloud computing company that powers and protects online businesses. Our market-leading security solutions, superior threat intelligence, and global operational teams provide multi-layered defense to protect enterprise data and applications everywhere. Akamai's full-stack cloud computing solutions deliver high performance and cost efficiency on the world's most distributed platform. Many global companies trust Akamai to provide the industry-leading reliability, scalability, and expertise needed for business growth. For more information, visit akamai.com and akamai.com/blog, or follow Akamai Technologies on X or LinkedIn.
*Akamai and the Akamai logo are trademarks or registered trademarks of Akamai Technologies Inc.
*Other company names and organization names mentioned are trademarks or registered trademarks of their respective owners.