Micro Focus Fortify on Demand Primary Use Case

Cinfooffice09987
CISO at a retailer with 1,001-5,000 employees
We use Fortify on Demand to test our e-commerce website. We do static codes testing before it goes live. View full review »
reviewer1263261
Sr. Enterprise Architect at a financial services firm with 5,001-10,000 employees
I have been using this solution to gain some perspective from different architectures for the security team. I do not use it every day. I do have an overview and it is integrated with our development platform. I do work for our governance team, so whenever a project is coming I will review products. I need to connect with the project managers for testing them, and these tests include the vulnerability assessment along with other security efforts. One of the things that I suggest is using Micro Focus Fortify on Demand. The primary use case is core scanning for different vulnerabilities, based on standards. It beings with an architect who designs a model on a security-risk advisor platform. Then you have an idea of what the obstacles are. Once the code is scanned according to standards, you figure out where the gaps are. The team then suggests what needs to be done to the code to fix the vulnerabilities. The process repeats after the code is fixed until all of the vulnerabilities have been eliminated. When you take all of these things together, it is Security by design. View full review »
Jonathas De Morais
Enterprise Systems Analyst at a manufacturing company with 10,001+ employees
We use it for externally exposed applications that we want to scan before releasing them to production. As you can imagine, it's important to make sure they're secure and that we will not be exposed. For internal apps, we use other static code scanning, primarily SonarQube. But Fortify on Demand is for externally exposed applications. View full review »
Find out what your peers are saying about Micro Focus, SonarQube, Checkmarx and others in Application Security. Updated: March 2020.
406,312 professionals have used our research since 2012.
KavithaSridhar
Director Consulting at a tech services company with 10,001+ employees
My primary use case is to help the teams in development. It helps us scan. View full review »
Prakash-Rao
Vice President - Solution Architecture at a financial services firm with 10,001+ employees
We are using Fortify on Demand as a static code analyzer. As it scans each application, it checks each line of code. When we are developing mobile applications there might be some kind of security vulnerability. One example is a check to see if information that is being transferred is not encrypted because this would be vulnerable to hackers who are trying to break into the system. We also look at whether were are using the network transport layer security. Our overall goal at this time is to protect our mobile app because it is one of the ways that hackers can break into the system. View full review »
ChimaUzomba
Chief Executive & Certified Security Administrator at Boch
We recommend this product to our customers. We act as vendors and resellers. This is actually one of the solutions we often recommend to our customers most often. Usually, this is the best choice for banking and financial institutions. It is deployed by their development team in-house. They use it to manage and test product lifecycles. View full review »
Nixon B
Senior Cyber Security Analyst at a financial services firm with 1,001-5,000 employees
We previously used it for static and dynamic scans, but now we use it only for dynamic scans. We have close to 85 products in-house, so we run a lot of scans. View full review »
Ives Laaf
Head of Compliance & Quality / CISO at a tech services company with 51-200 employees
Our primary use case for this solution is static code analysis. View full review »
Elina Petrovna
Professor at BitBrainery University
I analyzed more than 20 applications implemented in BIT Brainery University. The static analysis has to be done every release before putting it in production. View full review »
Find out what your peers are saying about Micro Focus, SonarQube, Checkmarx and others in Application Security. Updated: March 2020.
406,312 professionals have used our research since 2012.