Veracode Reviews

Filter by:Reset all filters
industry
Filter Unavailable
Company Size
Filter Unavailable
Job Level
Filter Unavailable
rating
Filter Unavailable
Kyle Engibous
Real User
Systems Architect at a tech vendor with 201-500 employees
Mar 26 2018

What is most valuable?

The most important one is the static scanning analysis, and the reason is that it can tell us vulnerability in that... more»

How has it helped my organization?

We have a large developer base at our company ranging in a variety of skills sets. Some are very security aware, others... more»

What needs improvement?

From a technical standpoint, I'm pretty happy with everything. The one thing I'd like to be able to do is schedule... more»

What's my experience with pricing, setup cost, and licensing?

If you're licensing, and you're looking at licensing models, you might want to ask Veracode about their microservice,... more»

Which other solutions did I evaluate?

We had never done anything like this in the past. This was the solution that we chose. We didn't really evaluate... more»

What other advice do I have?

I would advise that you figure out a way to integrate it into your software development lifecycle in a way that it's... more»
Directord98b
Real User
Director Security and Risk OMNI Cloud Operations at a tech vendor with 1,001-5,000 employees
Apr 12 2018

What is most valuable?

* The static scanning of the software is very important to us. * The ability to set policy profiles that are specific... more»

How has it helped my organization?

We do automated scanning, so we use it as part of our development cycle. We do both automated security scanning as well... more»

What needs improvement?

It's really hard to criticize something that has become somewhat seamless for us. If they wanted to expand their... more»

What's my experience with pricing, setup cost, and licensing?

We're very comfortable with their model. We think they're a good value. We worked very closely with Veracode on... more»

Which other solutions did I evaluate?

Prior to working with Veracode, we used a self-applied application. That is, we had the solution on-premise, but just... more»

What other advice do I have?

We recommend Veracode to colleagues all the time. I'd give the advice of not getting hung up on trying to compare the... more»
Find out what your peers are saying about CA Technologies, SonarQube, Micro Focus and others in Application Security.
294,989 professionals have used our research since 2012.
Informat5dbf
Real User
Information Security Engineer Team Lead at a hospitality company with 1,001-5,000 employees
May 02 2018

What is most valuable?

The reporting and mitigation features which allow our people to work on their own.

How has it helped my organization?

It has given us insight into the actual flaws that are out there, and the speed at which they're getting mitigated.... more»

What needs improvement?

The only areas that I'm concerned with are some of the newer code libraries, things that we're starting to see people... more»

What's my experience with pricing, setup cost, and licensing?

I think the pricing is in line with the rest of the tools. I think you get what you pay for. It is certainly not... more»

Which other solutions did I evaluate?

We used HP WebInspect, which is now under the Fortify umbrella. HP WebInspect was just terrible. Had we used the... more»

What other advice do I have?

My advice is what I mentioned in the pricing/licensing section above, you really need to understand what it is you are... more»
GL32aS
Real User
Global Application Security at a pharma/biotech company with 10,001+ employees
Apr 09 2018

What is most valuable?

The Static and Dynamic Analysis capabilities are very valuable to us.

How has it helped my organization?

We are able to create business policies, and the Veracode system allows us to enforce those policies. That's at the very high level. We're looking at improving the overall security... more»

What needs improvement?

They've improved the speed of the inspection process. I'd never want the inspection process to become something that's suspect. False positives would diminish confidence in the... more»

What other advice do I have?

I hold Veracode in high regard. It's a good organization to work with, and it's a very conscientious organization. I'm always a recommender of the solution set.
Dave Cheli
Real User
Chief Technology Officer
Mar 15 2018

What is most valuable?

Certainly it eases integration into our workflow. Veracode is part of our Jenkins build, so whenever we build our... more»

How has it helped my organization?

Firstly, it prevents me from putting out software that has security vulnerabilities, which is a big thing and can be... more»

What needs improvement?

The Web portal, at times, is not necessarily intuitive. I can get around when I want to but there are times when I have... more»

What's my experience with pricing, setup cost, and licensing?

I think it's a great value. It's at a price point that a small company like mine can afford to use versus, if it was... more»

Which other solutions did I evaluate?

Veracode was really my first introduction to static code analysis. The way I came across it in my previous company was,... more»

What other advice do I have?

CA Veracode provides application security that can point out errors and fixes for third-party software frameworks,... more»
Associat7de6
Real User
Associate Director
Jul 05 2018

What is most valuable?

It has several components in that help you identify abilities in the core. It also provides security of different... more»

How has it helped my organization?

It has helped us identify all the applications flaws, especially with so many open source licenses available to the... more»

What needs improvement?

They are already working on, but we are looking forward to seeing it. We would like the consolidation of all the... more»

What's my experience with pricing, setup cost, and licensing?

It is pricey. There is a lot of value in the product, but it is a costly tool. The customer should demand better... more»

Which other solutions did I evaluate?

We did not previously use another solution.

What other advice do I have?

I would rate the product as an eight out of 10 for recommend it to colleagues. I would rate the overall product as a... more»
Informatab29
Real User
Information Technology at a insurance company with 51-200 employees
Mar 14 2018

What is most valuable?

It is great to have such insight into code without having to upload the source code at all. It saves a lot of NDA... more»

How has it helped my organization?

We used to revise code with free tools static analysis allows us to pinpoint issues - from a simple hard-coded test... more»

What needs improvement?

It can take time to find options if you don’t use the interface a lot. At some point, a bit of interface restyling may... more»

What's my experience with pricing, setup cost, and licensing?

The licensing and prices were upfront and clear. They stand behind everything that is said during the commercial phase... more»

Which other solutions did I evaluate?

VCG (Visual Code Grepper) but I am not even going to compare them. VCG is as good as they come, but Veracode is a... more»

What other advice do I have?

In terms of integrating Veracode into our existing software development lifecycle, as our two existing applications are... more»
Steve-Wilson
Real User
Senior Infrastructure Engineer at a healthcare company with 5,001-10,000 employees
Mar 13 2018

What is most valuable?

The most important features, I would say, are the scanning abilities and the remediation abilities within the product.... more»

How has it helped my organization?

We've been able to provide reports to our clients that show applications are either flaw-free, or in the process of... more»

What needs improvement?

Reporting. Some of the reporting features of Veracode do need improvement. They do not have the most robust access to... more»

What's my experience with pricing, setup cost, and licensing?

Just do your research. Make sure you're getting the best price on this. It can be expensive to do this, so I would just... more»

Which other solutions did I evaluate?

We were not using a previous vendor prior to this. We've used other vendors like Nessus for pen testing. We still use... more»

What other advice do I have?

In terms of Veracode providing AppSec (application security best practices) and guidance to our teams, they've been... more»
See 31 More Veracode Reviews

Articles

User Assessments By Topic About Veracode

Find out what your peers are saying about CA Technologies, SonarQube, Micro Focus and others in Application Security.
294,989 professionals have used our research since 2012.

Veracode Questions

Veracode Projects By Members

Veracode Consultants

What is Veracode?

Veracode is an application security company that offers an automated cloud-based service for securing web, mobile and third-party enterprise applications. Veracode provides multiple security analysis technologies on a single platform, including static analysis, dynamic analysis, mobile application behavioral analysis and software composition analysis.

Veracode customers

State of Missouri, Rekner

BUYER'S GUIDE
Not sure which Application Security solution is right for you?

Download our free Application Security Report and find out what your peers are saying about CA Technologies, SonarQube, Micro Focus, and more!

Sign Up with Email