Veracode Review

Improved our security posture without the overhead of supporting infrastructure

What is our primary use case?

SAST vulnerability scanning. Veracode is embedded in our release pipeline.

How has it helped my organization?

It improved our security posture. In terms of cost savings relating to code fixes since implementing Veracode, I'm not sure there are any. How do you quantify reputational damage from a security breach? However, they have provided AppSec best practices and guidance to our security and development teams through our support agreement, weekly meetings, and annual review.

What is most valuable?

Because it is a SaaS offering, I do not have to support the infrastructure.

What needs improvement?

Some important languages are not supported.

For how long have I used the solution?

One to three years.

What do I think about the stability of the solution?

No issues with stability.

What do I think about the scalability of the solution?

We have encountered occasional issues with scalability.

How is customer service and technical support?

Tech support is excellent.

How was the initial setup?

The initial setup was extremely straightforward.

What's my experience with pricing, setup cost, and licensing?

Negotiate for the best deal.

Which other solutions did I evaluate?

Fortify, App Scanner, Checkmarx.

What other advice do I have?

Make sure the supported  languages align with your developers.

**Disclosure: IT Central Station contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.
More Veracode reviews from users
...who work at a Financial Services Firm
...who compared it with Coverity
Learn what your peers think about Veracode. Get advice and tips from experienced pros sharing their opinions. Updated: July 2021.
521,637 professionals have used our research since 2012.
Add a Comment
ITCS user