I would rate Legit Security ten out of ten. In my opinion, the team does not require significant maintenance for Legit Security. They log in and review reports on an ongoing basis, and I receive a weekly summary via email. While they utilize the tool constantly, its operation is mostly automated. Once deployed, Legit integrates with GitHub and other code repositories, automatically interacting with any new projects. Organizations researching AppSec programs should consider Legit Security. Two key things about Legit Security are highly valuable to us. Firstly, securing the pipeline is critically important. Secondly, and perhaps even more compelling, Legit's platform has enabled us to shift from a toll gate approach to a guardrail approach. This, in turn, has fostered a deeper partnership between my team and the product engineering team. This improved collaboration allows both teams to work more efficiently and effectively.
I'm a customer and from time to time we'll partner with Legit with case studies and things like that. I've done customer reference calls, however, we haven't developed a direct partnership. Legit comes out of the box with the ability to sort of design secure SDLC practices - that's the policies, the procedures. It's not just a technology. It's a process management tool that kind of comes preloaded with best practices. It gets a company from zero to reasonably sophisticated maturity pretty quickly since you can adopt and pull in the policies and the control points that are available in the platform already without having to start with a blank sheet of paper to write a policy. I'd rate the solution ten out of ten.
Legit Security provides application security posture management platform that secures application delivery from code to cloud and protects an organization's software supply chain from attack. The platform’s unified application security control plane and automated SDLC discovery and analysis capabilities provide visibility and security control over rapidly changing environments and allow security issues to be prioritized based on context and business criticality to improve security team...
I would rate Legit Security ten out of ten. In my opinion, the team does not require significant maintenance for Legit Security. They log in and review reports on an ongoing basis, and I receive a weekly summary via email. While they utilize the tool constantly, its operation is mostly automated. Once deployed, Legit integrates with GitHub and other code repositories, automatically interacting with any new projects. Organizations researching AppSec programs should consider Legit Security. Two key things about Legit Security are highly valuable to us. Firstly, securing the pipeline is critically important. Secondly, and perhaps even more compelling, Legit's platform has enabled us to shift from a toll gate approach to a guardrail approach. This, in turn, has fostered a deeper partnership between my team and the product engineering team. This improved collaboration allows both teams to work more efficiently and effectively.
I rate Legit Security 10 out of 10.
I'm a customer and from time to time we'll partner with Legit with case studies and things like that. I've done customer reference calls, however, we haven't developed a direct partnership. Legit comes out of the box with the ability to sort of design secure SDLC practices - that's the policies, the procedures. It's not just a technology. It's a process management tool that kind of comes preloaded with best practices. It gets a company from zero to reasonably sophisticated maturity pretty quickly since you can adopt and pull in the policies and the control points that are available in the platform already without having to start with a blank sheet of paper to write a policy. I'd rate the solution ten out of ten.