

Checkmarx One and Barracuda Application Protection are products in the cybersecurity sector, each offering unique advantages. Barracuda Application Protection leads in comprehensive features for robust security, while Checkmarx One stands out in terms of pricing and support.
Features: Checkmarx One provides a thorough application security testing suite with static and interactive analyses, seamless DevSecOps integration, and real-time threat detection. Barracuda Application Protection offers a multi-layered security approach, real-time bot protection, API security, and frequent threat intelligence updates for extensive web application security coverage.
Ease of Deployment and Customer Service: Barracuda Application Protection offers a straightforward deployment process with accessible support and comprehensive documentation. Checkmarx One features efficient cloud-based deployment integrated into development pipelines, providing a supportive environment for ongoing technical challenges with robust customer service options.
Pricing and ROI: Checkmarx One delivers a competitive pricing structure with a favorable cost-to-benefit ratio for budget-conscious businesses. Barracuda Application Protection, while more expensive, offers higher returns with extensive features and lasting security capabilities, validating the additional expense for organizations seeking advanced protection.
Within the first six months of deployment, we have seen a 60% reduction in security incidents affecting the web application, which directly translated into fewer service interruptions and less time spent on incident response.
Web-related alert triage time has reduced by around 40%, and some investigations that earlier took 30 minutes now take closer to 10 to 15 minutes.
Ease of use for our security team to be able to use templates and configure to our specs, combined with its high-level security protection features such as DOD-level protection, shows its readiness to secure our data and network lines, which is brilliant.
Overall, between the fast scanning, automation, automatic reporting, and easy detection, it has reduced manual effort enough that we did not need an extra reviewer, even as our codebase or team size grew.
Based on my interactions with the clients, I can tell that there is a return on investment because if something is not profitable and it's not helping to save costs or vulnerabilities, clients wouldn't come back to renew their license year after year.
The support team was responsive and technically knowledgeable, especially when handling application security or traffic-related issues.
The customer support for Barracuda Application Protection has been very responsive and helpful in resolving all our issues on time.
My experience with Barracuda Application Protection's customer support is good, as they are very responsive, knowledgeable, and provide timely assistance for configuration, troubleshooting, and documentation.
If you raise a support case with Checkmarx, it is handled smoothly.
The customer support team is amazing and they provide on-phone call, email support, and on-website support.
I have relied on Checkmarx One customer support hundreds of times for several things, and Checkmarx One support is very proactive and very responsive.
The platform supports cloud, on-premises, hybrid, containerized deployments, load balancing, CDN capabilities, and multi-environment protection, which helps when applications expand.
Barracuda Application Protection is easy to scale by adding protection to newer applications and APIs without major changes.
Approximately four billion lines of code are being scanned monthly.
Since it is cloud-based, the infrastructure and PaaS, IaaS, and SaaS are taken care of by the cloud marketplace.
Checkmarx One's scalability has changed my organization because the strong collaboration between the development and security team helps us to do things much faster.
Barracuda Application Protection has been stable and reliable in our experience.
Barracuda Application Protection is stable, as in my experience, it has been quite stable without any major outages or performance issues.
I would rate the stability of this solution a nine on a scale of 1 to 10 where one is low stability and 10 is high.
Checkmarx One is often down when the cloud provider experiences issues.
There is also some scope for improvement in API security visibility, especially around detailed discovery and classification of APIs, as this is becoming a critical area for modern applications.
I would add that they need to work really hard on false positives because most of the time it blocks legitimate API calls and disturbs their own ruling and everything which I have to work on manually.
Having the advanced ability to close off ports when they could be getting tested from hackers for intrusion would be helpful.
Integration into the IDE being used would be beneficial so that code does not need to be uploaded to the website and an IDE-friendly report could be generated.
It could suggest how the code base is written and automatically populate the source code with three different solution options to choose from.
If you can improve the speed optimization, it takes around 30 to 40 minutes for checking a build. If you can make it within five minutes or 10 minutes, that would be great.
The cost is relevant, pocket-friendly, and cost-effective.
Cost saving is one of the major points observed since this product is less costly compared to others.
It is not the cheapest option, but it offers good value when considering the combined security features such as WAF, bot protection, DDoS defense, and centralized management.
For a small team under 50 developers, normal expenses come under 30 to 60K.
Due to the number of years I've implemented Checkmarx One, there are rebates and discounts from the OEM which makes it a lot more profitable.
The pricing should be reasonable, matching what we are paying for.
Within the first six to seven months of deployment, I saw a 60% reduction in security incidents, incidents affecting the web application which directly translated into fewer service interruptions and less time spent on incident response.
Its WAF capabilities for OWASP Top 10 protection are very strong.
Barracuda Application Protection protects against ransomware, achieving a 67% protection rate because it is based on a Linux system, reducing the chances of encryption and providing strong ransomware protection.
Since replacing the previous tool, SAST and SCA scans are conducted in a couple of minutes instead of hours or days.
The best features Checkmarx One offers, over the past years, include broad language and technical support that Checkmarx provides, covering most languages.
Checkmarx One has positively impacted our organization as we tend to find vulnerabilities very early in the development cycle.
| Product | Mindshare (%) |
|---|---|
| Checkmarx One | 6.7% |
| Barracuda Application Protection | 2.0% |
| Other | 91.3% |


| Company Size | Count |
|---|---|
| Small Business | 7 |
| Midsize Enterprise | 2 |
| Large Enterprise | 26 |
| Company Size | Count |
|---|---|
| Small Business | 32 |
| Midsize Enterprise | 9 |
| Large Enterprise | 46 |
Barracuda Application Protection provides robust application security, delivering comprehensive protection tailored for IT professionals seeking advanced web security measures.
Barracuda Application Protection is designed to safeguard web applications against vulnerabilities and cyber threats. It offers a cutting-edge, integrated platform that ensures sophisticated security measures for future-proofing organizational IT infrastructure. With scalable solutions, it caters to diverse business needs and enhances overall security posture.
What are the key features of Barracuda Application Protection?In industries like finance, healthcare, and ecommerce, Barracuda Application Protection is implemented to strengthen security frameworks. It ensures sensitive data protection, compliance adherence, and reduces downtime, thereby supporting critical operations across sectors.
Checkmarx One delivers robust security through seamless integration with SCM and CI/CD tools, ensuring reliable SAST and SCA. Primarily used by organizations for vulnerability detection, it supports cloud and on-premises deployment to enhance secure coding practices.
Checkmarx One provides organizations with comprehensive tools for secure software development, integrating effectively with CI/CD pipelines to scan thousands of applications. Its capabilities extend to identifying vulnerabilities in both code bases and third-party software. Enhancing workflow by supporting SCM solutions, it assists in maintaining secure coding standards and compliance. While excelling in various areas, it requires improvements in scan speed, reduction of false positives, and broader platform integration, particularly for COBOL and Swift. Its pricing model is noted as high, and demand exists for better tutorials and documentation.
What are the key features of Checkmarx One?Industries implement Checkmarx One for secure coding compliance and vulnerability management across varying environments, choosing between cloud and on-premises deployment based on requirements. Its extensive language support and integration with DevSecOps practices make it a popular choice for organizations aiming to enhance software security.
We monitor all API Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.