IBM Security AppScan Reviews

4.0 out of 5 stars
 (14)
Anonymous avatar x80
Real User
Director Of Product Cyber Security at a aerospace/defense firm with 1,001-5,000 employees
Mar 22 2018

What is most valuable?

For me, as a manager, it was the ease of use. Inserting security into the development process is not normally an easy project to do. The ability for the developer to actually use it and get results and focuses, that's what counted.

How has it helped my organization?

It helps the organization the way we process the entire thing. It has actually helped a little bit with the speed of delivery too, which was surprising because most people thought it would be the other way around. IBM Applications Security... more»

What needs improvement?

I think being able to search across more containers, especially some of the docker elements. We need a little tighter integration there. That's the only thing I can see at this point.
Anonymous avatar x80
Real User
Managing director at Accenture
Mar 20 2018

What is most valuable?

It highlights, with several grades of severity, the types of vulnerabilities, so we can focus on the most severe security vulnerabilities in the code.

How has it helped my organization?

It decreases the operational risk, security risk, a lot. In fact, when we first used it, the number of vulnerability alerts generated by the tool was huge. As time goes on, we can decrease those vulnerabilities because we learn from it. So,... more»

What needs improvement?

One thing that we would like in this tool is that it keeps ahead of the security guys, because one big advantage of this tool is that it always offers updates. Security is a process, you mitigate a risk, but the malware guys, they're trying... more»
Application security testing report from it central station 2018 05 12 thumbnail
Find out what your peers are saying about IBM, Micro Focus, CA Technologies and others in Application Security Testing.
269,736 professionals have used our research since 2012.
Anonymous avatar x80
Real User
CTO at Anzen
Mar 26 2018

What is most valuable?

It helps you to enforce security practices, beyond the reach of just operations and training. So give the training, but besides that you can detect some deviations in the development process. I think that's the most valuable of all the features.

How has it helped my organization?

Usually when we deploy the application, there is a process for ethical hacking. The main benefit is that, the ethical hacking is almost clean, every time. So it's less cost, less effort, less time to production. AppScan has absolutely... more»

What needs improvement?

I would love to see more containers. Many of the tools are great, they require an amount of configuration, setup and infrastructure. If most the applications were in a container, I think everything would be a little bit faster, because all... more»
Anonymous avatar x80
Real User
Chief information
Apr 20 2017

What is most valuable?

We are currently using it in the integration of our agile process so we can find any breaches in the apps while they're in the development process. We can then fix breaches before they go into a production environment. It comes with all of... more»

How has it helped my organization?

Before we had this solution, our security team was doing manual reviews with the scripts. This would take us a lot of work hours and a lot of people were involved in the process. Now we just send it to AppScan and we can do other stuff like... more»

What needs improvement?

We are moving a lot into mobile. While the solution does have a lot of functionalities in mobile, we are trying to expand it more aggressively. We would like to see a check in the specific vulnerabilities in mobile applications or rooted... more»
67e98765 049a 4206 939f cc5c16e8cab3 avatar
Real User
Director For Security Products at a manufacturing company with 1,001-5,000 employees
Mar 25 2018

What is most valuable?

The most valuable feature is the web scan from our perspective. Being able to quickly find the vulnerabilities if any developer has inadvertently put them in. The source scan is of value, but it is so hard to use that it is of less value.

How has it helped my organization?

It has certainly helped us find vulnerabilities in our software, so this is priceless in the end. IBM Application Security has contributed to the maturity of our AppScan risk management program. While it depends on the product, on average ten... more»

What needs improvement?

IBM Security AppScan Source is rather hard to use. Some improvements need to be made to the usability for AppScan Source, specifically. Our biggest problem, we have a lot of code and everything just ends up looking like spaghetti after we run... more»
See 9 more reviews

Articles

User Assessments By Topic About IBM Security AppScan

Application security testing report from it central station 2018 05 12 thumbnail
Find out what your peers are saying about IBM, Micro Focus, CA Technologies and others in Application Security Testing.
269,736 professionals have used our research since 2012.

IBM Security AppScan Questions

IBM Security AppScan Projects By Members

IBM Security AppScan Consultants

What is IBM Security AppScan?

IBM Security AppScan enhances web application security and mobile application security, improves application security program management and strengthens regulatory compliance. By scanning your web and mobile applications prior to deployment, AppScan enables you to identify security vulnerabilities and generate reports and fix recommendations.

Also known as
Rational AppScan, AppScan
IBM Security AppScan customers

Essex Technology Group Inc., Cisco, West Virginia University, APIS IT

Vendor 7400 screenshot 1524637054
BUYER'S GUIDE
Not sure which Application Security Testing solution is right for you?

Download our free Application Security Testing Report and find out what your peers are saying about IBM, Micro Focus, CA Technologies, and more!
Application security testing report from it central station 2018 05 12 thumbnail

Sign Up with Email