Orca Security CNAPP Cloud Security Platform
Orca Security CNAPPExternal reviews
227 reviews
from
and
External reviews are not included in the AWS star rating for the product.
The basis of my cloud security strategy.
What do you like best about the product?
How easy it was to implement and operationalize. When you're dealing with the cloud agents suck and frankly getting to a point where you have full coverage can be very difficult but not with Orca.
What do you dislike about the product?
The only thing I could possibly say is that the risk categorization takes some getting used to (Compromised, Imminent Compromise, Hazardous)
What problems is the product solving and how is that benefiting you?
Recently I shared with an interested party who asked me this question and I found nine different and unique things that Orca had shown me in just four months.
Review
What do you like best about the product?
Inventory of all resources not just VM's
What do you dislike about the product?
So far there really is not anything notable that we do not like.
What problems is the product solving and how is that benefiting you?
Cloud resource inventory - We cannot secure what we do not know about.
Recommendations to others considering the product:
Do a PoC and it will prove itself by finding things you are missing today.
Up and coming VM Security product
What do you like best about the product?
Exceptionally easy to onboard accounts for cloud providers. Orca enumerates assets throughout the cloud accounts with a simple service account which reduces the likelihood of overlooking assets or of Shadow IT.
What do you dislike about the product?
Vulnerabilities that are remediated either vanish without record or remain with no indication that they have been remediated. It is not very clear when a scan was last run or if a scan is currently running. There were some false positives and some assets were incorrectly marked as being Internet facing.
What problems is the product solving and how is that benefiting you?
We use Orca security to provide vulnerability management and cloud posture management for some AWS accounts.
Agent less solution is the future in security vulnerability and container security monitoring.
What do you like best about the product?
Agent less no installation required. Simple 3 step process to connect the account and start monitoring. Very extensive deep insight into install packages within container. Clear categorization of alerts as Imminent compromises, Hazardous, Informational with color coding for clear visibility. Also builds digital asset inventory for tracking different types cloud based assets ex: S3 buckets, EC2 instances.
Very easy to connect multiple accounts across AWS, Azure, GCP.
Under Vulnerability management some of the key features to highlight are Asset Discovery, Asset Tagging, Network Scanning, Patch Management,Vulnerability Assessment,Web Scanning, Risk Management and Policy Management.
Couple of the key cloud security features to highlight are Endpoint Management,Threat Intelligence,Vulnerability Management,
Intrusion Detection System, Behavioral Analytics, Encryption and Application Security. Ease of integration was one of the reason to consider Orca security solution.
Very easy to connect multiple accounts across AWS, Azure, GCP.
Under Vulnerability management some of the key features to highlight are Asset Discovery, Asset Tagging, Network Scanning, Patch Management,Vulnerability Assessment,Web Scanning, Risk Management and Policy Management.
Couple of the key cloud security features to highlight are Endpoint Management,Threat Intelligence,Vulnerability Management,
Intrusion Detection System, Behavioral Analytics, Encryption and Application Security. Ease of integration was one of the reason to consider Orca security solution.
What do you dislike about the product?
Not real time. This is near real time solution dependent on how frequently scanning is performed. VM specific details if consolidated as actionable insights will be very helpful to narrow our focus to relevant issues (ex: identified affected packages within a container is great, giving link to specific patches will be very helpful.
What problems is the product solving and how is that benefiting you?
We were trying to solve container security challenges. Actively monitoring what is going on within container. Benefit of agent less solution is two fold, 1) Do not have to install agents on the host machine. 2) Effective in monitoring workloads running in managed containers.
Orca security, ability of side-scanning technology examines block storage out of band via a software-as-a-service (SaaS) platform.
Orca security, ability of side-scanning technology examines block storage out of band via a software-as-a-service (SaaS) platform.
Recommendations to others considering the product:
If you are looking for agent less solution. Orca Security is go to solution.
Great visibility to security related server threats in a few minutes deployment
What do you like best about the product?
clientless malware detection without any need to operate or maintenance agents, deployments and operations
What do you dislike about the product?
The downsides of using Orca Security is that it is not a real-time so threats might exist between scans
What problems is the product solving and how is that benefiting you?
Malware detection on servers, internal and external vulnerability scans, containers scans, hardening OS and containers, AWS governance.
Great value add for our company
What do you like best about the product?
Ease of use, exportability, user experience
What do you dislike about the product?
I'd prefer if we can perform our own manual scans.
What problems is the product solving and how is that benefiting you?
Cloud security and hardening
Recommendations to others considering the product:
Definitely give it a shot and see if it fits for your use case.
Cloud Security
What do you like best about the product?
Agentless install makes it very easy to deploy and Orca releases new features on a monthy basis. The newer consolidated host view has a good over view of the security posture of any particular cloud asset.
What do you dislike about the product?
The UI can be confusing at times and needs to be simplified.
What problems is the product solving and how is that benefiting you?
I use Orca for complete visibility in my cloud from the configuration settings in the cloud to the vulnerabilities in the VM's and containers.
Live oak orca
What do you like best about the product?
Visibility the product provides, side scanning does not affect production, deployed product in 10mins.
What do you dislike about the product?
No issue to note as of today. In environment scanning does cost, but it is insignificant
What problems is the product solving and how is that benefiting you?
Visibility and vulnerability management for all cloud resorces
Fast and Effective
What do you like best about the product?
The ability to quickly onboard and assess cloud accounts
What do you dislike about the product?
Reporting and user interface are immature, but improving
What problems is the product solving and how is that benefiting you?
Cloud vulnerability and configuration compliance; ease of use compared
showing 101 - 109