Checkmarx One and CloudBees compete in the application security and CI/CD automation space. Checkmarx One appears to have the upper hand in static security scanning with its vulnerability detection, while CloudBees excels in CI/CD orchestration and pipeline management.
Features: Checkmarx One includes pre-compiled and compiled code scanning, vulnerability identification, and integration with various repositories. It minimizes false positives and supports comprehensive vulnerability detection, enhancing secure coding skills among developers. CloudBees provides scalability, advanced security, and extensive integration capabilities, focusing on CI/CD automation and ease of application deployment, offering a user-friendly interface for managing complex pipelines.
Room for Improvement: Checkmarx One requires better management of false positives, improved language support, and integration with dynamic testing tools. Users seek clarity and flexibility in its licensing model. CloudBees users encounter slow performance and complex plugin management, with calls for enhancements in infrastructure stability and license tracking, as well as more AI integration for simplifying the user experience.
Ease of Deployment and Customer Service: Checkmarx One is primarily deployed on-premises with hybrid options, receiving mixed reviews for technical assistance but generally positive for customer support. CloudBees integrates well within private and public clouds, earning high marks for customer service, despite occasional service response delays.
Pricing and ROI: Checkmarx One is seen as expensive, with costs dependent on user count and language support. Despite the high price, long-term security benefits and reduced vulnerability management costs are appreciated. CloudBees, though not cheap, is valued for its ROI in accelerating secure application delivery, though specific pricing details are less discussed.
I would rate the stability of this solution a nine on a scale of 1 to 10 where one is low stability and 10 is high.
It could suggest how the code base is written and automatically populate the source code with three different solution options to choose from.
My experience with the initial setup of Checkmarx One is straightforward; it is not complex compared to other tools that I have tried.
Checkmarx One is an enterprise cloud-native application security platform focused on providing cross-tool, correlated results to help AppSec and developer teams prioritize where to focus time and resources.
Checkmarx One offers comprehensive application scanning across the SDLC:
Checkmarx One provides everything you need to secure application development from the first line of code through deployment and runtime in the cloud. With an ever-evolving set of AppSec engines, correlation and prioritization features, and AI capabilities, Checkmarx One helps consolidate expanding lists of AppSec tools and make better sense of results. Its capabilities are designed to provide an improved developer experience to build trust with development teams and ensure the success of your AppSec program investment.
CloudBees DevOptics is a robust software utilized primarily to enhance CI/CD processes by offering real-time visibility into Jenkins pipelines. It facilitates effective monitoring, incident management, and decision-making through comprehensive data analysis. Users value its features like DevOps performance metrics and seamless tool integration, leading to improved operational efficiency and productivity in organizations.
We monitor all DevSecOps reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
