Great product for risk management
Updated June 05, 2020
Great product for risk management
Score 9 out of 10
Vetted Review
Verified User
Modules Used
- Static Analysis (SAST)
- Dynamic Analysis (DAST)
- Penetration Testing
Overall Satisfaction with Veracode
We engage independent vendors to conduct application and infrastructure-level vulnerability scanning and penetration testing on the SaaS platform. Veracode helps us managing risks in compliance with ISO 27001 requirements, as well as meeting clients' expectations. The reporting structure shows maturity in our Information Management System. The static scans help us identify potential problems before the release.
- Reporting
- Support
- Flaw details
- Policy Management
- Compliance
- Penetration test reporting could be more detailed
- Automation was a bit confusing
- More filters could be available under analytics
- Very positive in how we conduct Risk Management
- Provides us with better control over policy requirements
- Remediation of flaws is easy and meets internal stakeholders' expectations
Veracode definitely has a better UI/UX. Veracode dashboard is easy to navigate and provides us with various capabilities in terms of reporting and presentation for internal and external stakeholders. Better reporting and management capability. The use of Policy Control has a superior value when ISO 27001 compliance is at stake.
Do you think Veracode delivers good value for the price?
Yes
Are you happy with Veracode's feature set?
Yes
Did Veracode live up to sales and marketing promises?
Yes
Did implementation of Veracode go as expected?
Yes
Would you buy Veracode again?
Yes