Fortify on Demand Reviews

4.1 out of 5 stars
 (9)
10748bd5 3958 46ca b3da 3996559ca2ab avatar?1448656480
Real User
Executive Director at a tech consulting company with 51-200 employees
Aug 25 2017

What is most valuable?

* The ability to utilize the Client Portal, which provided my clients with a view of the project status, vulnerabilities and needed remediation steps in real-time * I don’t know of any other On-Demand enterprise solution like this one where... more»

How has it helped my organization?

The HP FoD effort allowed my client to utilize this service anytime their internal IT team was overwhelmed with workloads. FoD gives them an option to utilize the additional HP Services when they are overwhelmed with other IT Security needs... more»

What needs improvement?

* I believe that sales packages should be posted for single applications, and packages of multiple applications. For example, we have one-time a package for single applications, and 12 month unlimited use for static and a package for static... more»
Anonymous avatar x80
Real User
Development and Database Manager at a financial services firm with 501-1,000 employees
Jun 05 2016

What is most valuable?

The solution simply identifies any security flaws that any of our applications might have.

How has it helped my organization?

This identification provides us an advantage in that the service itself works to stay abreast and knowledgeable about emerging threats. Rather than have a security team dedicated to that effort, we don’t have to deal with that in a time... more»

What needs improvement?

I find that while it does find a lot of legitimate threats, it tends to have a lot of false positives, and there are more false positives than I would like to see. It flags threats that sometimes are not, and when we have to investigate that... more»
Application security report from it central station 2018 04 07 thumbnail
Find out what your peers are saying about Micro Focus, SonarQube, Checkmarx and others in Application Security.
265,288 professionals have used our research since 2012.
14ceeac8 ddd9 404a a330 75c2be21b29a avatar
Consultant
Information Security Lead Consultant & Application Security Specialist at a energy/utilities company with 1,001-5,000 employees
May 15 2016

What is most valuable?

It's saved us a lot of time as we focus primarily on security consultancy work rather than tool operational work. Also, the features SAST, DAST, Dashboard/Reports, Fortify on Demand Portal and Vulnerability Tracking, have all helped with our... more»

How has it helped my organization?

The results it provides are more than 95% accurate, helping us to focus on the right things first. Our new software procurement process benefited as well as we use this as a central control to provide security assurance and evaluate the... more»

What needs improvement?

It would be useful if they could integrate secure design reviews, security user stories in Fortify on Demand Portal, and also look for possible options to get just one view of risks for given services (Covering Application, Infrastructure,... more»
Anonymous avatar x80
Real User
Technical Lead at a tech company with 1,001-5,000 employees
May 10 2017

What is most valuable?

* Scan wizard: for configuring large scans * Audit workbench: for on-the-fly defect auditing * CLI: to integrate the tool into CI/CD

How has it helped my organization?

Security defects are captured early in the lifecycle and fixed quicker. Usage of Fortify has made developers more aware about security vulnerabilities and their consequences, as well as various secure programming practices.

What needs improvement?

.NET code scanning is still dependent on building the code base before running any scan. Also, it's dependent on an IDE such as Visual Studio. More conventional reporting formats need to be provided. Also, a provision should be available to... more»
83c4be26 8cfb 4122 aded 38c7a5af37b4 avatar
Real User
Application Security Specialist at a tech services company with 5,001-10,000 employees
Jan 16 2018

What is most valuable?

The most important feature of the product is to follow today's technology fast, updated rules and algorithms (of the product). It also allows for more efficient and custom integration by allowing customized enhancements through the API... more»

How has it helped my organization?

In large software development teams, the most important issue related to software and application security is to identify vulnerabilities and weaknesses quickly and accurately, then to gather those findings on a common platform so they can be... more»

What needs improvement?

Though it is generally close to perfection, the biggest deficiency is the integration with bug tracker systems. It might be better if the configuration screen presented for accessing the bug tracking systems could provide some flexibility.... more»
See 4 more reviews

Articles

User Assessments By Topic About Fortify on Demand

Application security report from it central station 2018 04 07 thumbnail
Find out what your peers are saying about Micro Focus, SonarQube, Checkmarx and others in Application Security.
265,288 professionals have used our research since 2012.

Fortify on Demand Questions

Fortify on Demand Projects By Members

Fortify on Demand Consultants

What is Fortify on Demand?

Micro Focus Fortify on Demand’s application security-as-a-service is the easy and flexible way to identify vulnerabilities in your applications without additional investment in software or personnel. Allow our global team to work for you, providing support and technical expertise 24/7.

Also known as
Micro Focus Fortify on Demand, HPE Fortify on Demand
Fortify on Demand customers

SAP, Aaron's, British Gas, FICO, Cox Automative, Callcredit Information Group, Vital and more.

Vendor 7619 screenshot 1521912797
BUYER'S GUIDE
Not sure which Application Security solution is right for you?

Download our free Application Security Report and find out what your peers are saying about Micro Focus, SonarQube, Checkmarx, and more!
Application security report from it central station 2018 04 07 thumbnail

Sign Up with Email