Checkmarx One and Imperva Application Security Platform are significant players in the application security space, delivering powerful security solutions. User preference leans towards Checkmarx One due to its competitive pricing and efficiency in enhancing developer skills through rapid identification and remediation of code vulnerabilities. Imperva stands out with its extensive feature set, despite being more expensive.
Features: Checkmarx One offers comprehensive code scanning without needing compilation and supports a wide range of languages. Its dashboard usability is notable, making security assessments straightforward. Imperva focuses on web application security, providing CDN, DDoS protection, and bot management, vital for handling internet threats, highlighting its robust feature set. Both platforms offer strong integration capabilities, enhancing their adaptability in enterprise environments.
Room for Improvement: Checkmarx One could improve reporting on false positives and expand language and framework support to maximize its efficiency. Enhancing the license model and reducing false positives are user recommendations. Imperva could refine the integration of additional security features and improve its user interface. Better pricing structures and deeper analytics are also suggested improvements by users.
Ease of Deployment and Customer Service: Both Checkmarx One and Imperva provide versatile deployment options across private, hybrid, and public clouds. However, Checkmarx faces challenges with the complexity of on-premises deployment and the speed of customer support. Imperva edges slightly ahead with higher satisfaction in technical support while maintaining good service ratings.
Pricing and ROI: Checkmarx One, albeit considered pricey, provides significant ROI through efficient security problem mitigation and quicker production cycles. In contrast, Imperva's pricing is high yet competitive, with value attributed to its extensive security features and reliable customer service. While users opt for Checkmarx for coding security's cost-effectiveness, Imperva is chosen for its comprehensive enterprise-level features, justifying the investment despite higher costs.
They know how much money they are losing while the system is down, so by increasing the possibility of not having a down website or web application, return on investment can be calculated easily.
I would rate the technical support of Imperva DDoS as ten.
99% of customers are using the cloud version of Imperva DDoS protection, so they just purchase the new license and scale as needed.
I would rate the stability of this solution a nine on a scale of 1 to 10 where one is low stability and 10 is high.
The stability of Imperva DDoS is very good, as it seems they have a lot of servers around the world.
It could suggest how the code base is written and automatically populate the source code with three different solution options to choose from.
Maybe Imperva DDoS could use endpoints to get information about the attacks before they commence from the endpoint level or establish cooperation with endpoint vendors to share this information.
I would rate the pricing of Imperva DDoS as five, where one is very cheap and ten is very expensive.
My experience with the initial setup of Checkmarx One is straightforward; it is not complex compared to other tools that I have tried.
I have utilized Imperva's Intelligent Traffic Filtering feature. This feature helps me understand how the attack is progressing and what is happening inside the requests to our website.
| Company Size | Count |
|---|---|
| Small Business | 30 |
| Midsize Enterprise | 9 |
| Large Enterprise | 38 |
| Company Size | Count |
|---|---|
| Small Business | 83 |
| Midsize Enterprise | 25 |
| Large Enterprise | 61 |
Checkmarx One is an enterprise cloud-native application security platform focused on providing cross-tool, correlated results to help AppSec and developer teams prioritize where to focus time and resources.
Checkmarx One offers comprehensive application scanning across the SDLC:
Checkmarx One provides everything you need to secure application development from the first line of code through deployment and runtime in the cloud. With an ever-evolving set of AppSec engines, correlation and prioritization features, and AI capabilities, Checkmarx One helps consolidate expanding lists of AppSec tools and make better sense of results. Its capabilities are designed to provide an improved developer experience to build trust with development teams and ensure the success of your AppSec program investment.
Imperva Application Security Platform delivers comprehensive and continuous web threat protection. Renowned for its ease of use, it shields web applications and databases from various cyber threats while integrating seamlessly with cloud and on-premises environments.
Imperva Application Security Platform protects web environments by offering advanced security measures against threats like DDoS attacks, SQL injections, and cross-site scripting. As a robust web application firewall, it provides extensive monitoring and bot management capabilities. The platform integrates content delivery networks for enhanced performance and scalability, while real-time traffic analysis ensures consistent protection. Despite its strengths, improvements can be made in policy management and customization options. Users seek better integration with third-party tools and more competitive pricing models. The inclusion of AI for enhanced analytics is also anticipated.
What are the key features of Imperva Application Security Platform?Imperva Application Security Platform is implemented in industries needing strong database and application protection. Companies use it to enforce geolocation restrictions and manage bots, benefiting sectors like finance and e-commerce where data security and threat monitoring are critical. Its ability to protect and ensure data accessibility makes it integral to business operations prioritizing cyber resilience.
We monitor all API Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
