Hitachi Employee Appointed as Initial Tech Lead of CNCF TAG Security and Compliance

Leading International Efforts to Establish Technical Standards for Security and Compliance

August 7, 2025
Hitachi, Ltd.

Yoshiyuki Tabata, Hitachi OSPO Senior OSS Consultant

Yoshiyuki Tabata, Senior OSS Consultant at Hitachi's OSPO (Open Source Program Office), has been appointed as initial Tech Lead^*1 of the Technical Advisory Group (TAG) Security and Compliance in Cloud Native Computing Foundation (CNCF)^*2, a non-profit organization leading the development and adoption of cloud-native technologies.

This appointment recognizes Tabata’s leadership in establishing and facilitating regional security meetings across Japan and the Asia-Pacific (APAC) region under CNCF TAG Security. Tabata has contributed to the development of industry standards as the leader of a white paper project on Identity and Access Management (IAM)^*3and playing a central role in founding the CNCF's IAM project "Keycloak"^*4 and the event "KeycloakCon"^*5dedicated to the CNCF incubating project Keycloak. Tabata will take on the role of Tech Lead, focusing on international technical standardization and other responsibilities.

As part of his ongoing contributions, Tabata is scheduled to speak at "KubeCon + CloudNativeCon North America 2025," to be held this November in Georgia, USA. His session will focus on securing communication between AI agents using Keycloak, as well as designing authentication and authorization for cloud-native data stores.

Going forward, Hitachi will continue to promote the development of international technical standards and fostering vibrant communities in the fields of AI and cloud-native technologies for security and compliance. By sharing the outcomes of these efforts with customers who support critical social infrastructure, Hitachi continues to contribute to global digital transformation.

_{*1 Plays a key role in leading the development of international technical standards for security and compliance, while ensuring alignment with relevant regulations and industry norms, and promoting security awareness across organizations.}

_{*2 A non-profit organization established in 2015 under The Linux Foundation to promote open source technologies for cloud-native applications including Kubernetes®.}

_{*3 IAM (Identity and Access Management) is a framework for securely managing access to applications and data.}

_{*4 An open-source solution that enables identity and access management (IAM).}

_{*5 KeycloakCon: https://events.linuxfoundation.org/keycloakcon-japan/}

Comments on Appointment

Yoshiyuki Tabata, Hitachi, Ltd.

Through speaking engagements at events such as KubeCon^*6, organizing meetups for Cloud Native Security Japan^*7, building the APAC security community via TAG Security, and leading the development of IAM best practices, I have worked toward realizing the vision of a more secure CNCF ecosystem.

With this Tech Lead appointment, I now find myself in a position to drive this vision forward with greater reach and impact. I will continue to promote the business adoption of OSS and contribute to the advancement of security technologies and community development.

_{*6 One of the world's largest annual conferences focused on cloud-native technologies primarily Kubernetes, organized by CNCF}

_{*7 A specialized subgroup within Cloud Native Community Japan, the official Japanese chapter of the CNCF, dedicated to security-related initiatives.}

Chris Aniszczyk, CTO of CNCF

We are pleased to welcome Yoshiyuki Tabata as the CNCF TAG Security & Compliance Tech Lead. His leadership has played an instrumental role in expanding TAG Security’s reach in Japan and the APAC region and advancing critical work in security. As the Tech Lead, we look forward to his continued impact on the global cloud native security community.

Role of Tech Lead in CNCF TAG Security and Compliance

Support the achievement of goals for TAGs and related initiatives by consolidating technical advice on security and compliance
Establish technical standards within the assigned domain
Oversee quality assurance of deliverables
Provide technical guidance to stakeholders

Hitachi's presentations at KubeCon+CloudNativeCon North America 2025

Hitachi is scheduled to present at the Linux Foundation's annual event, KubeCon + CloudNativeCon North America 2025^*8, taking place in Atlanta from November 10 to 13. The following sessions are planned:

Modern PostgreSQL Authorization with Keycloak: Cloud Native Identity Meets Database Security

Securing AI Agent Infrastructure: AuthN/AuthZ Patterns for MCP and A2A

_{*8 KubeCon + CloudNativeCon North America 2025: https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/}

Biography of Yoshiyuki Tabata

Hitachi OSPO Senior OSS Consultant, AI & Software Services Business Unit, Hitachi, Ltd.

● Since 2017: Began contributing to OSS, including Keycloak. Supported numerous projects related to authentication, authorization, and APIs, in addition to community engagement.

● 2019: Began presenting at international conferences (OSSJ, Apidays, KubeCon, etc.), and started contributing technical articles to professional knowledge-sharing platforms.

　 https://thinkit.co.jp/author/15728(Japanese only)

● 2023: Appointed as CNCF Ambassador

　 https://qiita.com/official-columns/interview/202403-hitachi-3/(Japanese only)

● 2024: Appointed as organizer of Cloud Native Community Japan

● 2024: Founded and became the leader of Cloud Native Security Japan, a sub-group of Cloud Native Community Japan

　 https://deh.hitachi.co.jp/_ct/17706412(Japanese only)

● 2024: Contributed to the establishment of TAG Security APAC

　 https://github.com/cncf/tag-security/issues/1322

● 2024: Launched the IAM White Paper project and appointed as project lead

　 https://github.com/cncf/tag-security/issues/1332

● 2024: Appointed as a language maintainer for Keycloak

　 https://github.com/keycloak/keycloak/blob/main/docs/translation.md#using-weblate-to-to-update-translations