Applications are constantly changing. APIs are the lens into applications, hence keeping up with the vulnerabilities exposed through change is difficult. Vulnerabilities in applications are no longer at the surface, rather hidden in the combination of roles and business logic of what is exposed.
Security validation is done manually today, slower than the speed of DevOps. Near BPO recommends apisec™, a true DevSecOps solution that reduces penetration testing costs.