Getting Started¶
Quick entry points for the MLSecOps Practical Reference Guide.
Full section list: TABLE-OF-CONTENTS.md.
Quick Start (5 Minutes)¶
- Read Why this guide matters (Chapter 1)
- Skim What this guide adds (Chapter 1)
- Skim Attack surface matrix (Chapter 2)
- Review Lifecycle control points (Chapter 6)
- Open Primary Mapping (Chapter 12)
New to AI Security?¶
Recommended reading order for a first pass:
- Chapter 1 — Introduction
- Chapter 2 — Scope and threat model
- Chapter 3 — Threat landscape
- Chapter 6 — Lifecycle pipeline
- Chapter 7 — LLM and RAG security
- Chapter 12 — Threat, control, and tool mapping
Then branch by role or goal using the tables below.
When to use this guide vs. OWASP AI Exchange¶
| You need… | Start here |
|---|---|
| Threat/control taxonomy for any AI type, risk-analysis decision tree, deep testing methodology | OWASP AI Exchange |
Lifecycle control points, release gates, Evidence Pack, K8s/MCP ops patterns |
This guide (Chapter 6, Appendix E) |
| Both | Exchange for what threats/controls apply → this guide for when to implement and what evidence to keep |
Relationship detail: Chapter 1 — Relationship to OWASP AI Exchange.
By goal¶
| Goal | Path |
|---|---|
| Executive overview | Ch. 1 → 2 → 14 |
| Threat understanding | Ch. 3 → 2 → 13 |
| Implement lifecycle controls | Ch. 6 → 12 → 15 checklists |
| LLM / RAG / Agent | Ch. 7 → 8 → 9 · AARM alignment |
| Managed AI API only | Ch. 2 managed AI → 7 → Appendix D |
| Shadow AI / governance | Ch. 2 → 11 → 13 Samsung case |
| MCP security | Ch. 7 MCP → 8 → 12 → 13 MCP lab |
| SOC / operations | Ch. 10 → 11 |
| Kubernetes | Ch. 16 |
| Production rollout | Appendix E → Ch. 6 → Ch. 12 |
By role¶
| Role | Recommended path |
|---|---|
| Application / Security Architect | Ch. 2 → 6 → Appendix E → 12 |
| AppSec / AI Security Engineer | Ch. 3 → 6 → 7 → 10 → 12 |
| ML / MLOps Engineer | Ch. 6 → 5 → 4 → 9 |
| Platform / SRE | Ch. 16 → 6 → 10 |
| GRC / Compliance | Ch. 11 → 15 → Appendix D |
Minimum Production Security Baseline¶
From Chapter 6 and Appendix E:
- Threat model with release blockers at control points 4, 7, 8, 9
- Evidence Pack per release (template in Appendix E.4)
- Runtime logging to SOC (Chapter 10)
- Architecture card matching your stack (Appendix E.1)
Maturity detail: Chapter 14.
Formats¶
| Format | Location |
|---|---|
| Markdown (source) | chapters-en/*.md in this repo |
| Word / PDF | GitHub Releases v1.1.0 |
| Documentation site | l4tr0d3ctism.github.io/MLSecOps |
Give feedback¶
Help improve v1.1: open an issue or start a discussion.