Orca Security Reviews

I liked the side scanning technology availab.e

The price was super high for a new to market tool.

The fact that the gaining complete visibility into our cloud workload is agentless and that gives us a complete view into our configurations, VM's, containers and security.

At this point everything is headed in the right direction.

agentless malware detection and great server/ containers visibility to identify security-related threats

The one thing that I least liked about this software, is that it's not real-time protection

Jira ticket generation, agent-less scanning, Container domination, ease of use and setup, Clean dashboard.

Lack of on-prem/legacy scanning is a real bummer

Orca is an agentless approach to VMS. This means there is 0 user impact or performance degradation. Your Operations team does not have to manage agent roll out, it also does not need to manage upgrades/downtime. This saves you operating costs and allows your Ops team to focus on other security items.

Orca is OS agnostic, it does not matter what your development/architecture team decides to pivot to. Orca supports Windows/Linux/Mac/Containerization. It also is Cloud agnostic, have subs in Azure or AWS? Orca can handle them all with a few clicks.

The entire roll out took around 10 minutes.

There are features missing in Orca from a nice to have stand point. The product is fairly new and a lot of these enhancements are being worked on. The Orca team has been very responsive to enhancements thus far.

Within minutes we were able to deploy this product and begin receiving accurate and actionable insight. There is no performance impact, no agent deployment to worry about and it just works. We were able to integrate this into our devops toolchain and drive results directly to the people who will remediate.

We're still adjusting to the new UI, but that's just familiarity, there is really nothing we don't like about the software.

I really like how simple it was to deploy across the teams and our infrastructure as it is agent-less.
It helps me prioritize effectively and shows me areas that need immediate attention. The integrations are easy to action things into our workflows and delegate to the correct team

There is a lot of data (we have a lot of infrastructure too) but it can be overwhelming initially but once you get used to the product it provides invaluable insights to all of the data.

Product is incredibly easy to integrate with cloud accounts; results provided by the tool are accurate and comprehensive.

Reporting and user interface are immature, but improving

The extensibility of the product, and how rich the API is. I can find out almost anything about my environment. Using Orca gives me insight into my entire cloud sprawl. I can get information about malware, open-ingress to EC2 instances, and open source vuln management. The only limit to its use is imagination.

Creating new alerts can be clunky. However, the Orca team is always improving and is currently working on a V2. Navigating the UI can be a bit of a challenge at times when looking for specific info. This is why I often opt for using the API over the UI.

Since Orca Security does not require any agents to install, setup took less than five minutes. We are also use multiple AWS accounts and since setup was simple, within less than thirty minutes, we had a single pane view of most of our AWS risks. In addition, since Orca Security integrates with Atlasssian Jira, with only one click, we could quick open remediation tickets for high risk vulnerabilities.

Although Orca Security offers a ton of AWS coverage, I'd like to see more work with AWS RDS and AWS networking services such as VPC and Security Groups.

The features, The security findings, the UI, The support team.

We're missing alerts to slack feature, everytime a new alert is found.

The agent-less service deployed immediately, with no effort, and replaced three different products. The false positive rate is low. The information presented is easily and immediately actionable. The product has allowed me to reduce effort by 90% of an FTE.

I would like to feed the raw data to our data warehouse, which is not yet possible, though it is coming.

Orca implements into an AWS account in minutes and is able to assess the risk of all EBS volumes WITHOUT the need for authentication. This revolutionary side-scanning technology allows for total DevOps and Security governance in cloud accounts where some assets may not follow strict IAM standards.

Orca has a lot of room to do much more than its current feature set. Looking forward to seeing what they do next.

The Orca UI is clean and provides a good overview, the alerts are relevant, and the export functionality is very useful.

The compliance functionality is a work in progress.

Ease of use, user experience, fast triage time to determine risk.

Features should be added, exporting for example are key.

The ability to get quick visibility into the cloud assets without going through the technical hurdles of deploying an agent.

I think the UI could use a bit more improvement. I've been using this software for 6 months and not everything is intuitive. I still forget where things are exactly.

Agent less no installation required. Simple 3 step process to connect account and start monitoring. Extensive deep insight into installed packages within container. Clear categorization of alerts as Imminent compromises, Hazardous, Informational with color coding for clear visibility. Also builds digital asset inventory for tracking different types cloud based assets ex: S3 buckets, EC2 instances. Easy to connect multiple accounts across AWS, Azure, GCP.
Under Vulnerability management some of the key features to highlight are Asset Discovery, Asset Tagging, Network Scanning, Patch Management,Vulnerability Assessment,Web Scanning, Risk Management and Policy Management.
Couple of the key cloud security features to highlight are Endpoint Management,Threat Intelligence,Vulnerability Management,
Intrusion Detection System, Behavioral Analytics, Encryption and Application Security. Ease of integration was one of the reason to consider Orca security solution.

Reporting and user interface are immature, but improving, not real time. This is near real time solution depends on frequency of scanning. VM specific details if consolidated as actionable insights will be very helpful to narrow our focus to relevant issues (ex: identified affected packages within a container is great, giving link to specific patches will be very helpful.

The product deployment was simple, quick and easy. The visibility gained for all cloud services was almost instant. The ability to conduct side scanning is a game changer that does not affect production.

Operational reporting was good, but executive reporting lacks in the early days of product development. For the value gained, we are willing to wait.