ChaptersCircleEventsBlog
Get early access to CSA’s Trusted AI Safety Certification Program—updates, resources & beta invites!

Working Group

CAVEaT™

The Joint CSA-MITRE Cloud Adversarial, Vectors, and Threats (CAVEaT) Collaboration to develop, curate, and host a cloud specific threat model to assist Cloud Security practitioners with threat-based analysis.
Cloud Adversarial Vectors, Exploits, and Threats (CAVEaT™): An Emerging Threat Matrix for Industry Collaboration
Cloud Adversarial Vectors, Exploits, and Threats (CAVEaT™): An Emerging Threat Matrix for Industry Collaboration

Download

Working Group Leadership

Sean Heide
Sean Heide

Sean Heide

Publications in ReviewOpen Until
Managing Privileged Access in a Cloud-First WorldMay 23, 2025
AICM mapping to NIST 600-1Jun 16, 2025
Analyzing Log Data with AI ModelsJun 20, 2025
View all
Who can join?

Anyone can join a working group, whether you have years of experience or want to just participate as a fly on the wall.

What is the time commitment?

The time commitment for this group varies depending on the project. You can spend a 15 minutes helping review a publication that's nearly finished or help author a publication from start to finish.

Open Peer Reviews

Peer reviews allow security professionals from around the world to provide feedback on CSA research before it is published.

Learn how to participate in a peer review here.

Managing Privileged Access in a Cloud-First World

Open Until: 05/23/2025

Managing privileged access has become increasingly critical due to the complexity and ubiquity of distributed IT environmen...

AICM mapping to NIST 600-1

Open Until: 06/16/2025

The Cloud Security Alliance (CSA) invites public peer review of its draft mapping between the AI Controls Matrix (AICM) and NIST 600-1. This initiative suppo...

Analyzing Log Data with AI Models

Open Until: 06/20/2025

In a Zero Trust environment, logs play a critical role in the visibility and analytics cross-cutting capability. Architectu...