IBM Security AppScan Reviews

Filter by:Reset all filters
industry
Filter Unavailable
Company Size
Filter Unavailable
Job Level
Filter Unavailable
rating
Filter Unavailable
Real User
Director Of Product Cyber Security at a aerospace/defense firm with 10,001+ employees
Mar 22 2018

What is most valuable?

For me, as a manager, it was the ease of use. Inserting security into the development process is not normally an easy project to do. The ability for the developer to actually use it and get results and focuses, that's what counted.

How has it helped my organization?

It helps the organization the way we process the entire thing. It has actually helped a little bit with the speed of delivery too, which was surprising because most people thought it would be the other way around. IBM Applications Security... more»

What needs improvement?

I think being able to search across more containers, especially some of the docker elements. We need a little tighter integration there. That's the only thing I can see at this point.
Consultant
Managing director at Accenture
Mar 20 2018

What is most valuable?

It highlights, with several grades of severity, the types of vulnerabilities, so we can focus on the most severe security vulnerabilities in the code.

How has it helped my organization?

It decreases the operational risk, security risk, a lot. In fact, when we first used it, the number of vulnerability alerts generated by the tool was huge. As time goes on, we can decrease those vulnerabilities because we learn from it. So,... more»

What needs improvement?

One thing that we would like in this tool is that it keeps ahead of the security guys, because one big advantage of this tool is that it always offers updates. Security is a process, you mitigate a risk, but the malware guys, they're trying... more»
Find out what your peers are saying about IBM, Micro Focus, CA Technologies and others in Application Security.
288,321 professionals have used our research since 2012.
Real User
CTO at Anzen
Mar 26 2018

What is most valuable?

It helps you to enforce security practices, beyond the reach of just operations and training. So give the training, but besides that you can detect some deviations in the development process. I think that's the most valuable of all the features.

How has it helped my organization?

Usually when we deploy the application, there is a process for ethical hacking. The main benefit is that, the ethical hacking is almost clean, every time. So it's less cost, less effort, less time to production. AppScan has absolutely... more»

What needs improvement?

I would love to see more containers. Many of the tools are great, they require an amount of configuration, setup and infrastructure. If most the applications were in a container, I think everything would be a little bit faster, because all... more»
Real User
Chief information with 5,001-10,000 employees
Apr 20 2017

What is most valuable?

We are currently using it in the integration of our agile process so we can find any breaches in the apps while they're in the development process. We can then fix breaches before they go into a production environment. It comes with all of... more»

How has it helped my organization?

Before we had this solution, our security team was doing manual reviews with the scripts. This would take us a lot of work hours and a lot of people were involved in the process. Now we just send it to AppScan and we can do other stuff like... more»

What needs improvement?

We are moving a lot into mobile. While the solution does have a lot of functionalities in mobile, we are trying to expand it more aggressively. We would like to see a check in the specific vulnerabilities in mobile applications or rooted... more»
Real User
Director For Security Products at a manufacturing company with 10,001+ employees
Mar 25 2018

What is most valuable?

The most valuable feature is the web scan from our perspective. Being able to quickly find the vulnerabilities if any developer has inadvertently put them in. The source scan is of value, but it is so hard to use that it is of less value.

How has it helped my organization?

It has certainly helped us find vulnerabilities in our software, so this is priceless in the end. IBM Application Security has contributed to the maturity of our AppScan risk management program. While it depends on the product, on average ten... more»

What needs improvement?

IBM Security AppScan Source is rather hard to use. Some improvements need to be made to the usability for AppScan Source, specifically. Our biggest problem, we have a lot of code and everything just ends up looking like spaghetti after we run... more»
See 9 more reviews

Articles

User Assessments By Topic About IBM Security AppScan

Find out what your peers are saying about IBM, Micro Focus, CA Technologies and others in Application Security.
288,321 professionals have used our research since 2012.

IBM Security AppScan Questions

IBM Security AppScan Projects By Members

IBM Security AppScan Consultants

What is IBM Security AppScan?

IBM Security AppScan enhances web application security and mobile application security, improves application security program management and strengthens regulatory compliance. By scanning your web and mobile applications prior to deployment, AppScan enables you to identify security vulnerabilities and generate reports and fix recommendations.

Also known as
Rational AppScan, AppScan
IBM Security AppScan customers

Essex Technology Group Inc., Cisco, West Virginia University, APIS IT

BUYER'S GUIDE
Not sure which Application Security solution is right for you?

Download our free Application Security Report and find out what your peers are saying about IBM, Micro Focus, CA Technologies, and more!

Sign Up with Email