NRIセキュア has launched a new kind of assessment and roadmap service, kind of made to help enterprises measure and grow their DevSecOps maturity, because software delivery speeds keep on rising. It uses the OWASP DSOMM framework, so it looks at development processes, the way teams are organized, the operating model too, and the security practices, to figure out where things don’t quite line up and then set up a priority list for action.
こちらもお読みください: NTTデータとNTTドコモ・ビジネス、企業向けAIを活用したサイバーリスク管理サービスを開始
This launch also lands while AI assisted software development keeps creating new headaches around code validation, open source licenses, and security oversight. Rather than handling security like its own separate layer, the service tries to bake it into day to day development workflows, while still giving management a clearer route for investment planning, and decision making, without all the fog.

