[Presentation] Introducing CNAMM: A Framework for Cloud Native Security Maturity Assessment

[abdelsfane]

Title: Introducing CNAMM: A Framework for Cloud Native Security Maturity Assessment

Speakers: Abdel Sy Fane (@abdelsfane) and Francis Ofungwu

Description:
The Cloud Native Assurance Maturity Model (CNAMM) is a framework that helps organizations measure and improve their cloud native security posture. It addresses gaps in the cloud native ecosystem by providing:

• A structured, evidence-based approach to assess security maturity across 8 critical business functions and 24 practice areas
• Context-aware scoring that considers industry requirements, regulatory obligations, and organizational scale
• Clear maturity progression paths from basic security controls to industry-leading practices
• Automated assessment tools with dashboards and visualizations
• Actionable insights for improving cloud native security capabilities

CNAMM is specifically designed for cloud native environments and provides practical guidance for implementing security controls in modern distributed architectures. By offering a standardized way to measure cloud native security maturity, CNAMM helps organizations make informed decisions about their security investments and cloud native adoption journey.

Time:
Estimate 15–20 minutes, including Q&A.

Availability:
Wednesday, 10 AM UTC-7, Jan 22 & Jan 29

TO DO

• TAG Representative
• Schedule date
• By opening this issue, I, @abdelsfane acknowledge that the presentation topic and speaker will follow the presentation guidelines
• If this is a presentation for a project moving levels, the TAG Representative should complete the Moving Levels Recommendation

[eddie-knight]

This was referred to the TAG for consideration by @jberkus and @JustinCappos

ref: cncf/sandbox#318 (comment)

[eddie-knight]

Hi @abdelsfane, I've added you to the schedule for the TAG Security Americas Community Call on January 22nd!