Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Ups and Downs we faced with Orca Security
What do you like best about the product?
I love how Orca brings everything together in one place, making it an excellent tool for someone specializing in vulnerability management. Its ease of use and ease of implementation streamline our work, and the number of features it offers is impressive. Orca has significantly helped us reduce vulnerabilities and address each item effectively. Although Orca sometimes flags any visible item as vulnerable, it’s still one of the best tools I've enountered so far.
The customer support is exceptional; I can get a support representative on a call within five minutes, which only enhances my desire to use it. Their support team has also been incredibly helpful with integrations, which has made the tool even easier to integrate and use frequently. This outstanding support and ease of integration contribute to our high frequency of use, making Orca an invaluable asset in our security toolkit.
The customer support is exceptional; I can get a support representative on a call within five minutes, which only enhances my desire to use it. Their support team has also been incredibly helpful with integrations, which has made the tool even easier to integrate and use frequently. This outstanding support and ease of integration contribute to our high frequency of use, making Orca an invaluable asset in our security toolkit.
What do you dislike about the product?
There are several minor issues in Orca that have accumulated into larger challenges. For example, the same vulnerability path is sometimes duplicated across multiple Orca alert IDs, which leads to confusion. Additionally, when a scan is performed on a server, it doesn't display the exact time the scan was completed, nor does it provide backend visibility into scan failures, making it difficult to troubleshoot assets effectively.
We've submitted multiple feature requests, including support for asset scanning on devices like Fortinet and Ivanti, which our organization heavily relies on but aren’t currently detected by Orca. Furthermore, we occasionally encounter issues with hardening scan reports for specific assets, and pulling an inventory report is challenging due to the vast number of assets—over 3 to 4 million. While it's understandable given the scale, it’s still a limitation. Another significant issue is the inability to fetch more than 10,000 alerts through the API when retrieving data for a particular CVE.
Despite these drawbacks, I appreciate Orca’s efforts to adapt to our needs and continuously improve the tool.
We've submitted multiple feature requests, including support for asset scanning on devices like Fortinet and Ivanti, which our organization heavily relies on but aren’t currently detected by Orca. Furthermore, we occasionally encounter issues with hardening scan reports for specific assets, and pulling an inventory report is challenging due to the vast number of assets—over 3 to 4 million. While it's understandable given the scale, it’s still a limitation. Another significant issue is the inability to fetch more than 10,000 alerts through the API when retrieving data for a particular CVE.
Despite these drawbacks, I appreciate Orca’s efforts to adapt to our needs and continuously improve the tool.
What problems is the product solving and how is that benefiting you?
Orca Security has really helped us tackle some big challenges in managing vulnerabilities and securing our assets. One of the best things is that it gives us full visibility across our cloud environment without needing agents, which saves us a lot of hassle and time. We can deploy it across all our systems quickly, and it scans everything that’s visible in our environment, so we don’t miss any potential issues.
Having all our vulnerability data in one place has been a game-changer. With Orca’s centralized dashboard, it’s much easier to see what’s critical and what needs our attention first, helping us to reduce risks more effectively. It’s streamlined our process, making it a lot easier to track and fix vulnerabilities.
Their customer support has also been fantastic. I can reach someone in minutes if there’s an issue, which is so helpful when you’re trying to keep things running smoothly. Plus, their support team has been great with helping us integrate Orca with our other tools, which has improved our workflow and made us more efficient.
Overall, Orca has made a real difference by giving us a stronger grip on cloud security, helping us manage vulnerabilities more easily, and scaling well to fit our organization’s needs. It feels like they’re really working to meet our specific needs, and that’s been invaluable.
Having all our vulnerability data in one place has been a game-changer. With Orca’s centralized dashboard, it’s much easier to see what’s critical and what needs our attention first, helping us to reduce risks more effectively. It’s streamlined our process, making it a lot easier to track and fix vulnerabilities.
Their customer support has also been fantastic. I can reach someone in minutes if there’s an issue, which is so helpful when you’re trying to keep things running smoothly. Plus, their support team has been great with helping us integrate Orca with our other tools, which has improved our workflow and made us more efficient.
Overall, Orca has made a real difference by giving us a stronger grip on cloud security, helping us manage vulnerabilities more easily, and scaling well to fit our organization’s needs. It feels like they’re really working to meet our specific needs, and that’s been invaluable.
- Leave a Comment |
- Mark review as helpful
The solution is incredible. Easy deployment and full visibility
What do you like best about the product?
The ability to understand the risks of the cloud environment with its main threats and how we can remediate in an automated way.
What do you dislike about the product?
So far no difficulty encountered in usability
What problems is the product solving and how is that benefiting you?
All the visibility and exposure of my environment and the ability through templates to correct in an automated way.
Great product
What do you like best about the product?
It's lightweight, and simple to implement.
What do you dislike about the product?
Getting information on exactly what the impact would be across aws services added some time to implementation and planning
What problems is the product solving and how is that benefiting you?
We have a unified tool for security across our AWS ecosystem
Turnkey Cloud Posture Enhancement
What do you like best about the product?
A straightforward setup enabled risk-based asset and alert capabilities, facilitating prioritization within an hour. Immediate identification of public exposure and misconfigured identity resources alerted threat detection and engineering teams to imminent compromise risks, which were remediated within three days. Context and asset enrichment, coupled with recommended actions, guided the creation of an action plan focused on business capability risk and technical feasibility.
Technical and process implementation support from account team was exceptional and guided rapid adoption and integration to security program.
