GlobalLogic and PlaxidityX Join Forces to Embed Security Into SDV Development Pipeline
Automakers racing to bring software-defined vehicles to market face a persistent challenge: how to ship code fast without opening the door to cyberattacks. A new partnership between GlobalLogic, a Hitachi Group digital engineering firm, and PlaxidityX, an automotive cybersecurity leader, aims to solve that tension by baking security directly into the cloud-based development workflow.
Announced June 26, 2025 from Tel Aviv and Santa Clara, the collaboration integrates PlaxidityX’s DevSecOps platform into GlobalLogic’s SDV Cloud Framework — an infrastructure management solution designed to give OEMs and Tier 1 suppliers a unified environment for building connected vehicle software. The result is a development pipeline where security checks happen automatically at every stage, from initial design through continuous over-the-air updates.
“By integrating DevSecOps capabilities from PlaxidityX into every layer of our SDV Cloud Framework, we’re not only fortifying security and adhering to automotive security regulations — we’re also accelerating development timelines and reducing costs,” said Ramki Krishna, Group Vice President and General Manager of Automotive and Industrial Business at GlobalLogic. “It’s about building trust, reliability, and adaptability from the ground up, ensuring our software-defined vehicles stay ahead of the security curve in a rapidly evolving automotive ecosystem.”
Closing the Security Gap in Fast-Paced SDV Development
Modern vehicles now ship with built-in connectivity, advanced driver-assistance features, and infotainment systems running on millions of lines of code. That software footprint makes them powerful — and vulnerable. Over the past decade, the automotive industry’s digital transformation has expanded the attack surface dramatically, exposing ECUs, telematics units, and backend cloud services to potential compromise.
Traditional development approaches in automotive have relied on siloed teams handling security as a separate, late-stage gate. The PlaxidityX-GlobalLogic integration shifts that model by embedding security testing and compliance checks directly into the continuous integration and continuous deployment (CI/CD) pipeline that developers already use.
PlaxidityX’s DevSecOps platform automates several critical security functions: it runs threat analysis and risk assessment (TARA) to identify potential attack vectors early, performs static and dynamic code analysis to catch vulnerabilities before they reach production, scans third-party supplier code for known weaknesses, and automates ongoing security testing. These checks run continuously alongside regular development work rather than blocking progress at designated milestones.
GlobalLogic’s SDV Cloud Framework provides the infrastructure backbone — a cloud-based engineering environment with seamless access to on-premise real hardware, so development teams can test against actual vehicle ECUs and networks without leaving their cloud workspace. By combining these two platforms, the companies say they can shorten development cycles while maintaining rigorous security standards.
A Growing Focus on Supply Chain and Compliance
The timing of the partnership reflects broader pressure on the automotive industry. Regulators in the UN Economic Commission for Europe (UNECE) have pushed forward cybersecurity management system requirements under UN Regulation No. 155, which now applies to new vehicle types in many markets. OEMs and their suppliers must demonstrate that security is managed throughout the vehicle lifecycle, from development through production and post-production.
GlobalLogic selected PlaxidityX as its preferred security partner for SDV development after evaluating the platform’s ability to handle these emerging compliance demands without slowing down engineering velocity. The integrated solution supports adherence to standards relevant to connected vehicle development, helping manufacturers demonstrate regulatory conformance during type approval processes.
“We are proud to have been selected as GlobalLogic’s preferred security partner for SDV development,” said Ran Ish-Shalom, VP Product and Strategy at PlaxidityX. “By leveraging PlaxidityX’s DevSecOps platform, GlobalLogic’s SDV Cloud Framework is transforming the development of software-defined vehicles. Instead of relying on traditional siloed processes, this integration meshes cloud-native principles and DevSecOps methodologies into a single, cohesive environment.”
What This Means for the Industry
For OEMs and Tier 1 suppliers evaluating development platforms, the integration removes a common friction point: the need to stitch together separate security tools and cloud infrastructure manually. The pre-built integration between PlaxidityX and GlobalLogic means engineering teams can start with a framework that already includes automated security assurance rather than bolting it on later.
PlaxidityX, founded in 2014 and formerly known as Argus Cyber Security, holds over 80 granted and pending patents in mobility cybersecurity. The company is headquartered in Israel with operations across the United States, Germany, France, Japan, South Korea, Poland, and India. GlobalLogic, acquired by Hitachi in 2021, brings decades of digital engineering experience across automotive, telecommunications, healthcare, and other industries.
The partnership signals a broader shift in automotive software development: security is no longer a separate concern managed by a dedicated team running scans before release. In the SDV era, it has to be woven into the fabric of the development process itself.
Source: Plaxidityx
