TechTarget and Informa Tech’s Digital Business Combine. TechTarget and Informa TechTarget and Informa Tech’s Digital Business Combine. Together, we power an unparalleled network of 220+ online properties covering 10,000+ granular topics, serving an audience of 50+ million professionals with original, objective content from trusted sources. We help you gain critical insights and make more informed decisions across your business priorities. Dark Reading Resource Library Black Hat News Omdia Cybersecurity Advertise Newsletter Sign-Up Newsletter Sign-Up Cybersecurity Topics Related Topics Application Security Cybersecurity Careers Cloud Security Cyber Risk Cyberattacks & Data Breaches Cybersecurity Analytics Cybersecurity Operations Data Privacy Endpoint Security ICS/OT Security Identity & Access Mgmt Security Insider Threats IoT Mobile Security Perimeter Physical Security Remote Workforce Threat Intelligence Vulnerabilities & Threats Recent in Cybersecurity Topics Application Security Checkmarx KICS Code Scanner Targeted in Widening Supply Chain Hit Checkmarx KICS Code Scanner Targeted in Widening Supply Chain Hit by Jai Vijayan Mar 24, 2026 5 Min Read Application Security How AI Coding Tools Crushed the Endpoint Security Fortress How AI Coding Tools Crushed the Endpoint Security Fortress by Rob Wright Mar 24, 2026 5 Min Read World Related Topics DR Global Middle East & Africa Asia Pacific Latin America Recent in World See All Application Security Real-Time Banking Trojan Strikes Brazil's Pix Users Real-Time Banking Trojan Strikes Brazil's Pix Users by Alexander Culafi Mar 13, 2026 4 Min Read Threat Intelligence Iran's Cyber-Kinetic War Doctrine Takes Shape Iran's Cyber-Kinetic War Doctrine Takes Shape by Alexander Culafi Mar 6, 2026 4 Min Read The Edge DR Technology Events Related Topics Upcoming Events Podcasts Webinars SEE ALL Resources Related Topics Resource Library Newsletters Podcasts Reports Videos Webinars White Papers Partner Perspectives Dark Reading Resource Library Сloud Security Cybersecurity In-Depth: Feature articles on security strategy, latest trends, and people to know. CSA Launches CSAI Foundation for AI Security Cloud Security Alliance creates dedicated nonprofit to govern autonomous AI agent ecosystems through risk intelligence and certification Dark Reading Staff , Dark Reading March 24, 2026 3 Min Read Source: imageBROKER.com via Alamy Stock Photo NEWS BRIEF The Cloud Security Alliance (CSA) announced CSAI, a dedicated 501(c)3 non-profit foundation focused exclusively on AI security and safety, this week. CSAI will;s mission is to govern autonomous agent ecosystems through risk intelligence, certification, and executive trust programs. As enterprises move from experimental AI pilots to autonomous, agent-driven transformation of their business, it's important to shift the risk surface from models alone to complex agent ecosystems. CSAI's goal is to secure the "agentic control plane," which covers the identity, authorization, orchestration, runtime behavior, and trust assurance for autonomous AI agent ecosystems. To do so, CSAI will operate six programs: an AI Risk Observatory for threat intelligence and CVE tracking specific to agentic AI; best practices guidance covering identity-first controls, runtime authorization, and privilege governance for non-human actors; education and credentialing, including three new TAISE certification tracks; a CxO collaboration program for enterprise security executives; and a global assurance program. Related: The Tug-of-War Over Firewall Backlogs in the AI-Driven Development Era "The agentic era demands a new kind of security infrastructure — one that governs not just what AI models can do, but how autonomous agents identify themselves, what they're authorized to do, and how we can trust their behavior at scale," Jim Reavis, CEO and co-founder, Cloud Security Alliance, said in a statement. The AI Risk Observatory will provide continuous monitoring and threat intelligence for agentic AI systems, including observability of in-the-wild agentic activity across OpenClaw and MCP server ecosystems, operation of a next-generation CVE Numbering Authority (CNA) scoped on agentic AI, and real-time