IT Central Station is now PeerSpot: Here's why

What is your primary use case for Checkmarx?

Miriam Tover - PeerSpot reviewer
Service Delivery Manager at PeerSpot (formerly IT Central Station)

How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

PeerSpot user
2727 Answers

Le Viet - PeerSpot reviewer
Top 5Real User

Checkmarx is used for application security, we can detect the stability and other details on how to fix issues.

reviewer1711191 - PeerSpot reviewer
Real User

I am using it for software assurance focused on security. I am using its latest version.

reviewer1108275 - PeerSpot reviewer
Top 5Real User

We use it for code scanning and security testing for our in-house application development. We are using its latest version.

reviewer932058 - PeerSpot reviewer
Top 20Real User

We are using Checkmarx for application code scanning, such as scanning for different leverages in the application code.

reviewer1646475 - PeerSpot reviewer
Top 20Real User

Checkmarx is used only for static application security testing (SAST), and it can integrate very well with DAST solutions. So both of them are combined into an integrated solution for customers running application security.

reviewer1398084 - PeerSpot reviewer
Real User

We use the solution for scanning the code for security.

reviewer1355637 - PeerSpot reviewer
Top 20Reseller

We're selling their licenses and their technologies. We have on-premises and cloud deployments. Its deployment depends on the customer requirements. It is used for a range of requirements for DevSecOps. It has been deployed to ensure that the development cycle delivers clean and secure code that is vulnerability-free. It is there as a part of the whole compliance and security process.

reviewer1521882 - PeerSpot reviewer
Real User

We are using multiple solutions for application security, and Checkmarx is one of them. We are a client-centric organization, and we are also providing support to clients for application security. Sometimes, we have our own production, and then we scan the customer information and provide application security. For a few clients, it is deployed on the cloud, and for a few customers, it is on-premises.

reviewer1477026 - PeerSpot reviewer
Top 20Reseller

We're more evaluating the solution rather than using it right now. We're resellers and it's something we'd like to offer to our clients.

reviewer1479747 - PeerSpot reviewer
Real User

We use Checkmarx for security vulnerability identification. We are using its latest version. We have a license to upgrade to the latest version. Whenever there is a new version, we update it to the latest version.

reviewer1192836 - PeerSpot reviewer
Top 5Reseller

We onboard clients with the solution. We install the product and do the first scan with them. We help developers with security and the best practices with their applications with this solution.

Antoine Rime - PeerSpot reviewer
Top 20Consultant

We primarily use the solution for static analysis.

reviewer1410597 - PeerSpot reviewer
Top 5Real User

We primarily use Checkmarx for application security and tracking.

reviewer1263726 - PeerSpot reviewer
Top 20LeaderboardReal User

I am in charge of application security and Checkmarx is one of the products that I use in this capacity. We use this product for code scanning and static code analysis.

reviewer1415661 - PeerSpot reviewer
Top 5Real User

We use Checkmarx for static analysis as part of our software development lifecycle. It is very important because it helps us identify the security flaws in the code at a very early stage. Ultimately, this helps in reducing costs.

Cuneyt KALPAKOGLU Phd. - PeerSpot reviewer
Top 5LeaderboardReal User

I am the founder and the chairman of an internationally certified cybersecurity research lab. I have a Ph.D. in cryptology and network security. We are a strategic partner of Checkmarx. Our job is to help them develop solutions. Currently, we are developing some algorithms and strategic solutions for them. Checkmarx informs us about what is happening, in advance, before they launch a product. We are also one of their testers.

Samuel Baguma - PeerSpot reviewer
Top 20Real User

When I had an issue that was causing trouble in my code, I would upload it to Checkmarx to perform static code analysis. I would then study the reports.

reviewer1286010 - PeerSpot reviewer

We use Checkmarx for scanning our source code.

reviewer1375824 - PeerSpot reviewer
Real User

We use this solution to check our systems for any vulnerabilities in our applications. Currently, I'm working on a banking tool, which is aligned with the menu. Our system was created 30 years ago and still is running in the market and doing well. However, currently, there are so many changes happening. Any solution coming into the technology needs to have a security check to ensure everything is safe.

reviewer971370 - PeerSpot reviewer
Top 5LeaderboardReal User

The primary use case is for a white-box penetration testing security. When we work with source code, it's a tool to help us conduct a deep analysis on a source code level. We push the zip file with source code to our own stent with the solution and receive a report. Also, we work with the interface to find the vulnerabilities we may have. The most popular projects for us are the mobile application security assessment. We propose this option to our customers to check source code for iOS and Android mobile applications.

Deepak Kamra - PeerSpot reviewer
Real User

We are using it for static security scanning and static security testing. We also use it for code dependency analysis. We use two of the solution's tools for each variable.

Don Robbins - PeerSpot reviewer
Real User

The primary use that we have for Checkmarx is the evaluation of source code vulnerabilities. We use Git to connect to Checkmarx. We don't use GitHub. We use our own self-hosted Git. We're just using generic Git. One of the biggest thorns in our side is managing that aspect of it. It wouldn't matter if it was GitHub or Bitbucket or any of the other tools that you can use to connect Git to Checkmarx. The issue is the same. The tool is good at telling us what repository we're connected to, but it is horrible in telling us what branch we're connected to.

CyberSecAn08987 - PeerSpot reviewer
Real User

Our primary use case for this solution is SAST, Static Application Security Testing.

Milind Dharmadhikari - PeerSpot reviewer
Real User

My team uses this product extensively for application vulnerability assessment. This solution is for static application security testing and is used within our software development process. As the software developers are creating solutions, they are able to identify vulnerabilities while the application is being written, rather than after the entire development is over. We were interested in having the raw source code scanned, so that was the primary requirement and that is where Checkmarx comes in. We do not need any precompiled libraries, or compiled source code, to be checked by the source code analysis solution. We have a security team that uses this product to scan source code, rather than have the developers handle it. We do not have any developer licenses (i.e. the SDLC Edition). Instead, the security team identifies the vulnerabilities and shares the report with the development team.

EduardoBeltran - PeerSpot reviewer
Real User

We use Checkmarx to review the source code for the external applications that we expose to the cloud or other servers on the internet.

reviewer1002378 - PeerSpot reviewer
Real User

Code scan. We performed periodic static code scans on copies of our Git repository to identify possible vulnerabilities.

Bus432Anly - PeerSpot reviewer
Real User

Our primary use case solution is for code scanning.

Buyer's Guide
June 2022
Learn what your peers think about Checkmarx. Get advice and tips from experienced pros sharing their opinions. Updated: June 2022.
607,178 professionals have used our research since 2012.