The first assessment that needs to be made is what layers of security are required and can you have your portal and API management solution in the cloud. Role based access and single sign on contribute to a flexible roadmap in the cloud. If you require on premise solutions, then you’ll need to host your developer portal with a hosting company that meets your industry security regulations. We recommend our Apiboost solution hosted on Pantheon, but hosting can easily be on any provider. Additionally, we recommend one of our partners to monitor API health and the monitoring of API activity to avoid a breach or abuse. Our portal solutions easily integrate these security features.