Orca Security CNAPP Cloud Security Platform
Orca Security CNAPPExternal reviews
227 reviews
from
and
External reviews are not included in the AWS star rating for the product.
A Powerfull Cloud Security Solutions
What do you like best about the product?
The platform provides both high level and drill down insights for vulnerabilities and misconfigurations in a production environment
What do you dislike about the product?
UI is somehow confusing, sometimes you need to search for what you need
What problems is the product solving and how is that benefiting you?
Orca solution validates your shift left strategy and find where the holes in the process
Recommendations to others considering the product:
A great overall cloud security platform for both cloud assets and endpoint (vms, containers)
Orca, Security in the cloud
What do you like best about the product?
Ease of installation, scanning of containers, security logging (such as brute force attempts), no need to have local account on images. Also how fast they are to listen to customer suggestions, turning them to feature requests, and implementing these.
What do you dislike about the product?
Early on the reporting was a bit weak, as was the SIEM intergration. Due to the support and feature requests, this was resolved pretty early on. The issues really are minor at this point.
What problems is the product solving and how is that benefiting you?
Vulnerability Management was the key item we needed to solve. The ability to assess overall cloud security, auditing, and other features were just great additions.
Awesome support team and easy to deploy
What do you like best about the product?
Ease of deployment and integrations. Great team to work with.
What do you dislike about the product?
Lots of findings to go through for initial triage but that is nothing new.
What problems is the product solving and how is that benefiting you?
Vulnerability management of workloads, cloud security posture
Recommendations to others considering the product:
Awesome tool for vuln management in cloud native environment
Orca Security is building a really nice tool
What do you like best about the product?
The interface is good but not as intuitive as I would expect from a tool like this but you can find what you need in a couple of clicks. Customer support from the other side is great.
What do you dislike about the product?
As mentioned, the interface is modern but not that intuitive. It is a bit hard to find information about a vulnerable package or file location for example in the web GUI.
What problems is the product solving and how is that benefiting you?
With Orca Security we have a nice overview of vulnerable packages, end-of-live operational systems and so without installing extra agents or software on the servers or virtual machines.
Probably the best Cloud Native Application Protection Platform on the market
What do you like best about the product?
Orca's agentless side-scanning techniques mean that all assets are automatically scanned - even if not running. Their dashboards provide an intuitive, easy to digest view of the current state of application security without being swamped by alerts and information. Orca provides an excellent way of producing an inventory of assets - particularly useful for ephemeral assets that are perpetually being created and destroyed. The compliance feature is also useful for auditing purposes. The recently introduced attack paths feature shows graphically how an attacker could gain access and potentially pivot through the system.
What do you dislike about the product?
Because of the way Orca's side-scanning technology works using snapshots, the downside is that the scanning is not performed in real-time so cannot provide true xDR capabilities. It would also be useful if older alerts were automatically dismissed after a while when the vulnerability is no longer detected. This would help to reduce the total number of vulnerabilities and alerts that are displayed in the dashboards.
What problems is the product solving and how is that benefiting you?
Orca solves several problems we regularly face including producing asset inventories, helping with compliance, and providing focussed mitigation of security vulnerabilities. Orca's dashboards provide the necessary insights into the latest threats to allow a more focused application of security resources.
Recommendations to others considering the product:
Orca is a great product that can help with your organization's application security and governance.
Very quick implementation and great visibility.
What do you like best about the product?
Their data posture has been a good update. Further attack path visibility is a great help.
What do you dislike about the product?
Not as much advancement in vulnerability validations as I would like to see but great product.
What problems is the product solving and how is that benefiting you?
Configuration vulnerabilities is a primary business use. On three occasions, Orca identified malware that landed on a server. One occasion it was a completely exposed server that was spun up for weekend testing.
Orca is awesome for multi cloud strategy
What do you like best about the product?
Multicloud
Usability
Risk management
Prioritization scale
Usability
Risk management
Prioritization scale
What do you dislike about the product?
So far it seems Orca does not yet have an advanced CIEM capability
What problems is the product solving and how is that benefiting you?
Cloud security posture management
Vulnerability management
Multicloud security
CWPP
Vulnerability management
Multicloud security
CWPP
Orca Security Review - Cloud Scanning
What do you like best about the product?
The ability for Orca to scan cloud compute instances without agents and Orca's constant updates, including cloud security posture management.
What do you dislike about the product?
There are a lot of sub-menus on the website, and it's hard to discover what you're looking for initially.
What problems is the product solving and how is that benefiting you?
Scanning EC2 instances dynamically without the need for agents. Orca uses AWS account access to scan EC2 instances without agents.
Very Useful tool
What do you like best about the product?
1.It is very quick and easy while deploying.
2.it has SaaS model.
3. Easy to setup.
2.it has SaaS model.
3. Easy to setup.
What do you dislike about the product?
UI can be improved a bit.
Also, I find it's a bit costly for their new technology.
Also, I find it's a bit costly for their new technology.
What problems is the product solving and how is that benefiting you?
It gives full visibility towards our account. We can access, add additional capabilities.
I also use this for vulnerability management.
I also use this for vulnerability management.
Orca Security - very useful tool!
What do you like best about the product?
It is incredibly thorough and scans so many resources. As you don't need to install agents onto all of your instances, it is painless to set up, allowing for quick onboarding.
There is a deep JIRA integration which helps me action findings quickly and to the right team.
The UI is modern and well-designed.
There is a deep JIRA integration which helps me action findings quickly and to the right team.
The UI is modern and well-designed.
What do you dislike about the product?
There is a lot of information presented which can be hard to jump into sometimes, it can talk some time to navigate the product but the vast amount of data and insight is invaluable and outweighs this drawback.
What problems is the product solving and how is that benefiting you?
I work on the infosec team at my company as a Program Manager, I use Orca to assess our vulnerabilities help me prioritize the most important work for the Engineering and Operations teams.
showing 91 - 100