No more typing reviews! Try our Samantha, our new voice AI agent.
Fortify Software Security Center Logo

Fortify Software Security Center Reviews

Vendor: OpenText
4.0 out of 5
Leave a review

What is Fortify Software Security Center?

Fortify Software Security Center offers comprehensive application security through a centralized console that integrates static and dynamic analysis, making it essential for organizations focused on robust security operations.

Get the Static Application Security Testing (SAST) Buyer's Guide and find out what your peers are saying about Fortify Software Security Center, SonarQube, Snyk and more!
Fortify Software Security Center is the #19 ranked solution in AST tools. PeerSpot users give Fortify Software Security Center an average rating of 8.0 out of 10. Fortify Software Security Center is most commonly compared to SonarQube: Fortify Software Security Center vs SonarQube. Fortify Software Security Center is popular among the large enterprise segment, accounting for 49% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a manufacturing company, accounting for 15% of all views.
Buyer's Guide
Static Application Security Testing (SAST)
April 2026
Get the category report
Helped 892,678 peers since 2012

Featured Fortify Software Security Center reviews

Read more reviews

Fortify Software Security Center mindshare

As of May 2026, the mindshare of Fortify Software Security Center in the Static Application Security Testing (SAST) category stands at 1.5%, up from 0.4% compared to the previous year, according to calculations based on PeerSpot user engagement data.
Static Application Security Testing (SAST) Mindshare Distribution
ProductMindshare (%)
Fortify Software Security Center1.5%
SonarQube15.3%
Checkmarx One9.7%
Other73.5%
Static Application Security Testing (SAST)
 
 
Key learnings from peers

Valuable Features

Fortify Software Security Center offers valuable features like useful reporting, customizable testing against conventions, integration into CI/CD processes, combining static and dynamic analysis, and interoperability with other solutions. Users find the Fortify audit workbench and collaboration module effective for identifying vulnerabilities. WebInspect's macro recording and the ability to update tool rule packs are appreciated. It centralizes analyses, enhancing governance and control, allowing continuous deployment and tracking for improved software quality and compliance standards.
  • "It's very important because they want to scan their source code every day, so we provide CICD integration to our customers so they can auto build and auto test every day, get reports, and fix issues."
  • "The reporting is very useful because you can always view an entire list of the issues that you have."
  • "This is a stable solution at the end of the day."

Room for Improvement

Fortify Software Security Center faces difficulties in implementation and lacks user-friendly processes. Users find the documentation unclear and technical support response times slow. Improvements are needed for integration with tools like Jira. False positives are a concern, and enhanced report saving options would aid in data management. The dashboard could be more intuitive. Some users desire advanced features like trend analysis and greater customization, while others look for reduced false positive rates in newer versions.
  • "We are having issues with false positives that need to be resolved."
  • "The initial setup of this solution is very complex. Specifically, the integration between other parts of the solution is difficult."
  • "The support for Fortify on-premises is the same as for the other products. I would say the support is not good and I would rate it a three out of ten."

Pricing

Fortify Software Security Center's pricing is perceived as high by several users, though some find it fair compared to similar solutions. It's noted as slightly more expensive but justified by the service level. Licensing initially posed verification challenges, later resolved through negotiation. Companies mention scalability and adaptability to specific needs, yet express concerns about the cost in certain regions. On-premises deployment is considered costly by some users.
  • "As a Fortify partner company providing technical support, I find the product expensive in our country, where local, inexpensive products are available."
  • "The solution is priced fair."
  • "This is a costly solution that could be cheaper."

Popular Use Cases

Users primarily utilize Fortify Software Security Center for application security testing, securing application internals, and critical analysis. They aggregate DAS and SAS scan data, store and display Azure data, analyze scan results, and customize dashboards. They use it to scan applications and address bugs, utilizing its intuitive dashboard and connection with sensors and controllers for comprehensive data aggregation. Fortify primarily serves to identify code violations, enhance security, and provide detailed reports for companies prioritizing application security.

Service and Support

Fortify Software Security Center customer service and support receive mixed feedback. Many find responses slow and setup documentation unclear, making it challenging to follow. Some report improvement post-acquisition by OpenText, with increased support channels like forums and live chats. However, several still express dissatisfaction, highlighting the need for more responsive assistance. While some appreciate the professional services and direct support line, others rate the service quality low, mentioning unresolved tickets and reliance on direct contacts.

