Sold by: Akamai
Deployed on AWS
Akamai API Security solution protects APIs throughout their entire lifecycle, from dev to prod.
4.1
Overview
Akamai API Security is a purpose-built solution to protect APIs throughout their entire lifecycle, from development to production. With Akamai, companies can build secure APIs, secure their existing APIs, detect vulnerabilities before they are exploited, and greatly reduce the API attack surface.
The solution is designed to align with four industry-standard API Security domains:
- Discovery: Identify and catalog all APIs present within your environments (Discovery Module)
- Posture Management: Assess and maintain the overall security posture of your APIs (Posture Management Module)
- Runtime Protection: Safeguard APIs and their associated resources during runtime or execution (Runtime Protection Module)
- Testing: Find and remediate API vulnerabilities during the development lifecycle (Active Testing Module)
Akamai API Security has been developed to seamlessly integrate with your existing application environments, including API gateways, load balancers, and WAFs, to provide complete visibility into your APIs without introducing complexity or disrupting your existing infrastructure.
Highlights
- Discovery, Posture, Runtime, Testing
Details
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/12 months |
|---|---|---|
Akamai API Security | Entry level package for 1 year | $150,000.00 |
Vendor refund policy
All fees are non-cancellable and non-refundable except as required by law.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
Akamai provides more than traditional customer success - we are your best advocate and your technical partner. Your satisfaction is our compass, and your success is our ultimate reward. https://nonamesecurity.com/customer-success/
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Akamai
By Salt Security
By Cequence Security
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
API Discovery and Cataloging
Identifies and catalogs all APIs present within environments through a dedicated Discovery Module
API Posture Management
Assesses and maintains overall security posture of APIs through continuous evaluation and monitoring
API Vulnerability Testing
Detects and identifies API vulnerabilities during the development lifecycle through active testing capabilities
Infrastructure Integration
Integrates seamlessly with existing application environments including API gateways, load balancers, and Web Application Firewalls
API Discovery and Inventory
Continuous discovery of all APIs including internal, shadow, and third-party APIs without relying on traffic replay or manual effort
Anomaly Detection and Threat Prevention
Patented AI and ML algorithms to detect anomalies in API behavior and stop attacks in real time
Sensitive Data Exposure Identification
Discovery and identification of exposed sensitive data across API ecosystem
Agent and LLM Activity Monitoring
Visibility into active AI agents and LLMs with tracking of data access patterns and policy compliance verification
Development Pipeline Integration
Integration of security insights into development pipelines to enable shift-left security practices
API Discovery and Mapping
Discovers external and internal APIs to create visual site maps and identify potential exposure points for data loss, compliance violations, or system compromise.
Machine Learning-Based Traffic Analysis
Utilizes patented analytics engine with machine learning to analyze application transactions without requiring JavaScript instrumentation or mobile SDK integration.
Automated Attack Detection
Detects account takeovers, credential stuffing, fake account creation, content scraping, and API-based business logic abuse through customizable rules and policies.
Flexible Mitigation Actions
Provides multiple response options including blocking, rate limiting, geofencing, and fake response generation using behavioral fingerprinting to track and counter evolving attacks.
Multi-Deployment Model Support
Supports passive/inline, on-premises, SaaS, and hybrid deployment configurations with optional managed infrastructure operations.
Standard contract
No
Customer reviews
RaghavendraRao PV
Unified API visibility has transformed governance and now supports compliance reporting
Reviewed on Feb 02, 2026
Review from a verified AWS customer
What is our primary use case?
Since multiple teams were involved in issue resolving, at least ten plus people from our side were involved in the implementation process. Everyone was contributing, even if we consider two per team. We are mostly talking about engineers, so they are all engineers. This ten plus people includes one from the NOC team, one from the operations team, and two or three from the security team.
What is most valuable?
What I already appreciate about Akamai API Security is that initially we were struggling with how to get this configured, but after that everything went smoothly. We were also surprised to discover there were five hundred plus endpoints that we are using across the organization, which was a surprise even to our management and leadership. We did not know that many teams were simply pushing small APIs and big APIs into the server. This gave us an overall picture of how many APIs we are using across our organization, and now we are more cautious about which APIs should be used publicly and how we secure our APIs. Since it gives a very good dashboard and a unified platform, it is very helpful for us to know which API is coming from which team and how many teams are using one particular API. All of this is a really good advantage for our management as well as our leadership, and we can even go back and show it to the respective project teams. API discovery and fingerprinting is the main feature that we appreciated.
We are showing the reports from Akamai API Security to HITRUST compliance and HIPAA compliance certifications. We are also using PCI, so we share these reports as evidence to these auditors when they come.
What needs improvement?
The tool is blocking and only the person who has access to the tool can actually see how many DDoS attacks were blocked. Since I do not log in to the portal myself, I am unaware of this capability.
I heard the word Akamai 's anomaly detection from my team that they use this, but I don't know about it on the technical aspect.
I am unaware of Akamai API Security's ability to adjust security policies in real-time.
I am also unaware of which feature of Akamai API Security has helped us monitor API usage trends. Someone who is actually hands-on using Akamai API Security might know this.
For how long have I used the solution?
The procurement for Akamai API Security happened almost ten months ago, and actual work has started only a couple of months before.
What do I think about the scalability of the solution?
Good, its fast and easily scalable, the Akamai team is very helpful
How are customer service and support?
Regarding Akamai technical support, since I am not directly involved in it, I do not want to provide inaccurate information. I will rate it at eight.
How would you rate customer service and support?
Positive
How was the initial setup?