telemetry with structured risk identifiers. The Agentic Best Practices program will deliver full lifecycle guidance for secure agentic implementation, covering identity-first controls for non-human actors, runtime authorization and privilege governance, agent taxonomy and profiling standards, secure agentic transactions and payments, and an open source tool repository. Education, Credentialing & Awareness initiatives will focus on global workforce development through the Agentic AI Summit Series and expansion of the TAISE certification program into three new tracks: TAISE CxO for executive leaders, TAISE Agentic for security practitioners, and TAISE Compass for high school students as part of the White House Task Force for AI Education. The CxOtrust for Agentic AI program will provide an executive collaboration platform offering the "Voice of the Enterprise Customer" to AI program activities through monthly briefings, private CISO/CIO/CAIO roundtables, board-ready risk narratives, and secure enterprise adoption guidelines. Global Assurance & Trust will expand the STAR for AI assurance program based on the AI Controls Matrix plus ISO 42001, ISO 27001, and SOC 2, supported by a global ecosystem of leading audit and certification bodies. Related: 'Encrypt It Already' Campaign Pushes Big Tech to Prioritize E2E Encryption The new foundation is an evolution of CSA's AI Safety Initiative, which worked on the Trusted AI Safety Expert (TAISE) professional certification, the AI Controls Matrix (AICM) , and the STAR for AI organizational certification. CSA also announced a collaboration with the Coalition for Secure AI (CoSAI) to contribute to technical projects and align the Securing the Agentic Control Plane strategy with emerging industry standards. "Strong technical collaboration with organizations like CoSAI is essential to turning principles into practice. As we build out the agentic control plane, alignment with a standards organization like CoSAI ensures that what we develop is interoperable, scalable, and globally relevant," Reavis said. Read more about: News Briefs About the Author Dark Reading Staff Dark Reading Dark Reading is a leading cybersecurity media site. See more from Dark Reading Staff Want more Dark Reading stories in your Google search results? Add Us Now More Insights Industry Reports Frost Radar™: Non-human Identity Solutions 2026 CISO AI Risk Report Cybersecurity Forecast 2026 The ROI of AI in Security ThreatLabz 2025 Ransomware Report Access More Research Webinars Building a Robust SOC in a Post-AI World Retail Security: Protecting Customer Data and Payment Systems Rethinking SSE: When Unified SASE Delivers the Flexibility Enterprises Need Securing Remote and Hybrid Work Forecast: Beyond the VPN AI-Powered Threat Detection: Beyond Traditional Security Models More Webinars Edge Picks Application Security AI Agents in Browsers Light on Cybersecurity, Bypass Controls AI Agents in Browsers Light on Cybersecurity, Bypass Controls Cyber Risk Browser Extensions Pose Heightened, but Manageable, Security Risks Browser Extensions Pose Heightened, but Manageable, Security Risks Latest Articles in The Edge Endpoint Security Ransomware's New Era: Moving at AI Speed Mar 23, 2026 | 6 Min Read Cyber Risk With Government's Role Uncertain, Businesses Unite to Combat Fraud Mar 19, 2026 | 5 Min Read Threat Intelligence Inside Olympic Cybersecurity: Lessons From Paris 2024 to Milan Cortina 2026 Mar 16, 2026 Threat Intelligence The Data Gap: Why Nonprofit Cyber Incidents Go Underreported Mar 13, 2026 | 2 Min Read Read More The Edge Want more Dark Reading stories in your Google search results? Discover More Black Hat Omdia Working With Us About Us Advertise Reprints Join Us Newsletter Sign-Up Follow Us Copyright © 2026 TechTarget, Inc. d/b/a Informa TechTarget. This website is owned and operated by Informa TechTarget, part of a global network that informs, influences and connects the world’s technology buyers and sellers. All copyright resides with them. Informa PLC’s registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. TechTarget, Inc.’s registered office is 275 Grove St. Newton, MA 02466. Home | Cookie Policy | Privacy | Terms of Use