We changed our name from IT Central Station: Here's why

Micro Focus Fortify on Demand Pros

DV
Senior System Analyst at Azurian
One of the top features is the source code review for vulnerabilities. When we look at source code, it's hard to see where areas may be weak in terms of security, and Fortify on Demand's source code review helps with that.
View full review »
RC
Security Systems Analyst at a retailer with 5,001-10,000 employees
Being able to reduce risk overall is a very valuable feature for us.
View full review »
Executive Manager at PepsiCo
Once we have our project created with our application pipeline connected to the test scanning, it only takes two minutes. The report explaining what needs to be modified related to security and vulnerabilities in our code is very helpful. We are able to do static and dynamic code scanning.
View full review »
Learn what your peers think about Micro Focus Fortify on Demand. Get advice and tips from experienced pros sharing their opinions. Updated: January 2022.
563,208 professionals have used our research since 2012.
Project Manager at Everis
The solution saves us a lot of money. We're trying to reduce exposure and costs related to remediation.
View full review »
LM
Principal Solutions Architect at a security firm with 11-50 employees
Its ability to perform different types of scans, keep everything in one place, and track the triage process in Fortify SSC stands out.
View full review »
Co-Founder at TechScalable
Almost all the features are good. This solution has simplified designing and architecting for our solutions. We were early adopters of microservices. Their documentation is good. You don't need to put in much effort in setting it up and learning stuff from scratch and start using it. The learning curve is not too much.
View full review »
AP
Project Analyst at a financial services firm with 1,001-5,000 employees
The most valuable feature is the capacity to be able to check vulnerabilities during the development process. The development team can check whether the code they are using is vulnerable to some type of attack or there is some type of vulnerability so that they can mitigate it. It helps us in achieving a more secure approach towards internal applications. It is an intuitive solution. It gives all the information that a developer needs to remediate a vulnerability in the coding process. It also gives you some examples of how to remediate a vulnerability in different programming languages. This solution is pretty much what we were searching for.
View full review »
JP
Production Manager for Nearshore SWaT at a computer software company with 10,001+ employees
The feature that I find the most useful is being able to just see the vulnerabilities online while checking the code and then checking suggestions for fixing them.
View full review »
SS
Acquisitions Leader at a healthcare company with 10,001+ employees
It is a very easy tool for developers to use in parallel while they're doing the coding. It does auto scanning as we are progressing with the CI/CD pipeline. It has got very simple and efficient API support.
It is an extremely robust, scalable, and stable solution.
View full review »
BS
R&D at a tech services company with 51-200 employees
There is not one feature we find valuable. The idea is to integrate the solution in DevSecOps which we were able to do. We were working with a different solution called SolarCloud previously and it was limited. We are trying to find the right level of security for our needs.
View full review »

Micro Focus Fortify on Demand Cons

DV
Senior System Analyst at Azurian
During development, when our developer makes changes to their code, they typically use GitHub or GitLab to track those changes. However, proper integration between Fortify on Demand and GitHub and GitLab is not there yet. Improved integration would be very valuable to us.
View full review »
RC
Security Systems Analyst at a retailer with 5,001-10,000 employees
They have a release coming out, which is full of new features. Based on their roadmap, there's nothing that I would suggest for them to put in it that they haven't already suggested. However, I am a customer, so I always think the pricing is something that could be improved. I am working with them on that, and they're very flexible. They work with their customers and kind of tailor the product to the customer's needs. So far, I am very happy with what they're able to provide. Their subscriptions could use a little bit of a reworking, but that would be about it.
View full review »
Executive Manager at PepsiCo
Micro Focus Fortify on Demand cannot be run from a Linux Agent. When we are coding the endpoint it will not work, we have to use Windows Agent. This is something they could improve.
View full review »
Learn what your peers think about Micro Focus Fortify on Demand. Get advice and tips from experienced pros sharing their opinions. Updated: January 2022.
563,208 professionals have used our research since 2012.
Project Manager at Everis
There's a bit of a learning curve. Our development team is struggling with following the rules and following the new processes.
View full review »
LM
Principal Solutions Architect at a security firm with 11-50 employees
It could have a little bit more streamlined installation procedure. Based on the things that I've done, it could also be a bit more automated. It is kind of taking a bunch of different scanners, and SSC is just kind of managing the results. The scanning doesn't really seem to be fully integrated into the SSC platform. More automation and any kind of integration in the SSC platform would definitely be good. There could be a way to initiate scans from SSC and more functionality on the server-side to initiate desk scans if it is not already available.
View full review »
Co-Founder at TechScalable
In terms of communication, they can integrate a few more third-party tools. It would be great if we can have more options for microservice communication. They can also improve the securability a bit more because security is one of the biggest aspects these days when you are using the cloud. Some more security features would be really helpful.
View full review »
AP
Project Analyst at a financial services firm with 1,001-5,000 employees
It natively supports only a few languages. They can include support for more native languages. The response time from the support team can also be improved. They can maybe include video tutorials explaining the remediation process. The remediation process is sometimes not that clear. It would be helpful to have videos. Sometimes, the solution that the tool gives in the GUI is not straightforward to understand for the developer. At present, for any such issues, you have to create a ticket for the support team and request help from the support team.
View full review »
JP
Production Manager for Nearshore SWaT at a computer software company with 10,001+ employees
The thing that could be improved is reducing the cost of usage and including some of the most pricey features, such as dynamic analysis and that sort of functionality, which makes the difference between different types of tools.
View full review »
SS
Acquisitions Leader at a healthcare company with 10,001+ employees
It does scanning for all virtual machines and other things, but it doesn't do the scanning for containers. It currently lacks the ability to do the scanning on containers. We're asking their product management team to expand this capability to containers.
We want a user-based control and role-based access for developers. We want to give limited access to developers so that it only pertains to the code that they write and scanning of the codes for any vulnerabilities as they're progressing with writing the code. As of now, the interface to give restricted access to the developers is not the best. It gives them more access than what is basically required, but we don't want over-provisioning and over-access.
View full review »
GM - Technology at a outsourcing company with 10,001+ employees
We typically do our bulk uploads of our scans with some automation at the end of the development cycle but the scanning can take a lot of time. If you were doing all of it at regular intervals it would still consume a lot of time. This could procedure could improve.
View full review »
Learn what your peers think about Micro Focus Fortify on Demand. Get advice and tips from experienced pros sharing their opinions. Updated: January 2022.
563,208 professionals have used our research since 2012.