Subscribe to the Salt blog to learn about the latest developments in API Security
Nov 30, 2021

Salt Security Enables Xolv Technology Solutions to Secure its API-Driven Healthcare Transformation Solutions

The Salt platform provides API security, across development and runtime, for Xolv solutions that improve accessibility and affordability of quality behavioral healthcare

Palo Alto, Calif. – November 30, 2021 – Salt Security, the leading API security company, today announced that Xolv Technology Solutions, a provider of end-to-end solutions that reduce the complexity of delivering health care, is protecting its API-driven applications using the Salt Security API Protection Platform. Xolv uses the Salt platform to discover and secure the APIs that serve as the foundation for its technologies that enable home and community-based health services to improve accessibility, affordability, and care outcomes. Xolv helps organizations transform the way they work and deliver care outside of traditional hospital settings through its fully integrated suite of solutions ranging from clinical treatment operations to revenue cycle management.

Xolv built its custom web and mobile applications, used by both patients and care providers, using a combination of more than 90 APIs in a hybrid cloud infrastructure that spans on-prem, AWS, and GCP environments. Xolv found that the traditional tools it was using for API protection, including web application firewalls (WAFs) and API gateways, were generating errors, blocking non-malicious activity, and missing API attacks. The company turned to Salt Security and its platform that distinguishes proper API calls from malicious ones, discovers the full breadth of APIs across Xolv’s environments, supports testing and remediation insights for API development, and secures the Xolv applications from data exposure, exfiltration, and other malicious API attacks.

“We realized that our WAFs could never understand the unique business logic of our APIs, and our gateways couldn’t provide full visibility into the expanse of APIs in our application environments,” said Jason Weitzman, application security engineer at Xolv Technology Solutions. “To remedy these issues, we considered six different API security solutions and tested three. One simply didn’t work, and another one lacked any runtime protection.  Deploying the Salt platform took almost no effort – it integrated quickly with our existing Cloudflare, AWS, Jira, and other systems. It also started identifying errors and delivering insights on how to craft better APIs within minutes.”

According to the State of API Security Report, Q3 2021, API-based attacks increased a staggering 348% from January 2021 to June 2021, a number that continues to rise alongside industry-wide modernization and digital transformation initiatives. Xolv’s enterprise application suite and security and infrastructure services support modernization and transformation efforts among care providers to improve productivity, drive down costs, and reduce manual work hours so providers have more time to focus on delivering quality care. Salt Security provides critical protection so these applications can scale with demand while remaining secure and compliant.

“Xolv is a great example of the innovative HealthTech providers who are very security-forward while they transform care and make a positive social impact through technology and services. Ensuring the availability of the Xolv applications to both patients and providers is a top priority, along with protecting patient data and PII,” said Roey Eliyahu, CEO and co-founder of Salt Security. “The Salt Security API Protection Platform is uniquely suited to prevent sensitive data exposure, stop potential API attacks in progress, and support Xolv as its API footprint grows in response to the needs of care providers and their patients. We look forward to continuing to support the company and its mission to improve the delivery of care outside of traditional hospital settings.”

The Salt Security API Protection Platform provides comprehensive security of APIs’ entire lifecycle – build, deploy, and runtime. It enables organizations to catalog their APIs, see where they expose sensitive data, detect and block API attackers, scan and test APIs, and provide remediation insights that developers can use to harden APIs and improve the security posture over time. Through its patented API Context Engine (ACE) architecture – powered by big data, artificial intelligence (AI), and machine learning (ML) – the platform can identify the early indicators of an attack, stop attackers from advancing and turn attackers into penetration testers, leading to valuable feedback for security teams to identify and eliminate vulnerabilities, keeping API-connected data and services safe, even as APIs change and environments scale.

For more information on the Salt Security API Protection Platform or to request a demo, please visit:

Back to News Releases