Orca Security CNAPP Cloud Security Platform
Orca Security CNAPPExternal reviews
225 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Know your environment
What do you like best about the product?
The extensibility of the product, and how rich the API is. I can find out almost anything about my environment.
What do you dislike about the product?
Creating new alerts can be clunky. However, the Orca team is always improving and is currently working on a V2. Navigating the UI can be a bit of a challenge at times when looking for specific info. This is why I often opt for using the API over the UI.
What problems is the product solving and how is that benefiting you?
Using Orca gives us insight into our entire cloud sprawl. I can get information about malware, open-ingress to EC2 instances, and open source vuln management. The only limit to its use is imagination.
Recommendations to others considering the product:
Get rid of all the noise and opinions of the other providers. Orca shapes itself to your security organizations needs, and processes, not the other way around.
Up and coming VM Security product
What do you like best about the product?
Exceptionally easy to onboard accounts for cloud providers. Orca enumerates assets throughout the cloud accounts with a simple service account which reduces the likelihood of overlooking assets or of Shadow IT.
What do you dislike about the product?
Vulnerabilities that are remediated either vanish without record or remain with no indication that they have been remediated. It is not very clear when a scan was last run or if a scan is currently running. There were some false positives and some assets were incorrectly marked as being Internet facing.
What problems is the product solving and how is that benefiting you?
We use Orca security to provide vulnerability management and cloud posture management for some AWS accounts.
Multiple experiences with cloud security and this is the first one that makes it easy, agentless.
What do you like best about the product?
Setup was a breeze. Side scanning just makes sense. I think finally getting to a point where I can generally see what my risks are in the cloud technology across not only the cloud but also the code and infra deployed there was pretty nifty and important to me.
What do you dislike about the product?
Can be too much information to parse, would like easier ways to drill down and simplify. Overall there is very little to dislike.
What problems is the product solving and how is that benefiting you?
Cloud Posture Assessing, Vulnerability Management.
Mastering your cloud security posture
What do you like best about the product?
we needed a solution that could provide visibility into our AWS environment while also scanning for malware, identifying misconfigurations, searching and protecting our inventory, and overseeing our PII. That’s why we were so happy to find Orca.
The unique method Orca uses to scan AWS proved to be the most suitable for us, and the most attractive to our DevOps team. After one short session between our DevOps team and Orca, we successfully deployed a POC to our development environment with close to zero friction . Within minutes, we started getting full visibility into our account. We can access valuable insights, filter out noise, and add additional capabilities to our security posture. Orca has already provided very important leads that our team was able to address before they could become significant problems. Now, we use it as a test case for other in-house security projects.
The unique method Orca uses to scan AWS proved to be the most suitable for us, and the most attractive to our DevOps team. After one short session between our DevOps team and Orca, we successfully deployed a POC to our development environment with close to zero friction . Within minutes, we started getting full visibility into our account. We can access valuable insights, filter out noise, and add additional capabilities to our security posture. Orca has already provided very important leads that our team was able to address before they could become significant problems. Now, we use it as a test case for other in-house security projects.
What do you dislike about the product?
AWS cost management can derive more costs for any vendor that operates on top of it.
What problems is the product solving and how is that benefiting you?
Full visibility into our account. We can access valuable insights, filter out noise, and add additional capabilities to our security posture
Recommendations to others considering the product:
full visibility into our account. We can access valuable insights, filter out noise, and add additional capabilities to our security posture
Agent less solution is the future in security vulnerability and container security monitoring.
What do you like best about the product?
Agent less no installation required. Simple 3 step process to connect the account and start monitoring. Very extensive deep insight into install packages within container. Clear categorization of alerts as Imminent compromises, Hazardous, Informational with color coding for clear visibility. Also builds digital asset inventory for tracking different types cloud based assets ex: S3 buckets, EC2 instances.
Very easy to connect multiple accounts across AWS, Azure, GCP.
