Customer stories

Public Sector System Integrator

Fortify delivers effective and streamlined application security within air-gapped environment

Products and services

Outcomes

Successful track record in air-gapped environments
Full integration with existing DevOps tools and processes
Effective partnership with Professional Services

Challenge

Introduce application security in the software development cycle without slowing down delivery or compromising the security of an air-gapped environment.

Details

Application security within air-gapped environments

It helps defense and federal government revolutionize the way end users address complex challenges and protect against evolving threats. The software development teams leverage an agile development methodology and, because of the sensitive nature of the solutions and its clients, all development takes place in an air-gapped environment, where security is maintained by physical isolation from unsecured networks.

Development cycles are generally becoming much faster, and software is becoming more complex. When the organization was looking for a solution to embed application security early in the development cycle, OpenText was one of the companies it turned to. With a significant percentage of defense organizations and federal government bodies already leveraging Fortify within their DevOps process to create a DevSecOps environment, it was a natural choice. The Software Asset Manager for the organization explains further: “Having that relevant experience within our specific industry means that we don’t have to worry about how Fortify will perform in an air-gapped environment. This requirement turned out to be an issue for quite a few of the other solutions we investigated.”

We could see straight away that Fortify was expert at the job it is designed to do: scanning application code to ensure robust code and quality applications. It is recognized as a market leader by most analysts and has an extensive and successful track record within our industry.

Software Asset Manager
Public sector system integrator

Effective Fortify integration enables development collaboration

The team decided on a proof of concept (POC) that included Fortify, as well as other alternatives. “OpenText really shone during the POC,” recalls the Software Asset Manager. “The team was completely engaged in understanding our objectives and showing us the value of Fortify. To streamline the process, we needed some custom compiler work done and OpenText Professional Services immediately assisted us. It really built our confidence level. When our usage requirements changed in the middle of the POC, we initially thought OpenText might not be successful because the current proposal did not meet our budget requirements. However, I was impressed when OpenText procurement restructured the deal with a more flexible licensing model that considered our usage requirements more carefully. The Fortify Scan Machine model allows installation of Fortify Static Code Analyzer and WebInspect. This combination perfectly meets our use case and moved OpenText firmly back in the game.”

Fortify is designed to integrate with the tools already in use within a software development ecosystem. In this case, C++ was popular, and Visual Studio and Eclipse were used as IDEs by many developers, with Jenkins as the open-source automation server. Seamless Fortify integration within the agile continuous integration/continuous deployment (CI/CD) environment means issues can be found early and often and are fixed as part of the development testing cycles. Multiple development teams can collaborate on the same code, using a combination of static and dynamic code scanning. “Our developers quickly understood the value of Fortify and found the code scanning process easy and straightforward without causing any delay to the software delivery,” says the Software Asset Manager.

The team was completely engaged in understanding our objectives and helping us to see the value of Fortify. To streamline the process, we needed some custom compiler work done and OpenText Professional Services immediately assisted us. It really built our confidence level.

Software Asset Manager
Public sector system integrator

Creating secure software with flexibility and speed

The organization entered into a three-year agreement with OpenText. The experience with OpenText Professional Services during the POC was so positive that the team decided on a PS service engagement to install, configure, and manage the handover of Fortify to the development teams. This ensured the best start to the implementation.

The Software Asset Manager concludes: “We could see straight away that Fortify was expert at the job it is designed to do: scanning application code to ensure robust and quality applications. It is recognized as a market leader by most analysts and has an extensive and successful track record within our industry. What we were not necessarily expecting, however, was the professionalism and expertise we encountered in working with OpenText. We appreciated the flexibility when we were negotiating the final deal and the support we received to make the POC a success. With Fortify, we now feel very confident that our developers can find and fix security flaws during every stage of the development cycle, creating secure software with more flexibility and speed.”

Aviator AIAviator AI

Analytics CloudAnalytics Cloud

Data Lakehouse & AnalyticsData Lakehouse & Analytics

BI, Visualization & ReportingBI, Visualization & Reporting

eDiscovery with AIeDiscovery with AI

OpenText™ Aviator Search

Business Network CloudBusiness Network Cloud

Supply Chain AutomationSupply Chain Automation

B2B IntegrationB2B Integration

Secure CollaborationSecure Collaboration

Supply Chain TraceabilitySupply Chain Traceability

Supply Chain InsightsSupply Chain Insights

Industry Applications and ServicesIndustry Applications and Services

OpenText™ Business Network Aviator

Content CloudContent Cloud

Document ManagementDocument Management

AI Content ManagementAI Content Management

Capture and Intelligent Document ProcessingCapture and Intelligent Document Processing

