Using the DevSecOps Maturity Model (dsomm.timo-pagel.de), mainly designed by Timo, different dimensions of security in DevOps assessed.
As an alternative, OWASP SAMM (owaspsamm.org) is used to get an overview and also take topics like governance into account.