AARM
Join TWG
Cloud Security Alliance

Technical Working Group

Security practitioners, researchers, and builders shaping the open standard for AI agent runtime security.

System category specification

AARM is a vendor-neutral, community-driven standard — no single company controls the roadmap.

Practitioner-led

Every requirement is proposed, debated, and validated by practitioners with real-world security experience.

Publicly auditable

All specification changes, conformance decisions, and working group discussions happen in the open.

Leadership
Herman Errico
Herman ErricoAuthor
Author of AARM · PM
VantaVanta
Akul Loomba
Akul LoombaCo-Chair
Co-chair, AARM Working Group · PM
MicrosoftMicrosoft
Diana Kelley
Diana KelleyCo-Chair
Co-chair, AARM Working Group · CISO
NomaNoma
Chris Hughes
Chris HughesCo-Chair
Co-chair, AARM Working Group · VP Security Strategy
ZenityZenity
Contributors
Phil Venables
Phil Venables
Ballistic Ventures
Partner · Ballistic Ventures
Ken Huang
Ken Huang
Distributedapps.AI
AI Researcher & Author · Distributedapps.AI
Anthony Scarfe
Anthony Scarfe
Elastic
Deputy CISO · Elastic
Camille Stewart Gloster
Camille Stewart Gloster
Foundation Layer Institute
Co-founder · Foundation Layer Institute
Hema Kak Kalsi
Hema Kak Kalsi
Independent
Engineering Leader · Independent
Alex Foley
Alex Foley
Truist
Cybersecurity Group Manager · Truist
Kavya Pearlman
Kavya Pearlman
XRSI
Founder & Researcher · XRSI
Krti Tallam
Krti Tallam
KamiwazaAI
Sr Member of Technical Staff · KamiwazaAI
Matthew Rosenquist
Matthew Rosenquist
Cybersecurity Insights
Founder & CISO Advisor · Cybersecurity Insights
Prasenjit Sinha
Prasenjit Sinha
Gusto
iOS Engineer · Gusto
Saikiran Rallabandi
Saikiran Rallabandi
IEEE
IEEE Senior Member · IEEE
Shanita Sojan
Shanita Sojan
Darktrace
Cyber Team Lead · Darktrace

How the working group operates

The TWG governs the AARM specification, conformance process, and builder registry through open collaboration.

S

Specification

Draft, review, and refine AARM requirements. Propose additions and flag ambiguities.

C

Conformance

Define and validate the testing protocol. Review evidence packages from builders.

C

Community

Engage builders, publish research, and grow the AARM ecosystem.

T

Threat Modeling

Identify new attack classes and validate coverage of the AARM threat model.

Join the working group

The working group is open to security practitioners, researchers, and builders who want to shape the future of AI agent security.

Apply via CSA →View on GitHub