Micro Focus Fortify on Demand Initial Setup

Cinfooffice09987
CISO at a retailer with 1,001-5,000 employees
Our website is complex, so the setup is also complex. By definition, we expected it to be complex, and Checkmarx should also be complex because of the culture, habits, and complexity of our custom-developed website. Our website is not an off-the-shelf product, so there's a lot of complexity that comes with it by nature. But that's okay. The initial deployment goal was to scan every bit and byte of code on the production e-commerce site. That was the plan. We started rolling this out and then we started sending tests. We went back and forth on whether we should make it in-line automatic that we scan sales, in a way that it would not allow the code to move further, or if we should do it off to the side, such that the application development life cycle continues to run separately, while somebody is scanning it making sure we dissolve all the issues. So we tried both routes. There are benefits to each, and it's definitely safer to do it in-line. Again, the culture, habits, and technology's use mean that it is not always best to do it in-line because it could become too complicated and break too many things. So we actually switched that. There is a person that does that. It's not built into the migration system by default. Somebody is scanning it and then moves to the next one. View full review »
reviewer1263261
Sr. Enterprise Architect at a financial services firm with 5,001-10,000 employees
The initial setup was quite simple. I performed the deployment a couple of times on different platforms and it did not take much effort to set up. I also did the integration with other platforms like Microsoft Information Server and it was quite easy. You just need to know the platform that you are integrating into. When it came time to deploy, I just had to run through the documentation on the vendor's web site. I spent one day reading it and one the second day, I did my integration. It took about eight hours that day, and I had challenges but they came from the platform that I was integrating into, like Microsoft Information Server. There were things to be done, such as converting XML files. The next day I was able to fix the problems, so in total it took me between nine and twelve hours to integrate it. The second time that I deployed this solution it took me not more than two or three hours to repeat all of these same steps. View full review »
Jonathas De Morais
Enterprise Systems Analyst at a manufacturing company with 10,001+ employees
The initial setup was straightforward. We had onsite training from HPE to help set up the local environment and first scans, and that was helpful. View full review »
Find out what your peers are saying about Micro Focus, SonarQube, Checkmarx and others in Application Security. Updated: March 2020.
407,401 professionals have used our research since 2012.
KavithaSridhar
Director Consulting at a tech services company with 10,001+ employees
It was very straightforward in comparison to other solutions that we had used in the past. View full review »
Prakash-Rao
Vice President - Solution Architecture at a financial services firm with 10,001+ employees
My understanding is the this is not a difficult solution to manage and maintain. View full review »
ChimaUzomba
Chief Executive & Certified Security Administrator at Boch
I think the initial setup for the on-demand product is straightforward. The product installed on-premises is somewhat complex. For this reason, it is better that the on-premises version is installed with the help of integrators or consultants. View full review »
Appsecanst67
Senior Application Security Analyst at a financial services firm with 10,001+ employees
It's a cloud-based solution, so there was no installation involved. View full review »
Nixon B
Senior Cyber Security Analyst at a financial services firm with 1,001-5,000 employees
I was not involved in the initial implementation. View full review »
Ives Laaf
Head of Compliance & Quality / CISO at a tech services company with 51-200 employees
The initial setup of this solution is straightforward. It took approximately two hours to deploy, and because it is a cloud-based solution it does not require anybody for maintenance. View full review »
Find out what your peers are saying about Micro Focus, SonarQube, Checkmarx and others in Application Security. Updated: March 2020.
407,401 professionals have used our research since 2012.