What happened
Eight leading cybersecurity organizations announced the launch of Multi-Organization Secure AI Coordination (MOSAIC) on May 18, 2026, to create unified, practical AI security guidance. Charter members include CIS, BIML, Cloud Security Alliance, Coalition for Secure AI, NIST, OWASP AI Exchange, OWASP GenAI Security Project, and SANS Institute. MOSAIC will focus on common definitions, aligning existing frameworks, publishing best practices, and helping organizations implement guidance in operational environments.
Why it matters
The coalition acknowledges that AI security guidance has become fragmented and conflicting, slowing practitioner adoption. MOSAIC aims to reduce the reconciliation burden by aligning the output of multiple standards bodies rather than creating yet another competing framework. CIS's participation brings the operational discipline behind CIS Controls and CIS Benchmarks to AI security. Working groups begin immediately, with first outputs focused on terminology and framework alignment.
Action needed
Monitor MOSAIC's published outputs over the next 6–12 months to see whether the coalition delivers on its promise of reduced fragmentation. If your organization currently reconciles guidance from NIST AI RMF, OWASP LLM/Agentic Top 10, CSA AICM, and CIS, watch for MOSAIC mappings that could simplify your control baseline. This is an early-stage initiative; operational impact will depend on execution.