Orca Security CNAPP Cloud Security Platform
Orca Security CNAPPExternal reviews
227 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Very informative tool and helps to protect the cloud environment
What do you like best about the product?
The graphic UI and the ability to provide insights about vulnerabilities on OS level without installing an agent
What do you dislike about the product?
Integrations might take a bout time to configure
What problems is the product solving and how is that benefiting you?
Cloud security posture management, ability to oversee everything that happens on cloud infra
Orca - The Cloud Security Posture Management Tool that does more than you could ever imagine!
What do you like best about the product?
The support from the team is incredible, the dashboard and tool is incredibly user friendly, and the new developments are on point to what is needed to protect your cloud environment.
What do you dislike about the product?
There is nothing to dislike; the team is accommodating on price. They also listen to their customer on development opportunities. Will be keen to see what integrations occur in the future.
What problems is the product solving and how is that benefiting you?
It gives our organization visibility into our cloud security posture. On top of that, it also helps the security team identify where an asset is and who owns it, driving efficiencies in threat remediation.
Great product for GCP, better for AWS.
What do you like best about the product?
The regular sync with their CSM and the fact they follow up with any false positives or bugs you find.
What do you dislike about the product?
GCP is not the focus given AWS has a bigger marketshare. However, they do continue to improve the product and add features.
What problems is the product solving and how is that benefiting you?
They remove the need for an agent based approach to vulnerability discovery. They also add value by finding configuration issues with your cloud environment.
Orca Clous security tool is efficient and highlights actionable risks
What do you like best about the product?
Easy to interpret risk ratings and severity levels. Overall compliance check and industry-standard risk scoring.
The news section highlights emerging threats/exploits etc. and highlights if any assets are affected.
The news section highlights emerging threats/exploits etc. and highlights if any assets are affected.
What do you dislike about the product?
No support for AliCloud and no Ci/CD integration. No runtime protection for containers.
What problems is the product solving and how is that benefiting you?
There are rapidly progressing in enhancing their platform improving visibility and adding new feature sets including Shiftleft which is currently in beta stage.
Orca's SideScanning technology is a game changer.
What do you like best about the product?
Orca's SideScanning technology is excellent. The fact that it doesn't require an agent and is still able to provide as much insight as it does is truly amazing.
What do you dislike about the product?
Orca needs to figure out how to separate the wheat from the chaff. There are always a lot of vulnerabilities that appear in our console from old kernel versions or something that has already been patched that we're still getting alerts on.
What problems is the product solving and how is that benefiting you?
Orca is solving our visibility issue. Without it, we wouldn't have been able to triage log4j, see malware in our environments, investigate vulnerable cloud instances, and a range of other basic but tricky cloud problems.
Recommendations to others considering the product:
If you need a tool to open up your level of visibility with very little overhead, with an extremely easy setup process, Orca is the tool. However, if you need a tool to take action for you on a security incident, Orca will not do that for you.
A great All-In-One and easy to set solution to start addressing Cloud security.
What do you like best about the product?
The SaaS version of the product is easy to set up and provides a great single pane of glass consolidated overview of multiple Public Cloud environments.
Orca's prioritization engine based on vulnerability exposure is particularly relevant for younger and less-cyber mature organizations.
A very flexible query language with automation capabilities.
The pricing model is reasonable.
The customer success team is very attentive to our needs and feedback.
A product which is constantly evolving the current platform is already much more advanced and feature-rich than when we started using it a year ago.
Orca's prioritization engine based on vulnerability exposure is particularly relevant for younger and less-cyber mature organizations.
A very flexible query language with automation capabilities.
The pricing model is reasonable.
The customer success team is very attentive to our needs and feedback.
A product which is constantly evolving the current platform is already much more advanced and feature-rich than when we started using it a year ago.
What do you dislike about the product?
Orca's agentless technology provides less visibility on systems' activity such as applications loaded in memory.
Monitoring for Kubernetes and Docker vulnerabilities and misconfigurations could be more developed.
The solution is not as mature on GCP as AWS, they usually start rolling new dashboards and detection rules for AWS and it eventually gets adapted to the other Cloud providers.
As of today lack of a customer community or advisory board.
Monitoring for Kubernetes and Docker vulnerabilities and misconfigurations could be more developed.
The solution is not as mature on GCP as AWS, they usually start rolling new dashboards and detection rules for AWS and it eventually gets adapted to the other Cloud providers.
As of today lack of a customer community or advisory board.
What problems is the product solving and how is that benefiting you?
Gaining visibility into our live running Infrastructure and detecting vulnerable components that could lead the path to a cyber attack.
We didn't have any vulnerability management capabilities a year ago, Orca served as one of our stepping stones to prioritize and start mitigating.
We didn't have any vulnerability management capabilities a year ago, Orca served as one of our stepping stones to prioritize and start mitigating.
Recommendations to others considering the product:
After having tested many different solutions, I consider Orca as the most adapted for mid-size/scale-up businesses with a small security team and a limited budget.
If you subscribe to the product I would suggest relaying demands to your customer success manager for a customer community. I deem Orca will set up a Slack channel and website+events with their customers at some point but right now that's missing to exchange use cases.
If you subscribe to the product I would suggest relaying demands to your customer success manager for a customer community. I deem Orca will set up a Slack channel and website+events with their customers at some point but right now that's missing to exchange use cases.
A Powerfull Cloud Security Solutions
What do you like best about the product?
The platform provides both high level and drill down insights for vulnerabilities and misconfigurations in a production environment
What do you dislike about the product?
UI is somehow confusing, sometimes you need to search for what you need
What problems is the product solving and how is that benefiting you?
Orca solution validates your shift left strategy and find where the holes in the process
Recommendations to others considering the product:
A great overall cloud security platform for both cloud assets and endpoint (vms, containers)
Orca, Security in the cloud
What do you like best about the product?
Ease of installation, scanning of containers, security logging (such as brute force attempts), no need to have local account on images. Also how fast they are to listen to customer suggestions, turning them to feature requests, and implementing these.
What do you dislike about the product?
Early on the reporting was a bit weak, as was the SIEM intergration. Due to the support and feature requests, this was resolved pretty early on. The issues really are minor at this point.
What problems is the product solving and how is that benefiting you?
Vulnerability Management was the key item we needed to solve. The ability to assess overall cloud security, auditing, and other features were just great additions.
Awesome support team and easy to deploy
What do you like best about the product?
Ease of deployment and integrations. Great team to work with.
What do you dislike about the product?
Lots of findings to go through for initial triage but that is nothing new.
What problems is the product solving and how is that benefiting you?
Vulnerability management of workloads, cloud security posture
Recommendations to others considering the product:
Awesome tool for vuln management in cloud native environment
Orca Security is building a really nice tool
What do you like best about the product?
The interface is good but not as intuitive as I would expect from a tool like this but you can find what you need in a couple of clicks. Customer support from the other side is great.
What do you dislike about the product?
As mentioned, the interface is modern but not that intuitive. It is a bit hard to find information about a vulnerable package or file location for example in the web GUI.
What problems is the product solving and how is that benefiting you?
With Orca Security we have a nice overview of vulnerable packages, end-of-live operational systems and so without installing extra agents or software on the servers or virtual machines.
showing 91 - 100