ENHANCING SECURITY MATURITY THROUGH DEVSECOPS TO SUPPORT UU PDP: A CASE STUDY OF PT XYZ

Abstract

In today’s evolving cyber threat landscape, data breaches remain a significant challenge, creating the need for secure applications while maintaining rapid development cycles. The main gap facing PT XYZ is that the product owner ignores security assessments and best practices to meet release deadlines, which results in a vulnerable application. This research explores enhancing security maturity through a DevSecOps approach, with a focus on compliance with UU PDP regulations. By integrating maturity assessments and the maturity models using the SSE-CMM framework into the deployment process, organizations can proactively identify and mitigate vulnerabilities before applications reach production. The study demonstrates that combining maturity assessments with comprehensive security evaluations significantly reduces the risk of data breaches and data protection while supporting agile development. Additionally, the maturity level serves as a measurable indicator of an application’s readiness for production. This research contributes valuable insights and practical strategies for organizations aiming to strengthen application security and achieve robust security maturity.