Veracode Review

Improved our security posture without the overhead of supporting infrastructure


What is our primary use case?

SAST vulnerability scanning. Veracode is embedded in our release pipeline.

How has it helped my organization?

It improved our security posture. In terms of cost savings relating to code fixes since implementing Veracode, I'm not sure there are any. How do you quantify reputational damage from a security breach? However, they have provided AppSec best practices and guidance to our security and development teams through our support agreement, weekly meetings, and annual review.

What is most valuable?

Because it is a SaaS offering, I do not have to support the infrastructure.

What needs improvement?

Some important languages are not supported.

For how long have I used the solution?

One to three years.

What do I think about the stability of the solution?

No issues with stability.

What do I think about the scalability of the solution?

We have encountered occasional issues with scalability.

How is customer service and technical support?

Tech support is excellent.

How was the initial setup?

The initial setup was extremely straightforward.

What's my experience with pricing, setup cost, and licensing?

Negotiate for the best deal.

Which other solutions did I evaluate?

Fortify, App Scanner, Checkmarx.

What other advice do I have?

Make sure the supported  languages align with your developers.

Disclosure: IT Central Station contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.
Learn More About Veracode

Stay Up-To-Date on Application Security 

Add a Comment
Guest
Sign Up with Email