IBM Security AppScan Competitors and Alternatives

Get our free report covering Micro Focus, CA Technologies, and other competitors of IBM Security AppScan.
310,271 professionals have used our research since 2012.
Read reviews of IBM Security AppScan competitors and alternatives
Suzan Nascimento
Real User
SVP Application Security at a financial services firm with 10,001+ employees
May 17 2018

What is most valuable?

The most valuable feature is the remediation consulting that they give. I feel like any vendor can identify the flaws but fixing the flaws is... more»

How has it helped my organization?

It has allowed us to scale and find vulnerabilities much faster than previous manual tools. It has allowed us to educate developers on it to use... more»

What needs improvement?

I would like to see more technical support for some of the connectors, some more detailed diagrams or run-books on how to install some of the... more»

Which solutions did we use previously?

At a previous company, we were using HPE Fortify. We couldn't scale because it was an on-prem solution. Therefore, after five years, we decided... more»

What other advice do I have?

I would give Veracode a nine out of 10 because it scales incredibly well, they have very qualified people working there who are able to clearly... more»
Gustavo_Gonzalez
Real User
Technical Program Manager at a engineering company with 10,001+ employees
Feb 26 2017

What is most valuable?

* The export feature and presentation of the results. * The ability to track the vulnerabilities inside the code... more»

How has it helped my organization?

For manual code testing, Checkmarx has been very helpful discarding false positives, filtering and removing a lot of... more»

What needs improvement?

The lack of ability to review compiled source code. It would then be able to compete with other scanning tools, such as... more»

What's my experience with pricing, setup cost, and licensing?

Checkmarx is not a cheap scanning tool, but none of the security tools are cheap. Checkmarx is a powerful scanning... more»

Which solutions did we use previously?

I used to work mostly on checking the source code manually, and estimated the time of completion counting the lines of... more»

What other advice do I have?

I recommend to have a live session with the marketing team, to have a demo and to track all your doubts before... more»
Jeff Ingalls
Real User
Automation Tool Specialist at a comms service provider with 1,001-5,000 employees
Aug 07 2018

What is most valuable?

* The issues it identifies. * How easily it ties into our continuous integration pipeline. * It is very good at identifying technical debt.

How has it helped my organization?

* Higher code quality. * Faster to market. * Less errors.

What needs improvement?

As far as code quality goes, I like it. It doesn't seem to do well when it comes to vulnerabilities on the security side. It may be that we... more»

What's my experience with pricing, setup cost, and licensing?

The price point on SonarQube is good.

What other advice do I have?

We are looking at using another product to compliment it for security reasons. Most important criteria when selecting a vendor: * Usability of... more»
Richard Lloyd
Real User
Digital Security Integration Lead at a non-tech company with 10,001+ employees
Jun 28 2017

What is most valuable?

The quality of application security testing reduces risk and gives very few false positives.

How has it helped my organization?

The security of our consumer-facing web sites is better.

What needs improvement?

New technologies and DevOps could be improved. Fortify on Demand can be slow (slower than other vendors) to support new... more»

What's my experience with pricing, setup cost, and licensing?

Drive a hard bargain.

Which solutions did we use previously?

We didn’t have a previous solution.

What other advice do I have?

Go with the SaaS product.

Sign Up with Email