Fortify Software Security Center

Integrate and automate security testing with dev and get complete visibility of application security risks.

Manage software risk across the entire secure SDLC – from development to QA and through production.
Manage software security risk
Manage software security risk

Centralized, comprehensive dashboards and reporting to manage software risk in an organization and point out vulnerability status by application. Learn more.

Integrate with everything
Integrate with everything

Integrations such as IDEs, build tools, code repositories, bug tracking, ticketing systems, and an extensible API make AppSec easier than ever. Learn more.

Collaborate, triage, and fix
Collaborate, triage, and fix

Security and dev teams collaborate, triage, and fix vulnerabilities as they change over time, using one unified view. Learn more.

Leverage machine learning
Leverage machine learning

Use machine learning to automate validation of security issues. Leverage previous audit decisions of Fortify’s knowledge base or your own data. Learn more.

Automate for speed and efficiency
Automate for speed and efficiency

Automatically publish and merge scans and feed results to the entire enterprise via tools such as IDEs, bug trackers, build servers, and more. Learn more.

Ensure software security compliance
Ensure software security compliance

Ensure that all software meets compliance goals for internal and external security mandates. Learn more.

Dive deeper. Discover more.

  • Manage software security risk
    Manage software security risk

    Manage software security risk
    Manage software security risk

    Fortify Software Security Center (SSC) enables organizations to automate all aspects of their application security program by expanding visibility across their entire application security testing program. SSC provides a better way for management, development, and security teams to work together to triage, track, validate, and manage software security activities.

    Integration Ecosystem
    VIDEO

    Learn How to Manage Your SAST with SSC

    Application Security with Fortify – Integrate into the SDLC
  • Integrate with everything
    Integrate with everything

    Integrate with everything
    Integrate with everything

    • Automate security in the CI/CD pipeline with Swagger-supported RESTful APIs, GitHub repo, and plugins for Bamboo, VSTS, and Jenkins. Leverage all major IDEs: Eclipse, Visual Studio, IntelliJ IDEA.
    • Integrate with defect management tools and cover security issues caused by open source components with software component analysis tools integration.
    Integration Ecosystem
    WEB PAGE

    Integration Ecosystem

    Seamless Application Security: Security at the Speed of DevOps
  • Collaborate, triage, and fix
    Collaborate, triage, and fix

    Collaborate, triage, and fix
    Collaborate, triage, and fix

    • Bring security pros, developers, and QA together so they can collaborate to prioritize and resolve application security issues faster.
    • Utilize Audit Workbench to easily navigate to specific issues and drill into the source code details, following rich analysis results. Use visualization and added context for quick, accurate triage of complex security issues.
    Fortify on Demand Finds and Helps Triaging Security Issues
    VIDEO

    Fortify on Demand Finds and Helps Triaging Security Issues

    Fortify Smart View in Audit Workbench
  • Leverage machine learning
    Leverage machine learning

    Leverage machine learning
    Leverage machine learning

    Fortify Audit Assistant predicts the exploitability of raw findings with 97% average accuracy. Audit Assistant amplifies the SAST return on investment by reducing the number of issues needing deep manual examination, identifying relevant issues and removing false positives sooner, and scaling application security with existing resources.

    Increase Efficiency with Automated Auditing of Static Scans with Fortify
    WHITE PAPER

    Increase Efficiency with Automated Auditing of Static Scans with Fortify

    Reduce False Positives with Fortify Audit Assistant
    VIDEO

    Reduce False Positives with Fortify Audit Assistant

    Reduce false positives with Fortify Audit Assistant
  • Automate for speed and efficiency
    Automate for speed and efficiency

    Automate for speed and efficiency
    Automate for speed and efficiency

    Seamlessly launch scans locally from the Fortify platform or via your IDE and CI/CD pipeline.  Build secure software faster and gain valuable insight with a centralized management repository for scan results. Software Security Center (SSC) enables organizations to automate all aspects of their application security program.

    Fortify SSC SonarQube Integration
    VIDEO

    Fortify SSC SonarQube Integration

    Fortify SSC to JIRA bug tracking integration
  • Ensure software security compliance
    Ensure software security compliance

    Ensure software security compliance
    Ensure software security compliance

    • Enable compliance with broad vulnerability coverage, including 800 vulnerability categories for SAST that enable compliance with standards such as OWASP Top 10, CWE/SANS Top 25, DISA STIG, and PCI DSS. 
    • Support for 25+ major languages and their frameworks, with agile updates backed by the industry-leading Software Security Research (SSR) team.
    Learn More
    WEB PAGE

    Fortify Taxonomy: Software Security Errors

    TLT used Fortify on Demand for fast and cost effective app security clearance.

Case Studies

Fortify helps reduce the number of vulnerabilities for Vaunted Group’s customers’ software, lowering the risk of security breaches.

View case study

Microsoft partnered with Fortify on Demand to meet ever-changing threats with flexible defense capabilities.

View case study

SAP uses Fortify to increase security awareness among developers and provide flexibility to customize rules and detect new cyber threats.

View case study
`
release-rel-2019-11-1-hot-fix-3234 | Thu Nov 21 21:47:07 PST 2019
3234
release/rel-2019-11-1-hot-fix-3234
Thu Nov 21 21:47:07 PST 2019