Under Vulnerability management some of the key features to highlight are Asset Discovery, Asset Tagging, Network Scanning, Patch Management,Vulnerability Assessment,Web Scanning, Risk Management and Policy Management.
Couple of the key cloud security features to highlight are Endpoint Management,Threat Intelligence,Vulnerability Management,
Intrusion Detection System, Behavioral Analytics, Encryption and Application Security. Ease of integration was one of the reason to consider Orca security solution.
Very easy to connect multiple accounts across AWS, Azure, GCP.
Under Vulnerability management some of the key features to highlight are Asset Discovery, Asset Tagging, Network Scanning, Patch Management,Vulnerability Assessment,Web Scanning, Risk Management and Policy Management.
Couple of the key cloud security features to highlight are Endpoint Management,Threat Intelligence,Vulnerability Management,
Intrusion Detection System, Behavioral Analytics, Encryption and Application Security. Ease of integration was one of the reason to consider Orca security solution.
What do you dislike about the product?
Not real time. This is near real time solution dependent on how frequently scanning is performed. VM specific details if consolidated as actionable insights will be very helpful to narrow our focus to relevant issues (ex: identified affected packages within a container is great, giving link to specific patches will be very helpful.
What problems is the product solving and how is that benefiting you?
We were trying to solve container security challenges. Actively monitoring what is going on within container. Benefit of agent less solution is two fold, 1) Do not have to install agents on the host machine. 2) Effective in monitoring workloads running in managed containers.
Orca security, ability of side-scanning technology examines block storage out of band via a software-as-a-service (SaaS) platform.
Orca security, ability of side-scanning technology examines block storage out of band via a software-as-a-service (SaaS) platform.
Recommendations to others considering the product:
If you are looking for agent less solution. Orca Security is go to solution.
Great visibility to security related server threats in a few minutes deployment
What do you like best about the product?
clientless malware detection without any need to operate or maintenance agents, deployments and operations
What do you dislike about the product?
The downsides of using Orca Security is that it is not a real-time so threats might exist between scans
What problems is the product solving and how is that benefiting you?
Malware detection on servers, internal and external vulnerability scans, containers scans, hardening OS and containers, AWS governance.
Great value add for our company
What do you like best about the product?
Ease of use, exportability, user experience
What do you dislike about the product?
I'd prefer if we can perform our own manual scans.
What problems is the product solving and how is that benefiting you?
Cloud security and hardening
Recommendations to others considering the product:
Definitely give it a shot and see if it fits for your use case.
Cloud Security
What do you like best about the product?
Agentless install makes it very easy to deploy and Orca releases new features on a monthy basis. The newer consolidated host view has a good over view of the security posture of any particular cloud asset.
What do you dislike about the product?
The UI can be confusing at times and needs to be simplified.
What problems is the product solving and how is that benefiting you?
I use Orca for complete visibility in my cloud from the configuration settings in the cloud to the vulnerabilities in the VM's and containers.
Simple and Effective
What do you like best about the product?
The Orca UI is clean and provides a good overview, the alerts are relevant, and the export functionality is very useful.
What do you dislike about the product?
The compliance functionality is a work in progress.
What problems is the product solving and how is that benefiting you?
Easy reporting of (mostly true positives) cloud-related alerts. I can just export the data, brush it up, and share. Alerting on unpatched resources and secrets is very good compared to competitors.
Fresh and intuitive agent-less scanning is the best I have used in a while
What do you like best about the product?
Of course the agentless scanning is great, but the clean dashboard provides me with exactly the right amount of detail and knowledge around my current env. I also enjoy that Orca is one of the only scanning solution that has Jira ticketing built in to the platform.
What do you dislike about the product?
the only thing that would make Orca better is if it was an all encompassing solution that could scan on prem assets as well.
What problems is the product solving and how is that benefiting you?
Container scanning!!!
showing 221 - 230