Membership
Membership Benefits
Our Member Community
Get Involved
Become a Member
Member-Exclusive Programs
STAR Enabled Solutions
Trusted Cloud Consultant
Trusted Cloud Provider
Certified STAR Auditors
CSA Startup Showcase
Member Portal
STAR Program
STAR Home
STAR Registry
STAR for AI
Submit to Registry
Provide Feedback
Certified STAR Auditors
STAR Enabled Solutions
Stay compliant in the cloud
CCAK Training
STAR Lead Auditor Training
Training for Government Agencies
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
EU Cloud Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Education
Online Education Platforms
Knowledge Center
CSA Exams
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates
Trusted AI Safety Expert (TAISE)
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Certificate of Competence in Zero Trust (CCZT)
Digital Badges
Trainings
Cloud Infrastructure Security Training
STAR Lead Auditor Training
Advanced Cloud Security Practitioner (ACSP) Training
CCSK Train the Trainer
Training Network
Become an Instructor
Become a Training Partner
Specialized Training Options
Train my entire team
Training for Government Agencies
Research
CSA Research
Latest Research
Working Groups
Chapters
Open Peer Reviews
Research Topics
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Cloud Security Glossary
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Critical Topics
AI Safety Initiative
AI Technology and Risk
AI Governance & Compliance
AI Controls
AI Organizational Responsibilities
Enterprise Architecture
Blockchain
Zero Trust
DevSecOps
Top Threats
Strategic Initiatives
Explore CSA's Strategic Initiatives
AI Safety Initiative
Compliance Automation Revolution
Zero Trust Advancement Center
CxO Trust
FinCloud Security
Trusted Cloud Consultant
Membership
Membership Benefits
Our Member Community
Get Involved
Become a Member
Member-Exclusive Programs
STAR Enabled Solutions
Trusted Cloud Consultant
Trusted Cloud Provider
Certified STAR Auditors
CSA Startup Showcase
Member Portal
STAR Program
STAR Home
STAR Registry
STAR for AI
Submit to Registry
Provide Feedback
Certified STAR Auditors
STAR Enabled Solutions
Stay compliant in the cloud
CCAK Training
STAR Lead Auditor Training
Training for Government Agencies
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
EU Cloud Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Education
Online Education Platforms
Knowledge Center
CSA Exams
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates
Trusted AI Safety Expert (TAISE)
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Certificate of Competence in Zero Trust (CCZT)
Digital Badges
Trainings
Cloud Infrastructure Security Training
STAR Lead Auditor Training
Advanced Cloud Security Practitioner (ACSP) Training
CCSK Train the Trainer
Training Network
Become an Instructor
Become a Training Partner
Specialized Training Options
Train my entire team
Training for Government Agencies
Research
CSA Research
Latest Research
Working Groups
Chapters
Open Peer Reviews
Research Topics
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Cloud Security Glossary
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Critical Topics
AI Safety Initiative
AI Technology and Risk
AI Governance & Compliance
AI Controls
AI Organizational Responsibilities
Enterprise Architecture
Blockchain
Zero Trust
DevSecOps
Top Threats
Strategic Initiatives
Explore CSA's Strategic Initiatives
AI Safety Initiative
Compliance Automation Revolution
Zero Trust Advancement Center
CxO Trust
FinCloud Security
Trusted Cloud Consultant
ChaptersEventsBlog
We're exploring how organizations adapt IAM to AI. Take the AI Identity and Risk Readiness Survey by September 5 →

Securing the Agentic AI Control Plane: Announcing the MCP Security Resource Center

Published 08/20/2025

Home
Industry Insights
Securing the Agentic AI Control Plane: Announcing the MCP Security Resource Center
Written by Kurt Seifried, Chief Innovation Officer, CSA.
Introducing CSA’s MCP Security Resource Center — the first open industry hub for securing the Model Context Protocol and the broader agentic AI control plane.

 

How fast can a technology standard be adopted?

The Model Context Protocol (MCP) gives us the answer. Its core specification and reference implementation came together in just over a week and were released publicly only a few months later. Within eight months there were more than 70 public MCP clients — including virtually every major AI coding application and service — and over 16,000 servers visible in the wild, with many more running inside organizations.

Adoption that once took years now happens in quarters.

 

Why MCP matters

MCP is a simple but foundational idea: a common protocol that allows AI models to connect to tools, data sources, and functions in a structured way. Much like CGI-BIN enabled the early web by letting websites call external programs, MCP enables AI to interact with the outside world.

But there’s a crucial difference: when traditional software calls a tool, it must be told exactly what to do, in precise detail. An AI agent, by contrast, can be given broad instructions — “summarize this report and send an email to the right people” — and then use MCP to break that down into the specific tool calls required. This ability to translate intent into action makes MCP one of the foundational building blocks of the agentic AI era.

