IT Central Station is now PeerSpot: Here's why

Contrast Security Assess Pros

ML
Director of Threat and Vulnerability Management at a consultancy with 10,001+ employees
The solution is very accurate in identifying vulnerabilities. In cases where we are performing application assessment using Contrast Assess, and also using legacy application security testing tools, Contrast successfully identifies the same vulnerabilities that the other tools have identified but it also identifies significantly more. In addition, it has visibility into application components that other testing methodologies are unaware of.
View full review »
Aggelos Karonis - PeerSpot reviewer
Technical Information Security Team Lead at Kaizen Gaming
In our most critical applications, we have a deep dive in the code evaluation, which was something we usually did with periodic vulnerability assessments, code reviews, etc. Now, we have real time access to it. It's something that has greatly enhanced our code's quality. We have actually embedded a KPI in regards to the improvement of our code shell. For example, Contrast provides a baseline where libraries and the usability of the code are evaluated, and they produce a score. We always aim to improve that score. On a quarterly basis, we have added this to our KPIs.
View full review »
SW
Senior Customer Success Manager at a tech company with 201-500 employees
By far, the thing that was able to provide value was the immediate response while testing ahead of release, in real-time.
View full review »
Buyer's Guide
Contrast Security Assess
August 2022
Learn what your peers think about Contrast Security Assess. Get advice and tips from experienced pros sharing their opinions. Updated: August 2022.
622,063 professionals have used our research since 2012.
ToddMcAlister - PeerSpot reviewer
Lead Application and Data Security Engineer at CareFirst
Assess has an excellent API interface to pull APIs.
View full review »

Contrast Security Assess Cons

ML
Director of Threat and Vulnerability Management at a consultancy with 10,001+ employees
To instrument an agent, it has to be running on a type of application technology that the agent recognizes and understands. It's excellent when it works. If we're using an application that is using an unsupported technology, then we can't instrument it at all. We do use PHP and Contrast presently doesn't support that, although it's on their roadmap. My primary hurdle is that it doesn't support all of the technologies that we use.
View full review »
Aggelos Karonis - PeerSpot reviewer
Technical Information Security Team Lead at Kaizen Gaming
Personalization of the board and how to make it appealing to an organization is something that could be done on their end. The reports could be adaptable to the customer's preferences.
View full review »
SW
Senior Customer Success Manager at a tech company with 201-500 employees
I think there was activity underway to support the centralized configuration control. There are ways to do it, but I think they were productizing more of that.
View full review »
Buyer's Guide
Contrast Security Assess
August 2022
Learn what your peers think about Contrast Security Assess. Get advice and tips from experienced pros sharing their opinions. Updated: August 2022.
622,063 professionals have used our research since 2012.
ToddMcAlister - PeerSpot reviewer
Lead Application and Data Security Engineer at CareFirst
The out-of-the-box reporting could be improved. We need to write our own APIs to make the reporting more robust.
View full review »
Buyer's Guide
Contrast Security Assess
August 2022
Learn what your peers think about Contrast Security Assess. Get advice and tips from experienced pros sharing their opinions. Updated: August 2022.
622,063 professionals have used our research since 2012.