...
Let’s say a Customer is considering investing in a new SAST+Software Composition Analysis solution. He was working with Fortify for more than 10 years, hardly managing a large number of False Positives, with no Software Composition Analysis. After determining that it needed a new application security testing system to help with process efficiencies, monitoring capabilities, and application security, the Customer immediately looked towards a niche solution like Security Reviewer. Briefly, the company considered other solutions staying in top of Gartner and Forrester researches, but those solutions deployed legacy capabilities and did not fully meet their needs. The code is also all SaaS, and due to the company's requirements, it could not send source code externally over the cloud. The Customer needed to have source code analysis on-premises, and Security Reviewer easily met that requirement. When facilitating the Security Reviewer deployment, the Customer chose to take an "automatic" approach to challenging manual processes allowing users to focus on more value-driven work instead of analyzing the source code for vulnerabilities.
...