Each bank may have its own core banking applications with proprietary support for different programming languages. This makes Fortify particularly relevant and advantageous in those cases.
Fortify supports most languages. Other tools are limited to Java and other typical languages. IBM's solutions aren't flexible enough to support any language. Fortify also integrates with lots of tools because it has API support.
The most valuable feature of Micro Focus Fortify on Demand is the information it can provide. There is quite a lot of information. It can pinpoint right down to where the problem is, allowing you to know where to fix it. Overall the features are easy to use, you don't have to be a coder. You can be a manager, or in IT operations, et cetera, anyone can use it. It is quite a well-rounded functional solution.
Security Information Manager at a tech services company with 10,001+ employees
Real User
2022-01-28T17:29:40Z
Jan 28, 2022
The features that I have found most valuable include its security scan, the vulnerability finds, and the web interface to search and review the issues.
R&D at a tech services company with 51-200 employees
Real User
2022-01-04T21:41:00Z
Jan 4, 2022
There is not one feature we find valuable. The idea is to integrate the solution in DevSecOps which we were able to do. We were working with a different solution called SolarCloud previously and it was limited. We are trying to find the right level of security for our needs.
Once we have our project created with our application pipeline connected to the test scanning, it only takes two minutes. The report explaining what needs to be modified related to security and vulnerabilities in our code is very helpful. We are able to do static and dynamic code scanning.
It is a very easy tool for developers to use in parallel while they're doing the coding. It does auto scanning as we are progressing with the CI/CD pipeline. It has got very simple and efficient API support.
One of the top features is the source code review for vulnerabilities. When we look at source code, it's hard to see where areas may be weak in terms of security, and Fortify on Demand's source code review helps with that.
Project Analyst at a financial services firm with 1,001-5,000 employees
Real User
2020-10-30T08:22:22Z
Oct 30, 2020
The most valuable feature is the capacity to be able to check vulnerabilities during the development process. The development team can check whether the code they are using is vulnerable to some type of attack or there is some type of vulnerability so that they can mitigate it. It helps us in achieving a more secure approach towards internal applications.
It is an intuitive solution. It gives all the information that a developer needs to remediate a vulnerability in the coding process. It also gives you some examples of how to remediate a vulnerability in different programming languages. This solution is pretty much what we were searching for.
Almost all the features are good. This solution has simplified designing and architecting for our solutions. We were early adopters of microservices.
Their documentation is good. You don't need to put in much effort in setting it up and learning stuff from scratch and start using it. The learning curve is not too much.
Production Manager for Nearshore SWaT at GFI Portugal
Real User
Top 20
2020-08-23T08:17:00Z
Aug 23, 2020
The feature that I find the most useful is being able to just see the vulnerabilities online while checking the code and then checking suggestions for fixing them.
The solution scans our code and provides us with a dashboard of all the vulnerabilities and the criticality of the vulnerabilities. It is very useful that they provide right then and there all the information about the vulnerability, including possible fixes, as well as some additional documentation and links to the authoritative sources of why this is an issue and what's the correct way to deal with it.
Enterprise Systems Analyst at a manufacturing company with 10,001+ employees
Real User
2018-08-14T07:42:00Z
Aug 14, 2018
One of the valuable features is the ability to submit your code and have it run in the background. Then, if something comes up that is more specific, you have the security analyst who can jump in and help, if needed.
Fortify on Demand is a web application security testing tool that enables continuous monitoring. The solution is designed to help you with security testing, vulnerability management and tailored expertise, and is able to provide the support needed to easily create, supplement, and expand a software security assurance program without the need for additional infrastructure or resources.
Fortify on Demand Features
Fortify on Demand has many valuable key features. Some of the most useful ones...
It helps deploy and track changes easily as per time-to-time market upgrades.
What stands out to me is the user-friendliness of each feature.
The solution is very fast.
Each bank may have its own core banking applications with proprietary support for different programming languages. This makes Fortify particularly relevant and advantageous in those cases.
Provides good depth of scanning and we get good results.
We have the option to test applications with or without credentials.
The solution is user-friendly.
Speed and efficiency are great features.
The most valuable features of Micro Focus Fortify on Demand have been SAT analysis and application security.
Fortify on Demand can be scaled very easily.
While using Micro Focus Fortify on Demand we have been very happy with the results and findings.
Fortify supports most languages. Other tools are limited to Java and other typical languages. IBM's solutions aren't flexible enough to support any language. Fortify also integrates with lots of tools because it has API support.
The vulnerability detection and scanning are awesome features.
The SAST feature is the most valuable.
The most valuable feature of Micro Focus Fortify on Demand is the information it can provide. There is quite a lot of information. It can pinpoint right down to where the problem is, allowing you to know where to fix it. Overall the features are easy to use, you don't have to be a coder. You can be a manager, or in IT operations, et cetera, anyone can use it. It is quite a well-rounded functional solution.
The features that I have found most valuable include its security scan, the vulnerability finds, and the web interface to search and review the issues.
There is not one feature we find valuable. The idea is to integrate the solution in DevSecOps which we were able to do. We were working with a different solution called SolarCloud previously and it was limited. We are trying to find the right level of security for our needs.
Once we have our project created with our application pipeline connected to the test scanning, it only takes two minutes. The report explaining what needs to be modified related to security and vulnerabilities in our code is very helpful. We are able to do static and dynamic code scanning.
It is a very easy tool for developers to use in parallel while they're doing the coding. It does auto scanning as we are progressing with the CI/CD pipeline. It has got very simple and efficient API support.
The most valuable features are the server, scanning, and it has helped identify issues with the security analysis.
The UL is easy to use compared to that of other tools, and it is highly reliable. The findings provide a lower number of false positives.
The solution saves us a lot of money. We're trying to reduce exposure and costs related to remediation.
One of the top features is the source code review for vulnerabilities. When we look at source code, it's hard to see where areas may be weak in terms of security, and Fortify on Demand's source code review helps with that.
Being able to reduce risk overall is a very valuable feature for us.
It's a stable and scalable solution.
The most valuable feature is the capacity to be able to check vulnerabilities during the development process. The development team can check whether the code they are using is vulnerable to some type of attack or there is some type of vulnerability so that they can mitigate it. It helps us in achieving a more secure approach towards internal applications.
It is an intuitive solution. It gives all the information that a developer needs to remediate a vulnerability in the coding process. It also gives you some examples of how to remediate a vulnerability in different programming languages. This solution is pretty much what we were searching for.
Almost all the features are good. This solution has simplified designing and architecting for our solutions. We were early adopters of microservices.
Their documentation is good. You don't need to put in much effort in setting it up and learning stuff from scratch and start using it. The learning curve is not too much.
The feature that I find the most useful is being able to just see the vulnerabilities online while checking the code and then checking suggestions for fixing them.
The most valuable feature is that it connects with your development platforms, such as Microsoft Information Server and Jira.
Fortify on Demand is easy to use and the reporting is good.
This product is top-notch solution and the technology is the best on the market.
t's a cloud-based solution, so there was no installation involved.
The static code analyzers are the most valuable features of this solution.
The solution scans our code and provides us with a dashboard of all the vulnerabilities and the criticality of the vulnerabilities. It is very useful that they provide right then and there all the information about the vulnerability, including possible fixes, as well as some additional documentation and links to the authoritative sources of why this is an issue and what's the correct way to deal with it.
I do not remember any issues with stability.
It improves future security scans.
One of the valuable features is the ability to submit your code and have it run in the background. Then, if something comes up that is more specific, you have the security analyst who can jump in and help, if needed.