HCL AppScan Reviews

It is an application for security assessment or scanning for static environments.

With all customers, it is performing well.

The static scans are good, and the SaaS as well. 

There is not a central management for static and dynamic. This would be great, at least with competition such as Micro Focus.

The technical support is knowledgeable. However, our issue is not enough resources supporting our region. For Dubai, which is in the Gulf region, we need more technical support resources.

The initial setup is not that complex.

Most important criteria when choosing to partner with a company: I started working with IBM only one year back. When I started a partnership with them, IBM had the security portfolio which covered most of the region where my customers were. IBM has a name with the support along the quality of its products.

We use it for all website development and web-based applications, as part of our development test cycle and QA.

We also routinely use it on existing applications in production because, in terms of security and vulnerabilities, some of the latter exist on some of the platforms that we run. So we run it from time to time, to do some security checks, etc.

It has certainly improved our organization In terms of quality of solutions that are developed. 

I think it's easy to use and gives back some pretty good results, certainly for vulnerabilities.

I haven't actually used it personally, so I'm not sure that I would be able to answer this.

It's pretty stable.

It's scalable. We just did a review of the product itself, and it's something that we've decided to keep and continue using.

Support: I'll just leave it at "good."

This particular product is one of the easier products to set up.

We've had a relationship for some time, over 20 years now, with IBM. It's really about the products, in terms of what we are looking for. That's really the deciding factor in deciding whether we'd use them for a particular solution.