Case Study: SAP achieves more secure code with OpenText Fortify

SAP - Customer Case Study

SAP needed to strengthen its Product Security Strategy by making static code analysis a mandatory part of development, especially for Java and other non-ABAP applications. With decentralized teams and stringent security requirements, SAP needed a way to detect vulnerabilities early and keep software resilient against cyber threats, while protecting customers and the business from financial loss and interruptions.

OpenText implemented Fortify Software Security Center and Fortify Static Code Analyzer across SAP’s development lifecycle, supported by on-site consulting and custom rules. The result was a more secure coding process, faster remediation of vulnerabilities, and improved developer skills; SAP has scanned over 178 million lines of code to date, and OpenText notes that finding issues early significantly reduces fix costs compared with post-release remediation.

SAP

Uwe Sodan

TIP Governance, Code Analysis Team Lead