For many organizations, APIs now serve as the connective tissue that brings application functionality and data together to power critical business processes — both internally and with partners. This shift has unlocked many new business opportunities across a diverse set of industries. But it has simultaneously created an entirely new set of challenges for enterprise security teams. \r\n Early efforts by security teams to adapt to the API wave largely followed the traditional enterprise security playbook: analyze events in the moment, respond based on predefined policies, and move on. This approach has the benefit of immediacy, but it falsely assumes that all attacks (a) have been seen before, and (b) are executed as a single, point-in-time event. \r\n This approach also leaves security teams with a data-poor API security model that is incapable of detecting the more sophisticated API attacks that unfold in small steps over a longer period. In effect, everything that is detected is immediately forgotten.…