Orca Security CNAPP Cloud Security Platform
Orca Security CNAPPExternal reviews
227 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Orca Security is an excellent tool. Very intuitive and effective.
What do you like best about the product?
The ease of use of the tool. It is very helpful.
What do you dislike about the product?
So far, I have nothing to say. Orca Security is a good tool
What problems is the product solving and how is that benefiting you?
Orca Security identifies, prioritizes and remediates security risks. It is providing better security for my company.
An invaluable tool for taming our cloud estate
What do you like best about the product?
When we started using Orca, our cloud estate was in disarray. Our developers had run wild. Before making a run at a disciplined environment, our users had tinkered and deployed in their individual accounts and in our shared production environment. After a couple of years of wild growth, we were introduced to Orca. After an incredibly easy setup, Orca immediately brought into focus how seriously exposed some of our assets were. We were able to address these quickly. We even caught a live breach in our sandbox environment during our evaluation period!
So the best part of Orca is the tool itself, its ease of use and detail. But a close second is the people behind it. Our cadence calls keep us informed and give us a chance to provide feedback and ask questions -- to which there are always fast answers. In our case, these have led to a few product improvements that have made Orca even better.
So the best part of Orca is the tool itself, its ease of use and detail. But a close second is the people behind it. Our cadence calls keep us informed and give us a chance to provide feedback and ask questions -- to which there are always fast answers. In our case, these have led to a few product improvements that have made Orca even better.
What do you dislike about the product?
It's hard to find fault with a tool that has helped us so much. At first, I found the interface a little unwieldy and confusing, but continued use led to clarity and comfort.
What problems is the product solving and how is that benefiting you?
- Telling us where serious (and minor) security holes exist
- Locating and identifying unused assets that can be removed (reducing those AWS and Google Cloud bills!)
- Enumerating over-permitted users, groups and roles
- Spelling out (via attack vectors) exactly how an alerting asset can lead to exposure
- Near future: Providing compliance guidance
- Locating and identifying unused assets that can be removed (reducing those AWS and Google Cloud bills!)
- Enumerating over-permitted users, groups and roles
- Spelling out (via attack vectors) exactly how an alerting asset can lead to exposure
- Near future: Providing compliance guidance
Easy to use, comprehensive platform
What do you like best about the product?
The onboarding experience is simple and the initial results are available very fast. The remediations are reflected within 24 hrs.
What do you dislike about the product?
Multisubscription onboarding is not super straight forward
What problems is the product solving and how is that benefiting you?
The solution provides visibility into the risks that exist with cloud implementations.
Great product with great support
What do you like best about the product?
1. Deployment & integration - easy to deploy in all of your cloud accounts no matter if AWS/Azure.
2. Support - technical support are on call and ready to provide the user with anything he might have on his mind and also open jira requests on their side to fix/add features.
2. Support - technical support are on call and ready to provide the user with anything he might have on his mind and also open jira requests on their side to fix/add features.
What do you dislike about the product?
1. Bugs - there are some bugs in a few features that are a bit confusing but until I report about it its already fixed or requested already via jira
2. network exposure - need some work on the graphical side and network exposure side for inventory and architecture diagrams
2. network exposure - need some work on the graphical side and network exposure side for inventory and architecture diagrams
What problems is the product solving and how is that benefiting you?
overall vulnerabilities management in the cloud derives from old packages and bad hygiene of infrastructure configurations.
Also dealing with compliance frameworks and being mindful about fixing related issues.
Also dealing with compliance frameworks and being mindful about fixing related issues.
Great vulnerability management platform
What do you like best about the product?
Orca Security is revolutionizing cloud security with its innovative features, including the newly introduced shift-left functionality and AI-driven analysis. This shift-left approach allows for early scanning of code security, significantly reducing vulnerabilities in the development phase. Coupled with AI features, Orca provides a more intelligent and proactive security posture.
What do you dislike about the product?
Wish for more automatic remediation options.
What problems is the product solving and how is that benefiting you?
Vulnerabilitymanagement, FIM, code scanning, among others
Consolidation of different tools in one dashboard (integrations)
Consolidation of different tools in one dashboard (integrations)
Orca Security Ahead of the Rest!
What do you like best about the product?
The most important consideration for us to use Orca Security was their "Side-scanning Technology". No agents on endpoints, no sensors to manage, and no added containers that only add to our cloud spend.
What do you dislike about the product?
At this time I really don't have anything I dislike, but the software provides a TON of information, so if I had to pick something I would say it's a bit of information overload, but I think that will be less of an issue as we use it more and remediate more issues.
What problems is the product solving and how is that benefiting you?
Orca Security is providing several use case solutions. First, it's solving several compliance requirements from endpoint security, IDS functionality, File Integrity Monitoring and internal vulnerablity scanning. It also integrates with Jira, Slack, our CI/CD pipeline (via Github Actions) and other areas. The new API security dashboard is an awesome new enhancement. Total security package.
Orca is a one-of-a-kind platform that is lightweight, easy to setup, and incredibly useful.
What do you like best about the product?
Orca makes it easy for me to collaborate across teams to remediate issues in our cloud environments. The UI and integrations are simple to use and make it easy to find what is most important for us to work on.
What do you dislike about the product?
Orca is fast growing, and with that comes the growing pains of new features and the resulting pitfalls. The new features don't always work as expected, but their support quickly responds and assists with any issues we may have.
What problems is the product solving and how is that benefiting you?
Orca solves the problem of monitoring our cloud workloads for vulnerabilities or security misconfigurations. It also helps us prioritize what issues to work on first.
Easy deployment with excellent prioritization of alerts
What do you like best about the product?
The platform is easy to deploy and provides appropriate context aware prioritization out of the box.
What do you dislike about the product?
It can be difficult to dive into details and it could up 24 hours for changes to be reflected in the platform.
What problems is the product solving and how is that benefiting you?
The Orca Security platform is monitoring for cloud security misconfiguration and vulnerability management of workloads.
Powerful security insights in your cloud environment
What do you like best about the product?
Side scanning our live images is really the bread and butter, and best feature of the product
What do you dislike about the product?
The only real complaint is occasional website glitches, usually solved simply by refreshing
What problems is the product solving and how is that benefiting you?
It keeps us updated on missing patches, which machines are vulnerable, and has insights on how to fix them
Recommendations to others considering the product:
An excellent tool for analyzing your infrastructure.
Terrific Product
What do you like best about the product?
As a GRC analyst, I love how easy it is to generate detailed vulnerability/alert reports and the other compliance features that come with the tool.
What do you dislike about the product?
Nothing that I have found yet, it's a great product
What problems is the product solving and how is that benefiting you?
Maintaining PCI DSS internal vulnerability scanning requirements, makes it very easy to monitor compliance
Recommendations to others considering the product:
It's the most advanced vulnerability scanner I've used in my career. Cutting-edge technology combined with terrific support.
showing 71 - 80