Cloud Security Alliance, SAFECode Announce DevSecOps Working 
Group Launch

Working group to focus on ensuring enterprises employ proper security throughout application deployment

Seattle, WA – Nov. 20, 2018 – The Cloud Security Alliance (CSA) and the Software Assurance Forum for Excellence in Code (SAFECode) today announced the launch and call for participants for the DevSecOps Working Group. The working group will work to create a transparent and full circle management lifecycle that leverages all the components of DevSecOps to ensure timely and full functioning application deployment that includes proper security steps through every process.

The new working group will focus on two areas of research and development with an emphasis on DevSecOps models for:

The scope of the Working Group will include establishing top DevOps approaches for Dev(Sec)Ops; identifying top techniques and development tools such as immutable architectures, self-healing infrastructure, “air-gapping” IaaS, automation, monitoring; and identifying successes and challenges, covering training and tools, legacy, lift-and-shift, digital transformation, and cloud migration.

Rich Mogull, analyst and CEO, Securosis, and Ronald Tse, founder and CEO of Ribose, will serve as co-chairs of the working group. Individuals interested in becoming involved in future research and initiatives are invited to visit the DevSecOps Working Group join page.

The Working Group’s next event will be held on November 28 at 11 am EST/8 am PST. Click to register.

About SAFECode

The Software Assurance Forum for Excellence in Code (SAFECode) is a non-profit organization exclusively dedicated to increasing trust in information and communications technology products and services through the advancement of effective software assurance methods. SAFECode is a global, industry-led effort to identify and promote best practices for developing and delivering more secure and reliable software, hardware and services. Learn more.

About Cloud Security Alliance

The Cloud Security Alliance (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at, and follow us on Twitter @cloudsa.

Media Contacts
Kari Walker for the CSA
ZAG Communications
[email protected]

Share this content on your favorite social network today!