Our main use cases with Checkmarx SAST are currently in the implementation stage where we have utilized integrations with IDEs and have already integrated within the entire organization, which will scan any of the pull or push requests from the GitHub side. This helps us a lot in identifying vulnerabilities in early stages, and the integration within the IDEs helps developers get the results into their IDE itself, making it easier for them to fix vulnerabilities. There are also possibilities that we can integrate with AI as well. In our organization, we utilize multiple programming languages, including Scala, .NET, Python, PHP, Java, JavaScript, Node.js, and Ruby, resulting in a vast language coverage.
Key Account Manager at a tech services company with 11-50 employees
Reseller
Top 20
Sep 5, 2025
I am currently working with Checkmarx SAST as technical partners. Our customers are from insurance and depository backgrounds. Checkmarx SAST is one of the branded solutions, and according to the Magic Quadrant, it's in the leader space. It has a reputation in the market, and many clients are aware of the solution. Our customers are mainly using an on-premise deployment model with Checkmarx SAST. They are using only on-prem because there are some banks and organizations where it's very difficult to sell on cloud due to regulations and bank regulations.
The primary use case of Checkmarx SAST is application security, specifically static application security testing. It is essential and the root of this concept.
Find out what your peers are saying about Checkmarx, Qualys, SonarSource Sàrl and others in Static Application Security Testing (SAST). Updated: January 2026.
SAST is a method designed to detect security vulnerabilities within an application's source code. By analyzing the code structure, SAST identifies potential flaws early in the development cycle, promoting secure coding practices and reducing the risk of security issues in production.
Unlike dynamic testing that examines an application during runtime, SAST operates on static code analysis. This early detection capability is crucial as it enables developers to address vulnerabilities before...
Our main use cases with Checkmarx SAST are currently in the implementation stage where we have utilized integrations with IDEs and have already integrated within the entire organization, which will scan any of the pull or push requests from the GitHub side. This helps us a lot in identifying vulnerabilities in early stages, and the integration within the IDEs helps developers get the results into their IDE itself, making it easier for them to fix vulnerabilities. There are also possibilities that we can integrate with AI as well. In our organization, we utilize multiple programming languages, including Scala, .NET, Python, PHP, Java, JavaScript, Node.js, and Ruby, resulting in a vast language coverage.
I am currently working with Checkmarx SAST as technical partners. Our customers are from insurance and depository backgrounds. Checkmarx SAST is one of the branded solutions, and according to the Magic Quadrant, it's in the leader space. It has a reputation in the market, and many clients are aware of the solution. Our customers are mainly using an on-premise deployment model with Checkmarx SAST. They are using only on-prem because there are some banks and organizations where it's very difficult to sell on cloud due to regulations and bank regulations.
We integrated Checkmarx with our pipelines in Jenkins. We had it fully automated for static security scanning to protect our company against attacks.
The primary use case of Checkmarx SAST is application security, specifically static application security testing. It is essential and the root of this concept.