Working Group
DevSecOps
This group defines best practices and provides guidance and playbooks to help teams implement security into their DevOps process.
View Current ProjectsSix Pillars of DevSecOps
Working Group Co-Chairs
Roupe Sahans
DevSecOps Leader
Roupe leads DevSecOps delivery and thought leadership for technology and media clients embracing digital transformation.
Roupe started his DevOps journey in 2016, building containerised microservices on AWS for government platforms. He has since been working with engineers to c-suite executives to embed security and resilience into digital products, secure cloud services, and reduce cyber technical-debt.
Most recently Roupe ha...
Abdul Sattar
Publications in Review | Open Until |
---|---|
Zero Trust Guidance for Small and Medium Size Businesses (SMBs) | Dec 15, 2024 |
CCM v4 - CISA Zero Trust Maturity Model v2.0 Mapping | Dec 17, 2024 |
Zero Trust Privacy Assessment and Guidance | Dec 27, 2024 |
Cybersecurity and the Data Lifecycle | Jan 05, 2025 |
Who can join?
Anyone can join a working group, whether you have years of experience or want to just participate as a fly on the wall.
What is the time commitment?
The time commitment for this group varies depending on the project. You can spend a 15 minutes helping review a publication that's nearly finished or help author a publication from start to finish.
Virtual Meetings
Attend our next meeting. You can just listen in to decide if this group is a good for you or you can choose to actively participate. During these calls we discuss current projects, and well as share ideas for new projects. This is a good way to meet the other members of the group. You can view all research meetings here.
Jan
2
CSA DevSecOps Working Group
This is the main meeting for the working group, and is open to everyone to attend. We typically will cover updates from our in progress initiatives, other related CSA & industry news, and open the floor for discussion.
If you are new to the working group and looking to learn more about DevSecOps, or get help with participating as a volunteer, this is the meeting for you!
Jan
16
DevSecOps WG - MLOps Paper(s) Working Session
We meet every 1st and 3rd Thursday at 8am Pacific Time.
Writing will mostly be done asynchronously between meetings.
Useful links:
- Zoom Meeting Link: https://csaurl.org/devsecops-call
- CSA Public Slack: https://csaurl.org/csa-public-slack
- Working Group Slack Channel: #devsecops-working-group
Links to the draft documents can be found in the #devsecops-working-group Slack channel bookmarks at the top of the screen.
Feb
6
CSA DevSecOps Working Group
This is the main meeting for the working group, and is open to everyone to attend. We typically will cover updates from our in progress initiatives, other related CSA & industry news, and open the floor for discussion.
If you are new to the working group and looking to learn more about DevSecOps, or get help with participating as a volunteer, this is the meeting for you!
Open Peer Reviews
Peer reviews allow security professionals from around the world to provide feedback on CSA research before it is published.