Veracode Reviews

Filter by:Reset all filters
industry
Filter Unavailable
Company Size
Filter Unavailable
Job Level
Filter Unavailable
rating
Filter Unavailable
Kyle Engibous
Real User
Systems Architect at a tech vendor with 201-500 employees
Mar 26 2018

What is most valuable?

The most important one is the static scanning analysis, and the reason is that it can tell us vulnerability in that... more»

How has it helped my organization?

We have a large developer base at our company ranging in a variety of skills sets. Some are very security aware, others... more»

What needs improvement?

From a technical standpoint, I'm pretty happy with everything. The one thing I'd like to be able to do is schedule... more»

What's my experience with pricing, setup cost, and licensing?

If you're licensing, and you're looking at licensing models, you might want to ask Veracode about their microservice,... more»

Which solutions did we use previously?

We had never done anything like this in the past. This was the solution that we chose. We didn't really evaluate... more»

What other advice do I have?

I would advise that you figure out a way to integrate it into your software development lifecycle in a way that it's... more»
Anonymous User
Real User
Director Security and Risk OMNI Cloud Operations at a tech vendor with 1,001-5,000 employees
Apr 12 2018

What is most valuable?

* The static scanning of the software is very important to us. * The ability to set policy profiles that are specific... more»

How has it helped my organization?

We do automated scanning, so we use it as part of our development cycle. We do both automated security scanning as well... more»

What needs improvement?

It's really hard to criticize something that has become somewhat seamless for us. If they wanted to expand their... more»

What's my experience with pricing, setup cost, and licensing?

We're very comfortable with their model. We think they're a good value. We worked very closely with Veracode on... more»

Which solutions did we use previously?

Prior to working with Veracode, we used a self-applied application. That is, we had the solution on-premise, but just... more»

What other advice do I have?

We recommend Veracode to colleagues all the time. I'd give the advice of not getting hung up on trying to compare the... more»
Find out what your peers are saying about CA Technologies, SonarQube, Micro Focus and others in Application Security.
305,473 professionals have used our research since 2012.
Anonymous User
Real User
Information Security Engineer Team Lead at a hospitality company with 1,001-5,000 employees
May 02 2018

What is most valuable?

The reporting and mitigation features which allow our people to work on their own.

How has it helped my organization?

It has given us insight into the actual flaws that are out there, and the speed at which they're getting mitigated.... more»

What needs improvement?

The only areas that I'm concerned with are some of the newer code libraries, things that we're starting to see people... more»

What's my experience with pricing, setup cost, and licensing?

I think the pricing is in line with the rest of the tools. I think you get what you pay for. It is certainly not... more»

Which solutions did we use previously?

We used HP WebInspect, which is now under the Fortify umbrella. HP WebInspect was just terrible. Had we used the... more»

What other advice do I have?

My advice is what I mentioned in the pricing/licensing section above, you really need to understand what it is you are... more»
Anonymous User
Real User
Chief Information Security Officer with 501-1,000 employees
Nov 19 2018

What is most valuable?

* Having the option of static scanning. Most tools of this type are centered around dynamic scanning. Having a static scan is very important. *... more»

How has it helped my organization?

We are a state agency, we're not a private-sector company. What we're able to do is take our main web-based application, which is not only for... more»

What needs improvement?

I attended a meeting of one of the security organizations I am associated with. At the meeting were security professionals from several major... more»

What's my experience with pricing, setup cost, and licensing?

We're always looking to save the taxpayers' money. I used to tell my vendors, sharpen those pencils and make the tip laser-sharp. When it can... more»

What other advice do I have?

I would absolutely recommend Veracode. I've suggested to one of the larger agencies that they implement the solution and that they come to see... more»
GL32aS
Real User
Global Application Security at a pharma/biotech company with 10,001+ employees
Apr 09 2018

What is most valuable?

The Static and Dynamic Analysis capabilities are very valuable to us.

How has it helped my organization?

We are able to create business policies, and the Veracode system allows us to enforce those policies. That's at the very high level. We're looking at improving the overall security... more»

What needs improvement?

They've improved the speed of the inspection process. I'd never want the inspection process to become something that's suspect. False positives would diminish confidence in the... more»

What other advice do I have?

I hold Veracode in high regard. It's a good organization to work with, and it's a very conscientious organization. I'm always a recommender of the solution set.
Dave Cheli
Real User
Chief Technology Officer
Mar 15 2018

What is most valuable?

Certainly it eases integration into our workflow. Veracode is part of our Jenkins build, so whenever we build our... more»

How has it helped my organization?

Firstly, it prevents me from putting out software that has security vulnerabilities, which is a big thing and can be... more»

What needs improvement?

The Web portal, at times, is not necessarily intuitive. I can get around when I want to but there are times when I have... more»

What's my experience with pricing, setup cost, and licensing?

I think it's a great value. It's at a price point that a small company like mine can afford to use versus, if it was... more»

Which solutions did we use previously?

Veracode was really my first introduction to static code analysis. The way I came across it in my previous company was,... more»

What other advice do I have?

CA Veracode provides application security (AppSec) best practices and guidance to our teams in a couple ways. First of... more»
Anonymous User
Real User
Associate Director
Jul 05 2018

What is most valuable?

It has several components in that help you identify abilities in the core. It also provides security of different... more»

How has it helped my organization?

It has helped us identify all the applications flaws, especially with so many open source licenses available to the... more»

What needs improvement?

They are already working on, but we are looking forward to seeing it. We would like the consolidation of all the... more»

What's my experience with pricing, setup cost, and licensing?

It is pricey. There is a lot of value in the product, but it is a costly tool. The customer should demand better... more»

Which solutions did we use previously?

We did not previously use another solution.

What other advice do I have?

I would rate the product as an eight out of 10 for recommend it to colleagues. I would rate the overall product as a... more»
Anonymous User
Real User
Information Technology at a insurance company with 51-200 employees
Mar 14 2018

What is most valuable?

It is great to have such insight into code without having to upload the source code at all. It saves a lot of NDA... more»

How has it helped my organization?

We used to revise code with free tools (like VCG) but they are not even in the same universe. Veracode static analysis... more»

What needs improvement?

It can take time to find options if you don’t use the interface a lot. At some point, a bit of interface restyling may... more»

What's my experience with pricing, setup cost, and licensing?

The licensing and prices were upfront and clear. They stand behind everything that is said during the commercial phase... more»

Which solutions did we use previously?

VCG (Visual Code Grepper) but I am not even going to compare them. VCG is as good as they come, but Veracode is a... more»

What other advice do I have?

In terms of integrating Veracode into our existing software development lifecycle, as our two existing applications are... more»
See 33 More Veracode Reviews

Articles

User Assessments By Topic About Veracode

Find out what your peers are saying about CA Technologies, SonarQube, Micro Focus and others in Application Security.
305,473 professionals have used our research since 2012.

Veracode Questions

Veracode Projects By Members

Veracode Consultants

What is Veracode?

Veracode is an application security company that offers an automated cloud-based service for securing web, mobile and third-party enterprise applications. Veracode provides multiple security analysis technologies on a single platform, including static analysis, dynamic analysis, mobile application behavioral analysis and software composition analysis.

Veracode customers

State of Missouri, Rekner

BUYER'S GUIDE
Download our free Application Security Report and find out what your peers are saying about CA Technologies, SonarQube, Micro Focus, and more!

Sign Up with Email