Fortify on Demand Reviews

Filter by:Reset all filters
industry
Filter Unavailable
Company Size
Filter Unavailable
Job Level
Filter Unavailable
rating
Filter Unavailable
Jonathas De Morais
Real User
Enterprise Systems Analyst at a manufacturing company with 10,001+ employees
Aug 14 2018

What is most valuable?

One of the valuable features is the ability to submit your code and have it run in the background. Then, if something... more»

How has it helped my organization?

Because of the kind of products we deal with, and the kind of customers we have, we have really specific security... more»

What needs improvement?

It's still a little bit too complex for regular developers. It takes a little bit more time than usual. I know static... more»

What's my experience with pricing, setup cost, and licensing??

The subscription model, on a per-scan basis, is a bit expensive. That's another reason we are not using it for all the... more»

Which other solutions did I evaluate??

We didn't have a previous solution. We researched a couple of the tools, but we ended up using Fortify because of the... more»

What other advice do I have??

Understand what you want to get out of it and be sure to fully understand what you will be paying per scan if you go... more»
Jason Lebrecht US
Real User
Executive Director at a tech consulting company with 51-200 employees
Aug 25 2017

What is most valuable?

* The ability to utilize the Client Portal, which provided my clients with a view of the project status, vulnerabilities and needed remediation... more»

How has it helped my organization?

The HP FoD effort allowed my client to utilize this service anytime their internal IT team was overwhelmed with workloads. FoD gives them an... more»

What needs improvement?

* I believe that sales packages should be posted for single applications, and packages of multiple applications. For example, we have one-time a... more»

What's my experience with pricing, setup cost, and licensing??

We used the one-time application, Security Scan Dynamic. I believe the original fee was $8,000. I would suggest, and I have, that companies... more»

Which other solutions did I evaluate??

I’ve used Rapid7 and Qualys Security Solutions in Managed Service Environments for previous clients. Both are really good solutions, but I’ve... more»
Find out what your peers are saying about Micro Focus, SonarQube, Checkmarx and others in Application Security.
291,675 professionals have used our research since 2012.
TechLead112
Consultant
Technical Lead at a tech services company with 10,001+ employees
May 10 2017

What is most valuable?

* Scan wizard: for configuring large scans * Audit workbench: for on-the-fly defect auditing * CLI: to integrate the... more»

How has it helped my organization?

Security defects are captured early in the lifecycle and fixed quicker. Usage of Fortify has made developers more aware... more»

What needs improvement?

.NET code scanning is still dependent on building the code base before running any scan. Also, it's dependent on an IDE... more»

What's my experience with pricing, setup cost, and licensing??

Buying a license would be feasible for regular use. For intermittent use, the cloud-based option can be used (Fortify... more»

Which other solutions did I evaluate??

I did not previously use any product for static application security.

What other advice do I have??

If you are already using HPE tools and services such as ALM, then Fortify is a good option, as it provides... more»
Murat Kaya
Real User
Application Security Specialist at a tech services company with 5,001-10,000 employees
Jan 16 2018

What is most valuable?

The most important feature of the product is to follow today's technology fast, updated rules and algorithms (of the product). It also allows for more efficient and custom integration by allowing customized enhancements through the API... more»

How has it helped my organization?

In large software development teams, the most important issue related to software and application security is to identify vulnerabilities and weaknesses quickly and accurately, then to gather those findings on a common platform so they can be... more»

What needs improvement?

Though it is generally close to perfection, the biggest deficiency is the integration with bug tracker systems. It might be better if the configuration screen presented for accessing the bug tracking systems could provide some flexibility.... more»
Nixon B
Vendor
Senior Cyber Security Analyst at a financial services firm with 1,001-5,000 employees
Aug 16 2018

What is most valuable?

We can run our scans properly on it. It improves future security scans.

How has it helped my organization?

We are using lost programming languages, because we have a lot of product development going on because we have a product-based company. Fortify... more»

What needs improvement?

Sometimes when we run a full scan, we have a bunch of issues in the code. We should not have any issues. We would like a reduction in the time... more»

What's my experience with pricing, setup cost, and licensing??

The pricing is expensive.

Which other solutions did I evaluate??

We did not have another solution before. We tried other solutions, but they were not as good as Fortify.
Bablu Dutt Kumaran
Real User
Senior Lead at a software R&D company with 1,001-5,000 employees
May 10 2017

What is most valuable?

We identified a lot of security vulnerability much earlier in the development and could fix this well before the product was rolled out to a huge number of clients.

How has it helped my organization?

Security of our applications is a huge concern for everyone now. Using quality products like HPE’s Fortify helped us minimize issues raised by the clients. Therefore, customer... more»

What needs improvement?

The Visual Studio plugin seems to hang when a scan is run on big projects. I would expect some improvements there. Also, the comments added on each issue were getting lost on... more»

Which other solutions did I evaluate??

I did not previously use a different solution.
Richard Lloyd
Real User
Digital Security Integration Lead at a non-tech company with 10,001+ employees
Jun 28 2017

What is most valuable?

The quality of application security testing reduces risk and gives very few false positives.

How has it helped my organization?

The security of our consumer-facing web sites is better.

What needs improvement?

New technologies and DevOps could be improved. Fortify on Demand can be slow (slower than other vendors) to support new... more»

What's my experience with pricing, setup cost, and licensing??

Drive a hard bargain.

Which other solutions did I evaluate??

We didn’t have a previous solution.

What other advice do I have??

Go with the SaaS product.
Elina Petrovna
Real User
Professor at a government with 51-200 employees
Apr 25 2018

What do you think of Fortify on Demand?

Primary Use Case: I analyzed more than 20 applications implemented in BIT Brainery University. The static analysis has to be done every release before putting it in production. • Improvements to My Organization: Even though it was our final choice, it has saved us a lot of time as we focus primarily on programming rather than tool operational work. We did not need third-party consultants. • Valuable Features: We shared the easy to use dashboard with our programmers and involved outsourcers for a quick issues fix.  • Room for Improvement: It lacks of some important features that the competitors have, such as Software Composition Analysis, full dead code detection, and Agile Alliance's Best Practices and Technical Debt. • Use of Solution: One to three years.

Articles

User Assessments By Topic About Fortify on Demand

Find out what your peers are saying about Micro Focus, SonarQube, Checkmarx and others in Application Security.
291,675 professionals have used our research since 2012.

Fortify on Demand Questions

Fortify on Demand Projects By Members

Fortify on Demand Consultants

What is Fortify on Demand?

Micro Focus Fortify on Demand’s application security-as-a-service is the easy and flexible way to identify vulnerabilities in your applications without additional investment in software or personnel. Allow our global team to work for you, providing support and technical expertise 24/7.

Also known as
Micro Focus Fortify on Demand, HPE Fortify on Demand
Fortify on Demand customers

SAP, Aaron's, British Gas, FICO, Cox Automative, Callcredit Information Group, Vital and more.

BUYER'S GUIDE
Not sure which Application Security solution is right for you?

Download our free Application Security Report and find out what your peers are saying about Micro Focus, SonarQube, Checkmarx, and more!

Sign Up with Email