In order to develop secure software systems, it is a imperative that all security policies are adhered to since they are defined to mitigate or completely eliminate potential threats to the software system. However, policy compliance is often cumbersome, as both policies and solutions in the software system’s architecture and infrastructure, as well as internal business processes, must be manually analyzed to assess whether a security policy is being followed. This work will investigate whether and to what extent automation solutions can be developed for this purpose that enable automatic assurance of security policies.