Forrester recognizes Fortify as a leader in static application security testing

by in Security

We’re proud to announce that Micro Focus Fortify has been named a leader in The Forrester Wave : Static Application Security Testing, Q1 2021 report for its holistic application security testing solutions Fortify on Demand and Fortify Static Code Analyzer. Static application security testing (SAST) is a key way that Micro Focus Fortify helps organizations strengthen their cyber resilience and protect their applications by eliminating vulnerabilities earlier in the development lifecycle. 

Forrester recognizes Fortify as a leader in static application security testing.pngForrester evaluated the 12 most significant SAST providers against 28 criteria. In its evaluation Forrester gave Fortify the top score possible in 8 criteria in their analysis of the static application security testing (SAST) market based on current offerings, strategy, and market presence.

I’m proud of the recognition Fortify received, and one criterion really stands out to me: getting the top score possible for Product Vision. This criterion focuses on the ability to help organizations build secure applications, regardless of how and where the application is built. This really speaks to Fortify’s focus on helping developers, and organizations, build secure software fast.

According to the report, Fortify offers strong language support and IDE integrations that identify flaws in real time. Forrester notes that some of Fortify’s key features come from its integration ecosystem that support the developer toolchain, and the parser plug-ins that feed third party tools’ scanning data into Fortify.  Static application security testing is critical as it enables enterprises to know their risk, transform their security posture, and make informed decisions to protect the business.

The developer focus begins with broad language coverage, including accurate support for 27 major languages and their frameworks, with agile updates backed by the industry-leading Software Security Research (SSR) team. This support includes broad vulnerability coverage, including 815 vulnerability categories for SAST that enable compliance with standards such as OWASP Top 10, CWE/SANS Top 25, DISA STIG, and PCI DSS.

I encourage you to check out the full report here: The Forrester Wave : Static Application Security Testing, Q1 2021.


About Micro Focus Fortify

Fortify lets you build secure software fast with an application security platform that automates testing throughout the CI/CD pipeline to enable developers to quickly resolve issues, strengthening their cyber resilience. Fortify static, dynamic, interactive, and runtime security testing technologies are available on premises or as a service, offering organizations the flexibility needed to build an end-to-end software security assurance program.

Looking to join an industry leader filled with passionate problem-solvers on a mission to help organizations protect their applications from the bad guys? Check out our open positions now.

Strengthen your cyber resilience. Protect across your identities, applications and data. Learn more about cyber resilience.

Have technical questions about Fortify? Visit the Fortify Community. Keep up with the latest Tips & Info about Fortify. We’d love to hear your thoughts on this blog. Log in or register to comment below. Or go to the Fortify Users Discussion Board to start a conversation.


Application security