Deployment

Initial setup experiences with Fortify Software Security Center vary. Some users find it complex, particularly with integration and inadequate support, while others find the process straightforward, requiring one experienced person. Setup durations range from a few weeks to six months. Documentation is praised, although some report needing additional technical expertise due to prerequisites like Java JDK. Installation can take only a couple of hours, suggesting that setup complexity differs based on user expertise.

Scalability

Fortify Software Security Center is scalable, though it relies on adequate licenses. Users find it serves its purpose without hitting capacity. While some users find scaling simple by adding sensors and controllers, others encounter difficulties due to multiple components, rating scalability lower. It is primarily utilized by security teams, with limited extensions to developers. The typical user base varies, ranging from small teams to larger groups, and scaling experiences differ among organizations.

Stability

Fortify Software Security Center is deemed stable, with users expressing satisfaction in its performance. Many note its stability with scores ranging from seven to eight out of ten. It is utilized by prominent US banks and military institutions, highlighting its scalability and reliability. Users report no significant stability issues, though the implementation process is challenging. The stability has left users quite comfortable with its consistent operation.
These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.
Download our Static Application Security Testing (SAST) Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company SizeCount
Small Business3
Midsize Enterprise1
Large Enterprise3
By reviewers
By visitors reading reviews
Company SizeCount
Small Business47
Midsize Enterprise32
Large Enterprise77
By visitors reading reviews

Top industries

By visitors reading reviews
Manufacturing Company
15%
Financial Services Firm
11%
Government
9%
Construction Company
7%
Computer Software Company
6%
Comms Service Provider
5%
Media Company
4%
Retailer
4%
Transportation Company
4%
Performing Arts
3%
Educational Organization
3%
Outsourcing Company
3%
Energy/Utilities Company
3%
Marketing Services Firm
3%
Insurance Company
3%
Real Estate/Law Firm
3%
University
3%
Wellness & Fitness Company
2%
Venture Capital & Private Equity Firm
2%
Healthcare Company
2%
Aerospace/Defense Firm
2%
Consumer Goods Company
1%
Training & Coaching Company
1%
Wholesaler/Distributor
1%
Recreational Facilities/Services Company
1%
Logistics Company
1%
Hospitality Company
1%

Compare Fortify Software Security Center with alternative products

Go!

Learn more about Fortify Software Security Center

Fortify Software Security Center delivers extensive capabilities that facilitate application security testing, code audits, and bug fixes. Its centralized console enhances governance and control, while its interoperability with tools like Kiuwan and Azure strengthens its functionality. The dashboard's intuitive data customization, along with the ability to store and report data on-premises, further complements its integration capabilities. Although improvements in dataset aggregation, integration with tools like Jira, and resolution of false positives are required, its ability to scan and analyze source code to identify security violations is acknowledged.

What are the key features of Fortify Software Security Center?
  • Centralized Console: Streamlines governance and control through combined static and dynamic analysis.
  • Interoperability: Enhances functionality with tools like Kiuwan for comprehensive testing.
  • Customizability: Tailors vulnerability testing to standards such as OWASP Top Ten.
  • Macro Recording: Facilitates multi-factor authentication processes.
  • CI/CD Integration: Ensures seamless integration with development workflows.
  • Collaboration Module: Supports teamwork with clarification on issues.
  • Daily Scanning: Elevates code quality through regular evaluations.
Why should users consider Fortify Software Security Center for ROI?
  • Code Quality Enhancement: Improves coding practices through continuous deployment and daily scanning.
  • Seamless Deployment: Enhances implementation success and mitigates security threats effectively.
  • Customization Flexibility: Offers tailored solutions for overlapping features despite increased costs.
  • Collaboration Efficiency: Boosts teamwork through detailed issue explanations and analysis.

Fortify Software Security Center is adopted in software-driven industries for its robust application security capabilities. Users in technology sectors rely on its static code analysis for auditing and security testing. Its on-premises deployment model and integration with platforms like Azure make it ideal for storing and reporting data, providing customization that aligns with industry standards.

Fortify Software Security Center was previously known as Micro Focus Software Security Center, Application Security Center, HPE Application Security Center, WebInspect.