Process AutomationProcess Automation

Business IntegrationsBusiness Integrations

Information ArchivingInformation Archiving

Industry SolutionsIndustry Solutions

Information GovernanceInformation Governance

OpenText™ Content Aviator

Cybersecurity CloudCybersecurity Cloud

Application Security TestingApplication Security Testing

Data SecurityData Security

Security OperationsSecurity Operations

Identity and Access ManagementIdentity and Access Management

Digital Forensics and Incident ResponseDigital Forensics and Incident Response

OpenText™ Cybersecurity Aviator

DevOps CloudDevOps Cloud

DevOps PlatformDevOps Platform

Functional TestingFunctional Testing

PPM and Strategic Portfolio ManagementPPM and Strategic Portfolio Management

Quality ManagementQuality Management

Performance EngineeringPerformance Engineering

OpenText™ DevOps Aviator

Experience CloudExperience Cloud

Web & Mobile ExperiencesWeb & Mobile Experiences

Contact Center AnalyticsContact Center Analytics

Messaging & FaxMessaging & Fax

Customer CommunicationsCustomer Communications

Digital Asset ManagementDigital Asset Management

Customer Journey and DataCustomer Journey and Data

OpenText™ Experience Aviator

Observability and Service Management CloudObservability and Service Management Cloud

Service ManagementService Management

ObservabilityObservability

AIOpsAIOps

Automation and Vulnerability RemediationAutomation and Vulnerability Remediation

CMDB and Asset ManagementCMDB and Asset Management

OpenText™ Service Management Aviator

OpenText™ ThrustOpenText™ Thrust

OpenText™ Thrust bundleOpenText™ Thrust bundle

OpenText™ Aviator Thrust

Device and Data ProtectionDevice and Data Protection

Enterprise Data Backup and Disaster Recovery SolutionsEnterprise Data Backup and Disaster Recovery Solutions

Unified Endpoint Management ToolsUnified Endpoint Management Tools

Hybrid Work, Email, and Team Collaboration Hybrid Work, Email, and Team Collaboration

Email Archiving, E-Discovery, Data Archiving ComplianceEmail Archiving, E-Discovery, Data Archiving Compliance

Connectivity and Document ManagementConnectivity and Document Management

Information reimaginedInformation reimagined

Artificial IntelligenceArtificial Intelligence

IndustryIndustry

Enterprise ApplicationsEnterprise Applications

Your journey to successYour journey to success

Customer SupportCustomer Support

Customer Success ServicesCustomer Success Services

Consulting ServicesConsulting Services

Cloud MigrationCloud Migration

NextGen ServicesNextGen Services

Latest product releasesLatest product releases

Learning ServicesLearning Services

Managed ServicesManaged Services

Find an OpenText PartnerFind an OpenText Partner

Find a Partner SolutionFind a Partner Solution

Grow as a PartnerGrow as a Partner

Become a Partner

Resource libraryResource library

Aviator AI

Analytics Cloud

Data Lakehouse & Analytics

BI, Visualization & Reporting

eDiscovery with AI

Business Network Cloud

Supply Chain Automation

B2B Integration

Secure Collaboration

Supply Chain Traceability

Supply Chain Insights

Industry Applications and Services

Content Cloud

Document Management

AI Content Management

Capture and Intelligent Document Processing

Process Automation

Business Integrations

Information Archiving

Industry Solutions

Information Governance

Cybersecurity Cloud

Application Security Testing

Data Security

Security Operations

Identity and Access Management

Digital Forensics and Incident Response

DevOps Cloud

DevOps Platform

Functional Testing

PPM and Strategic Portfolio Management

Quality Management

Performance Engineering

Experience Cloud

Web & Mobile Experiences

Contact Center Analytics

Messaging & Fax

Customer Communications

Digital Asset Management

Customer Journey and Data

Observability and Service Management Cloud

Service Management

Observability

AIOps

Automation and Vulnerability Remediation

CMDB and Asset Management

OpenText™ Thrust

OpenText™ Thrust bundle

Device and Data Protection

Enterprise Data Backup and Disaster Recovery Solutions

Unified Endpoint Management Tools

Hybrid Work, Email, and Team Collaboration

Email Archiving, E-Discovery, Data Archiving Compliance

Connectivity and Document Management

Information reimagined

Artificial Intelligence

Industry

Enterprise Applications

Your journey to success

Customer Support

Customer Success Services

Consulting Services

Cloud Migration

NextGen Services

Latest product releases

Learning Services

Managed Services

Find an OpenText Partner

Find a Partner Solution

Grow as a Partner

Resource library

Blogs

Events

Communities

Customer stories

OpenText Navigator

Marketplace