The ISC2 Chapter for DFW

The Dallas-Fort Worth Chapter of ISC2 is based in the DFW area and serves the counties of the Dallas-Fort Worth Metroplex and North Texas Region. Members include those with security certifications from ISC2 as well as other professionals practicing or interested in information, software, and communications security, and the PUBLIC. Our mission is to advance information security in the DFW area by providing our members and other security professionals with the opportunity to share knowledge, grow professionally, educate others, and collaborate on projects. Our chapter programs provide members a forum to facilitate the exchange of knowledge and ideas, the development of leadership and professional skills, and the advancement of information systems security. We also provide our members with access to a variety of industry resources and educational programs to keep them up to date with the latest advances in technology as well as information assurance.

Meeting for this month was moved to June 5th

Dan Barahona

Why APIs and MCPs Are Every Attacker’s Favorite

PIs power virtually every web and mobile application, accounting for over 80% of all Internet traffic — and they’re under attack. Gartner calls APIs the “most frequent attack vector,” resulting in hundreds of high-profile breaches. Now AI agents are scaling that attack surface even faster through the Model Context Protocol (MCP), which has already produced its own wave of brand-name incidents in 2025. This session covers 1) why attackers love APIs and MCPs, 2) real-world breaches from both worlds (and how they map to the OWASP API Security Top 10 and the emerging OWASP MCP security guidance), and 3) best practices to keep both APIs and MCP-enabled agents secure.

Dan Barahona is a cybersecurity leader with 25+ years of experience spanning vulnerability management, threat intelligence, SIEM, API security, and AI security. He co-founded APIsec University, the world’s largest API security training platform, which has grown to over 130,000 students, and is now building AI Security University to bring the same accessible, practitioner-focused training to the agentic AI era. Dan has held senior leadership roles at APIsec.ai, Qualys, Anomali, and ArcSight/HP..

This form is currently closed for submissions.

Our chapter provides members a forum to facilitate the exchange of knowledge and ideas, development of leadership and professional skills, and advancement of information systems security. We also provide our members with access to a variety of industry resource and educational programs to keep our members informed of the latest advances in technology and techniques.