Fortify Software Security Center customers

Neosecure, Acxiom, Skandinavisk Data Center A/S, Parkeon

Related questions

  • 292
What Application Security Solution Do You Use That Is DevOps Friendly?
  • 39
Which is the most comprehensive open source Web Security Testing tool?
  • 61
What is the best Application Security Testing platform?
  • 54
When evaluating Application Security Testing, what aspect do you think is the most important to look for?
  • 89
SAST vs. DAST: Which is better for application security testing?
  • 64
What tools do you rely on for building a DevSecOps pipeline?
  • 150
What does the Log4j/Log4Shell vulnerability mean for your company?
  • 86
Checkmarx or Veracode. Which should we choose?
  • 176
What are your recommended automated penetration testing tools?
  • 75
What are the OWASP top 10 in 2020?

Product Categories

Product Categories
Static Application Security Testing (SAST)

Popular Comparisons

Popular Comparisons
SonarQube vs Fortify Software Security Center Logo
SonarQube vs Fortify Software Security Center
Snyk vs Fortify Software Security Center Logo
Snyk vs Fortify Software Security Center
Checkmarx One vs Fortify Software Security Center Logo
Checkmarx One vs Fortify Software Security Center
GitLab vs Fortify Software Security Center Logo
GitLab vs Fortify Software Security Center
Veracode vs Fortify Software Security Center Logo
Veracode vs Fortify Software Security Center
Coverity Static vs Fortify Software Security Center Logo
Coverity Static vs Fortify Software Security Center
Acunetix vs Fortify Software Security Center Logo
Acunetix vs Fortify Software Security Center
OpenText Core Application Security vs Fortify Software Security Center Logo
OpenText Core Application Security vs Fortify Software Security Center
OWASP Zap vs Fortify Software Security Center Logo
OWASP Zap vs Fortify Software Security Center
HCL AppScan vs Fortify Software Security Center Logo
HCL AppScan vs Fortify Software Security Center
Semgrep vs Fortify Software Security Center Logo
Semgrep vs Fortify Software Security Center
Qualys Web Application Scanning vs Fortify Software Security Center Logo
Qualys Web Application Scanning vs Fortify Software Security Center
Parasoft SOAtest vs Fortify Software Security Center Logo
Parasoft SOAtest vs Fortify Software Security Center
Cycode vs Fortify Software Security Center Logo
Cycode vs Fortify Software Security Center
GitHub Code Scanning vs Fortify Software Security Center Logo
GitHub Code Scanning vs Fortify Software Security Center
See all alternatives
 
Fortify Software Security Center Reviews Summary
Author infoRatingReview Summary
Chief Innovation Officer at SAGGA5.0I've found Fortify's centralized analysis capabilities and integration with tools like GitLab invaluable, though it's pricey and support lacks. Despite some SAST limitations, it's a mature on-premises solution delivering solid ROI, especially for our clients in Ecuador.
Sales Manager at Pbland4.0As a reseller and user, I find Fortify SSC essential for daily application security scanning, fixing bugs, and improving quality. Its CICD integration is vital for my customers. It's very stable, and I rate it 8/10.
Principal Technical Consultant at EOH5.0I use Fortify Software Security Center on-premises for its intuitive dashboard that aggregates DAS and SAS data. It enhances security by adhering to conventions like OWASP. However, I seek better dataset views and analysis features similar to SIM tools.
Conformity Controller at STET4.0I work with Fortify Software Security Center, which effectively explains security issues and integrates into the CI/CD process for daily testing. However, I've experienced many false positives, likely due to using an outdated version.
General Manager at Inexion Co.4.5We use Fortify Software Security Center to scan and analyze data from Azure. It effectively identifies vulnerabilities, especially with the audit workbench and collaboration module. However, its overlap feature demands costly customization. We chose Fortify for its language support and strong engine.
Application Architect at a tech services company with 10,001+ employees4.0I use Fortify Software Security Center for application security testing. Its valuable feature is the ability to easily download and update rule packs. However, the setup process is quite challenging and could be improved for better user experience.
VP at a tech vendor with 5,001-10,000 employees3.5I use Micro Focus Software Security Center for critical analysis. Its reporting is useful, and setup and stability are good. However, I experience false positives and need better integration and support. I rate it 7/10.
Head Of Information Security at a tech services company with 51-200 employees3.5I find this solution stable and scalable for securing applications, but its implementation is very complex. Technical support is poor with slow responses and unclear documentation, making the costly setup difficult to manage.