Because Akamai API Security was a new tool, we definitely needed support from the vendor directly. We were working only using Postman and Bruno. We had to directly move from installable tools to Akamai, which is a cloud platform. We definitely wanted some tool knowledge from the vendor, and once that was provided, things went very smooth. The tool started identifying the endpoints all by itself, and we ourselves do not have any visibility.
The main challenges we had with Akamai API Security were how to set it up on the AWS cloud environment and how to access this portal. We had to handle the major and basic configuration, and given that our organization had a lot of internal APIs which are not exposed to the outside environment, public APIs, and intermediary APIs, all these had to be interconnected. The vendor also had to understand our current environment and then recommend how to specifically access our internal APIs. All those network-related issues required us to bring in the NOC team and ask them to open certain ports specific to our APIs, and then everything went smoothly. The major heavy lift was done by the network team and the vendor side.
What was our ROI?
I can identify all of these benefits after the implementation of Akamai API Security. Identifying and following up with the team was previously very challenging. Teams are reluctant to provide information, some managers ask us to look at their Confluence page, our time is wasted, and everyone's time is wasted. We have to follow up with the developers, they are on leave, and everything was a mess. Getting everything from one single portal without anyone's interference saved us a lot of money, time, and frustration.
What other advice do I have?
I am unaware of Akamai API Security's ability to adjust security policies in real-time.
I am unaware of which feature of Akamai API Security has helped us monitor API usage trends. Someone who is actually hands-on using Akamai API Security might know this.
Regarding Akamai technical support, since I am not directly involved in it, I do not want to provide inaccurate information. I will rate it at eight.
I received a very good feedback from my team regarding Akamai API Security, so I would rate it as nine. My overall review rating for Akamai API Security is eight.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
reviewer2784357
Improved API monitoring has saved time and now lets our team focus on higher‑priority security work
Reviewed on Dec 03, 2025
Review from a verified AWS customer
What is our primary use case?
Our main use case for Akamai API Security is securing the API security as we're using the API gateways.
A specific example of how we use Akamai API Security with our API gateways is when somebody hits our member-facing website from outside. We're actively monitoring where they're coming from and whether it's legitimate, and then we are doing all sorts of security checks based on our policy to ensure compliance.
What is most valuable?
The best features that Akamai API Security offers are the information and aggregation we get, as well as the alerts that we receive.
These features help my team in our daily work because my team is actually working on different things apart from making sure the lights are on, and even though API security is something they would look into, they can't spend a whole lot of time on this. We definitely depend on these kinds of tools. When we get an alert, we try to look at the information so it's at a high level so we can act accordingly. Once we know the information we're looking at, our team can go deeply and investigate that. In terms of aggregation, we heavily rely on these alerts.
Akamai API Security has made a positive difference for our organization by improving our security posture and saving our team time, as we can actually prioritize tasks unless there are some false positives, but it is definitely saving a lot of time.
We definitely see that our posture is much better.
What needs improvement?
I don't really have anything to add about any needed improvements at this point.
For how long have I used the solution?
I just started with Akamai API Security before evaluating other options.
What do I think about the stability of the solution?
Akamai API Security is stable.
How are customer service and support?
I don't have any issues with customer support right now.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
I previously used a different solution before Akamai API Security, which was Check Point.
What was our ROI?
I have seen a return on investment, and the main thing is the time saved, allowing our employees to focus on other priority work.
What's my experience with pricing, setup cost, and licensing?
The experience with pricing, setup cost, and licensing is that it's a totally different team to work on, but I heard the setup is pretty straightforward.
What other advice do I have?
I would definitely advise others looking into using Akamai API Security to do a POC. I found this interview really great and don't think anything needs to change for the future. I would rate this experience an 8.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
William Brusamarello
Uses bot detection and browser inspection features to fine-tune access policies effectively
Reviewed on Nov 20, 2025
Review from a verified AWS customer
What is our primary use case?
I use Akamai API Security . I downloaded a report comparing WAF Akamai and WAF Azure to understand the real differences. I studied the solution to comprehend how it detects bots. For example, with Akamai API Security , the browser inspector helps me understand the bot detection capabilities.
What is most valuable?
I enabled the anomaly detection to understand the solution better. I configured the policies and created exclusions for some bots. For example, when I read and inspected the user agent data, I found that the Axion bot request was blocked by the browser inspector. In this case, I created an exclusion for the user agent Axion. I enabled the anomaly detection to study and understand the solution.
What needs improvement?
More features would be beneficial.
For how long have I used the solution?
I have used it for one year.
What do I think about the stability of the solution?
I have not experienced any stability issues. My experience has been good, and it is an excellent WAF solution.
How are customer service and support?
The support from Akamai API Security is good. The employment and support are of excellent quality.
How would you rate customer service and support?
Positive
What's my experience with pricing, setup cost, and licensing?
It is not expensive. It is practical to use and represents an excellent solution.
Which other solutions did I evaluate?
The difference includes web application and API solutions.
What other advice do I have?
I received a report and downloaded it, but I did not read the entire document. I do not have complete knowledge to answer this question at this moment. My overall review rating for Akamai API Security is 10 out of 10.
venkat k.
Its very good
Reviewed on Feb 24, 2025
Review provided by G2
What do you like best about the product?
Its very easy to use and good pricing. Cheap prices
What do you dislike about the product?
May be more cheaper prices would be good
What problems is the product solving and how is that benefiting you?
webhosting and server hosting
Marketing and Advertising
Amazing for clearing cache
Reviewed on Jan 09, 2025
Review provided by G2
What do you like best about the product?
The ease of the Akamai intergration is amazing. I use it frequently throughout the day.
What do you dislike about the product?
I have not found anything that i dislike.
What problems is the product solving and how is that benefiting you?
Making my updates show up as soon as i send a request.