ChaptersCircleEventsBlog

Working Group

DevSecOps

This group defines best practices and provides guidance and playbooks to help teams implement security into their DevOps process.
View Current Projects
Six Pillars of DevSecOps
Six Pillars of DevSecOps

Download

Working Group Overview

Our working group discusses the DevSecOps. We welcome anyone who would like to join, even if you would like to just listen-in on your first call.

What do we discuss? During these meetings we typically discuss changes in the industry that relate to DevOps, and collaborate on projects the group is currently working on.

This working group meets every other week. To find out more about participating email [email protected] or sign up here: https://csaurl.org/devsecops-signup

Drafts & Important Docs

Looking for additional information?

Scroll down below for the working group calendar, whitepaper drafts, and other information!

Working Group Co-Chairs

Roupe Sahans
Roupe Sahans

Roupe Sahans

DevSecOps Leader

Roupe leads DevSecOps delivery and thought leadership for technology and media clients embracing digital transformation.

Roupe started his DevOps journey in 2016, building containerised microservices on AWS for government platforms. He has since been working with engineers to c-suite executives to embed security and resilience into digital products, secure cloud services, and reduce cyber technical-debt.

Most recently Roupe ha...

Read more

Abdul Sattar Headshot Missing
Abdul Sattar

Abdul Sattar

Publications in ReviewOpen Until
Secure Agentic System Design - A Trait-Based ApproachMay 15, 2025
Managing Privileged Access in a Cloud-First WorldMay 23, 2025
View all
Who can join?

Anyone can join a working group, whether you have years of experience or want to just participate as a fly on the wall.

What is the time commitment?

The time commitment for this group varies depending on the project. You can spend a 15 minutes helping review a publication that's nearly finished or help author a publication from start to finish.

Virtual Meetings

Attend our next meeting. You can just listen in to decide if this group is a good for you or you can choose to actively participate. During these calls we discuss current projects, and well as share ideas for new projects. This is a good way to meet the other members of the group. You can view all research meetings here.

May

1

Thu, May 1, 8:30am - 9:00am PDT
CSA DevSecOps WG - MLOps Papers Working Session
See details
CSA DevSecOps Working Group


This is a working session to sync on the current MLOps whitepapers the DevSecOps working group is currently writing.


We meet every other Thursday at 8:30am Pacific Time.


Writing will mostly be done asynchronously between meetings.

Useful links:

    May

    15

    Thu, May 15, 8:30am - 9:00am PDT
    CSA DevSecOps WG - MLOps Papers Working Session
    See details
    CSA DevSecOps Working Group


    This is a working session to sync on the current MLOps whitepapers the DevSecOps working group is currently writing.


    We meet every other Thursday at 8:30am Pacific Time.


    Writing will mostly be done asynchronously between meetings.

    Useful links:

      May

      29

      Thu, May 29, 8:30am - 9:00am PDT
      CSA DevSecOps WG - MLOps Papers Working Session
      See details
      CSA DevSecOps Working Group


      This is a working session to sync on the current MLOps whitepapers the DevSecOps working group is currently writing.


      We meet every other Thursday at 8:30am Pacific Time.


      Writing will mostly be done asynchronously between meetings.

      Useful links:

        Jun

        12

        Thu, June 12, 8:30am - 9:00am PDT
        CSA DevSecOps WG - MLOps Papers Working Session
        See details
        CSA DevSecOps Working Group


        This is a working session to sync on the current MLOps whitepapers the DevSecOps working group is currently writing.


        We meet every other Thursday at 8:30am Pacific Time.


        Writing will mostly be done asynchronously between meetings.

        Useful links:

          Jun

          26

          Thu, June 26, 8:30am - 9:00am PDT
          CSA DevSecOps WG - MLOps Papers Working Session
          See details
          CSA DevSecOps Working Group


          This is a working session to sync on the current MLOps whitepapers the DevSecOps working group is currently writing.


          We meet every other Thursday at 8:30am Pacific Time.


          Writing will mostly be done asynchronously between meetings.

          Useful links:

            Open Peer Reviews

            Peer reviews allow security professionals from around the world to provide feedback on CSA research before it is published.

            Learn how to participate in a peer review here.

            Secure Agentic System Design - A Trait-Based Approach

            Open Until: 05/15/2025

            This paper addresses the security challenges unique to agentic AI systems. As AI transitions from passive tools to autonomo...

            Managing Privileged Access in a Cloud-First World

            Open Until: 05/23/2025

            Managing privileged access has become increasingly critical due to the complexity and ubiquity of distributed IT environmen...