This is the new reality: when AI accelerates both development and adoption, security must keep pace. MCP is the first clear example of the agentic AI control plane — the infrastructure that governs how AI systems connect to tools, data, and each other. Securing it is no longer optional.

 

Democratization and risk

MCP lowers the barrier to integration dramatically. Anyone can build and run an MCP server — sometimes without realizing they have stepped into IT territory. With the help of AI, we have built multiple MCP servers and desktop extensions ourselves using nothing more than prompts.

This accessibility creates important considerations. Many AI tools inherit OAuth and browser sessions, which means agents can act as users with full credentials, MFA and all. MCP servers can be deployed locally or remotely, operating beyond traditional IT boundaries. And, much like the early days of cloud, employees creating or using these servers are often simply trying to get their work done more effectively — even if that introduces new security and governance questions.

The very same accessibility is what makes MCP so powerful. Just as spreadsheets democratized data modeling, MCP democratizes AI-driven workflows. Non-experts can now connect AI to email, project management, or business systems in minutes.

This is not only about efficiency. It is about enabling entirely new categories of work: AI-driven orchestration and automation across every part of an organization. Adoption is inevitable because the value is too significant to ignore.

 

CSA’s role

At the Cloud Security Alliance, we recognize both sides of the equation. For some organizations, rapid MCP adoption raises regulatory and operational challenges. For others, it unlocks new opportunities to innovate and differentiate. Both perspectives are valid — and both may exist within the same enterprise.

That is why CSA’s role is not to prescribe a single model, but to help organizations carefully assess their risks and opportunities, determine the level of democratization that fits their industry and culture, and implement the guardrails to make MCP adoption safe and sustainable.

 

MCP Security Resource Center

Today, CSA is announcing the MCP Security Resource Center — the first open hub for frameworks, tools, and community intelligence to make MCP adoption safe. This is not theory — it is living code and practical frameworks designed to support the community today.

 

MCP Security Resources

Category

Resources

Description

Standards & Guidance

Top 10 MCP Server Security Risks

Top 10 MCP Client Security Risks

MCP Security Baseline (v0.1 – coming soon)

Frameworks and checklists for identifying and mitigating key MCP risks, mapped to CSA CCM/CAIQ/AICM.

Open Tools

mcpserver-finder

mcpserver-audit

mcpserver-builder

mcpserver-operator

Discovery, scanning, secure-by-default templates, and operational guardrails for MCP servers.

Community Intelligence

audit-db

vulnerability-db

Public audit results and vulnerability advisories for the MCP ecosystem.

Explore the live resources at modelcontextprotocol-security.io and on GitHub.

 

Beyond MCP

MCP is only the beginning. Other protocols are already emerging: Google’s A2A, IBM’s ACP, and the decentralized ANP. Each is exploring a different path for how agents discover, communicate, and collaborate. Together they form the broader agentic AI control plane — the foundation on which the agentic web will be built.

Beyond protocols, identity and payments are already on the horizon. As agents begin to authenticate and transact on behalf of their users, the need for trustworthy, secure infrastructure will only grow. CSA is preparing for these next stages, but our focus today is MCP — because it is here, it is growing, and it requires attention now.

 

Call to Action

MCP demonstrates what AI speed really looks like: a protocol assembled in days, adopted in months, and deployed across tens of thousands of servers worldwide. The question now is not if — it is are you ready to secure IT created at AI speed?

The Cloud Security Alliance invites the community to:

 

diagram of the agentic AI control plane

Innovating from the cloudRisk ManagementAI Top NewsArtificial Intelligence

Share this content on your favorite social network today!

Future Cloud
Related Resources
Certificate of Competence in Zero Trust (CCZT)
The industry's first Zero Trust certificate program.
AI Organizational Responsibilities
A blueprint for enterprises to secure AI development and deployment.
AI Safety Initiative
Addressing present and future challenges of AI safety and security.
Latest from CSA
Register Now for CSA's Virtual AI Summit 2025
Secure IAM for Agentic AI Systems
Participate in the Data Security in AI Environments Peer Review
Unlock Cloud Security Insights

Unlock Cloud Security Insights

Choose the CSA newsletters that match your interests:

Subscribe to our newsletter for the latest expert trends and updates

Enhance your cloud security skills with CSA's online training options.
Related Articles:
Vulnerability Management Needs Agentic AI for Scale and Humans for Sense

Published: 08/22/2025

Announcing the AI Controls Matrix and ISO/IEC 42001 Mapping — and the Roadmap to STAR for AI 42001

Published: 08/20/2025

"Set It and Forget It” Access Control is No Longer Enough

Published: 08/20/2025

Proactive Defense Starts with the Platform: Why Security Can’t Just Be a Checklist

Published: 08/19/2025