Great product for risk management
Updated June 05, 2020

Great product for risk management

Anonymous | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User

Modules Used

  • Static Analysis (SAST)
  • Dynamic Analysis (DAST)
  • Penetration Testing

Overall Satisfaction with Veracode

We engage independent vendors to conduct application and infrastructure-level vulnerability scanning and penetration testing on the SaaS platform. Veracode helps us managing risks in compliance with ISO 27001 requirements, as well as meeting clients' expectations. The reporting structure shows maturity in our Information Management System. The static scans help us identify potential problems before the release.
  • Reporting
  • Support
  • Flaw details
  • Policy Management
  • Compliance
  • Penetration test reporting could be more detailed
  • Automation was a bit confusing
  • More filters could be available under analytics
  • Very positive in how we conduct Risk Management
  • Provides us with better control over policy requirements
  • Remediation of flaws is easy and meets internal stakeholders' expectations
Veracode definitely has a better UI/UX. Veracode dashboard is easy to navigate and provides us with various capabilities in terms of reporting and presentation for internal and external stakeholders. Better reporting and management capability. The use of Policy Control has a superior value when ISO 27001 compliance is at stake.
Veracode support is usually accurate and they get back to us quickly. The technical support team is very knowledgeable not only on how Veracode platform works but also in terms of different use cases and clients' expectations. I have always had very positive results when I needed to engage with support and the ability to solve problems and keep track of those issues is amazing.

Do you think Veracode delivers good value for the price?


Are you happy with Veracode's feature set?


Did Veracode live up to sales and marketing promises?


Did implementation of Veracode go as expected?


Would you buy Veracode again?


Veracode helps us comply with ISO requirements and provide clients with the information they need during annual vendor assessment. Results of vulnerability scans and risk assessments are available to users in well-structured reports that are easy to understand. Veracode is an important part of our assurance process and risk management practice.