Technical and process implementation support from account team was exceptional and guided rapid adoption and integration to security program.
What do you dislike about the product?
Although the third-party integration partnership ecosystem is expanding, its adoption was initially constrained. The capabilities available in Azure have been rapidly enhanced, yet there appears to be a preference for releasing updates and features in AWS.
What problems is the product solving and how is that benefiting you?
Single source of truth for cloud based risk to business capabilities. Scaling of cloud posture and compliance management through decentralized ownership.
Orca Cloud Security Solution CNAPP
What do you like best about the product?
In Orca Security console, dashboards, Security Score, Lateral movement all features are great and ease to use. I like the agentless approach and provide finding even in stopped instances is marvelous.
What do you dislike about the product?
not supported on-prem solution in orca security.
What problems is the product solving and how is that benefiting you?
Overall cloud security for our workload on aws, azure gcp related to VA, misconfiguration, lateral movement risk, Data at risk etc..
Orca exceeds expectations as a cloud security solution and back the product up with great support
What do you like best about the product?
SaaS Configuration is incredibly easy, but they also have the capability to support private deployment models as well
Support and turnaround times for requested product functionality are quick
Discovery search feature is great and makes it easy to quickly pull together custom reports
API Security feature does a great job highlighting external exposure risks for cloud application services where other competitors fell short
Coverage of CSP services Inventoried within Orca include even the darker corners of the 1000's of cloud services available
Support and turnaround times for requested product functionality are quick
Discovery search feature is great and makes it easy to quickly pull together custom reports
API Security feature does a great job highlighting external exposure risks for cloud application services where other competitors fell short
Coverage of CSP services Inventoried within Orca include even the darker corners of the 1000's of cloud services available
What do you dislike about the product?
Ui can be a little buggy with the newer features sometimes, but it's never impacted what I needed to get done and it is still by far the best Ui experience amongst it's direct competitors
What problems is the product solving and how is that benefiting you?
I've been able to leverage Orca's Agentless scan results to quickly accelerate our identification and remediation process for vulnerabilities across cloud environments. Whether you're just starting to understand the state of your cloud environments or are looking to speed up your response time to zero day Vulns, Orca helps takes the guess work out of what should be prioritized first with an excellent approach to risk contextualization.
Additionally, their API Security feature does an exceptional job shining light on an underappreciated aspect of cloud security. The Cloud is not a traditional network perimeter and failure to monitor or understand how these cloud provider application services can impact cloud network boundaries can be a costly mistake. This functionality should be on your 'must have' list when evaluating competitors
The way core AWS, Azure and GCP services are named and how they function are all fundamentally unique to each provider, but Orca does a great job highlighting risks specific to each provider while also normalizing some of the terminology across providers so that you don't have to be an expert in the nuances of comparable service's
Additionally, their API Security feature does an exceptional job shining light on an underappreciated aspect of cloud security. The Cloud is not a traditional network perimeter and failure to monitor or understand how these cloud provider application services can impact cloud network boundaries can be a costly mistake. This functionality should be on your 'must have' list when evaluating competitors
The way core AWS, Azure and GCP services are named and how they function are all fundamentally unique to each provider, but Orca does a great job highlighting risks specific to each provider while also normalizing some of the terminology across providers so that you don't have to be an expert in the nuances of comparable service's
We've been using Orca for at least 4 years now in a multitenancy environment
What do you like best about the product?
Really easy to deploy, amazing insight into our cloud environments and ease of reporting integration and remediation, coupled with continuous developmentment and product enhancements.
What do you dislike about the product?
I do not have any dislikes, but I would like to see more SIEM like capability (for example to indentify abnormal behavior from users, etc.) to move closer towards having one integrated platform for cloud VM and MDR.
What problems is the product solving and how is that benefiting you?
Orca helps us by providing visibility and prioritizing our most critical security risks across all of our cloud environments. We can see vulnerabilities, misconfigurations, identity and access management issues, and potential lateral movement risks, which helps us to quickly identify and remediate threats across our entire cloud estate.
Great Product With A Ton of Insight
What do you like best about the product?
It is an easy product to manage and implement. The customer support is also phenomenal. The Orca application will discover all of the issues in your environments.
What do you dislike about the product?
It is a bit confusing to navigate and I do like the legacy ui better but the benefits greatly out weigh this issue.
What problems is the product solving and how is that benefiting you?
It is able to find both AWS/Azure/OCI security concerns and also vulnerabilties associated with assets.
Orca's Insightful Remediation Steps
What do you like best about the product?
Orca has given us the ability to have valuable insight into our cloud environments We are also able to easily have insights into alerts and the remediation steps that are provided are super helpful to assist with fixing an alert It has also been super nice to have the integration into slack to give us a better timeliness with our response times.
What do you dislike about the product?
I honestly do not have anything bad right now
What problems is the product solving and how is that benefiting you?
Orca has helped with their detailed remediation descriptions that helps speed up the process of investigating alerts.
Orca is the best one stop security finding solution
What do you like best about the product?
It has integration with all public cloud and it calculate the score , which helps to priorities the work.
customer support also very good.
customer support also very good.
What do you dislike about the product?
nothing found. it will be better if it create service now ticket automatically for critical and high findings.
What problems is the product solving and how is that benefiting you?
Orca detecting the security findings and vulnerebilities from our public cloud AWS and Azure.
Its calculating score, based on that we priorities the work. also Orca giving the remediations steps, which helps us to solve the finding.
Its calculating score, based on that we priorities the work. also Orca giving the remediations steps, which helps us to solve the finding.
showing 11 - 20