Which model assesses the maturity of software engineering practices in an organization?

The Capability Maturity Model Integration (CMMI) is designed specifically to assess and improve software engineering practices within an organization. It provides a comprehensive framework that helps organizations evaluate their development processes and practices in a structured way. CMMI defines five maturity levels that range from initial and chaotic processes to optimized practices where continuous improvement is the focus. This systematic approach allows organizations to identify their current capabilities, establish goals for improvement, and develop action plans.

CMMI is widely used in the software industry as it not only focuses on processes but also emphasizes the achievement of quality and efficiency in software development. By following the guidelines and maturity levels outlined in CMMI, organizations can benchmark their practices against best industry standards and foster a culture of continuous improvement.

The other options provided do not pertain to software engineering practices specifically:

• STAR is a framework used for assessing security practices.

• PCI DSS relates to standards for payment card information security.

• GDPR governs data protection and privacy in the European Union.

These alternatives focus on different areas that are not directly related to the maturity of software engineering practices, making CMMI the clear choice for this question.