Orca Security

RATING:

4.8

(56)

About Orca Security

Designed for organizations operating in the cloud who need complete, centralized visibility of their entire cloud estate and want more time and resources dedicated to remediating the actual risks that matter, Orca Security is an agentless cloud Security Platform that provides security teams with 100% coverage of their entire cloud environment. Instead of layering multiple siloed tools together or deploying cumbersome agents, Orca combines two revolutionary approaches - SideScanning, that enables frictionless and complete coverage without the need to maintain agents, and the Unified Data Model, that allows centralized contextual analysis of your entire cloud estate. Together, Orca has created the most comprehensive cloud security platform available on the marketplace. ...

Awards and Recognition

FrontRunner 2023
Software Advice's FrontRunners report ranks top products based on user reviews, which helps businesses find the right software.

Orca Security Pricing

Orca Security is available on annual subscriptions. Please contact Orca Security directly for pricing information.

Starting price: 

$50,000.00 per year

Free trial: 

Available

Free version: 

Not Available

The Agentless Cloud Security pioneer

Orca Security Reviews

Overall Rating

4.8

Ratings Breakdown

Secondary Ratings

Ease-of-use

4.5

Customer Support

5

Value for money

4.5

Functionality

4.5

Most Helpful Reviews for Orca Security

1 - 5 of 56 Reviews

Anonymous

1,001-5,000 employees

Used daily for less than 12 months

Review Source: Capterra

OVERALL RATING:

5

EASE OF USE

5

VALUE FOR MONEY

5

CUSTOMER SUPPORT

5

FUNCTIONALITY

5

Reviewed February 2021

Orca - Scan from the side, 0 user impact

We switched to a custom Linux Kernel that agent based VMS could not support. Orca was the only solution that we found that could solve our use case.

PROS

Orca is an agentless approach to VMS. This means there is 0 user impact or performance degradation. Your Operations team does not have to manage agent roll out, it also does not need to manage upgrades/downtime. This saves you operating costs and allows your Ops team to focus on other security items. Orca is OS agnostic, it does not matter what your development/architecture team decides to pivot to. Orca supports Windows/Linux/Mac/Containerization. It also is Cloud agnostic, have subs in Azure or AWS? Orca can handle them all with a few clicks. The entire roll out took around 10 minutes.

CONS

There are features missing in Orca from a nice to have stand point. The product is fairly new and a lot of these enhancements are being worked on. The Orca team has been very responsive to enhancements thus far.

Reason for choosing Orca Security

DivvyCloud is agent based and did not support our Linux distro.

Reasons for switching to Orca Security

Rapid7 could not be installed on our Linux Kernel.

Aaron

Computer Software, 501-1,000 employees

Used daily for less than 12 months

Review Source: Capterra

OVERALL RATING:

5

EASE OF USE

5

VALUE FOR MONEY

5

CUSTOMER SUPPORT

5

FUNCTIONALITY

5

Reviewed August 2020

Know your entire cloud sprawl in minutes

Product Integration - It's as easy as they sell it. I had it up and running in multiple accounts in no time. Support - Wonderful support and leadership team that cares about their customers. Open API - Rich and open API that allows you to extend and build on top of the product.

PROS

The extensibility of the product, and how rich the API is. I can find out almost anything about my environment. Using Orca gives me insight into my entire cloud sprawl. I can get information about malware, open-ingress to EC2 instances, and open source vuln management. The only limit to its use is imagination.

CONS

Creating new alerts can be clunky. However, the Orca team is always improving and is currently working on a V2. Navigating the UI can be a bit of a challenge at times when looking for specific info. This is why I often opt for using the API over the UI.

Reason for choosing Orca Security

I ended up choosing Dome9 because it's feature-rich, but bells-and-whistles light. It provides to me the most salient alerts and alarms, while not making too much noise. A lot of competitors' products are very opinionated, which can force a security organization to shape their processes around the tool. With Orca it's the opposite, the tool is powerful, lightweight and malleable.

Azeez

Computer Software, 501-1,000 employees

Used daily for less than 6 months

Review Source: Capterra

OVERALL RATING:

4

EASE OF USE

3

VALUE FOR MONEY

4

CUSTOMER SUPPORT

4

FUNCTIONALITY

4

Reviewed January 2023

Orca security general overview

I have enjoyed the Orca security in the sense that it gives in-depth details of vulnerability, attack path, security posture among many others

PROS

It is a reach platform which provides us with comprehensive security tooling features.

CONS

The only part I have reservations about is the shift-left aspect whereby there is no known IDE extension for the CLI

Reason for choosing Orca Security

It provides a lot of features that many other products don't have coverage for.

Reasons for switching to Orca Security

It's more expensive

Paul

Computer Software, 1,001-5,000 employees

Used daily for less than 12 months

Review Source: Capterra

OVERALL RATING:

5

EASE OF USE

5

VALUE FOR MONEY

4

CUSTOMER SUPPORT

5

FUNCTIONALITY

4

Reviewed February 2021

Orca Security Review

The first step to increase the security posture of an environment is to understand it. Orca Security instantly gave me that visibility without the hurdles of an agent.

PROS

The ability to get quick visibility into the cloud assets without going through the technical hurdles of deploying an agent.

CONS

I think the UI could use a bit more improvement. I've been using this software for 6 months and not everything is intuitive. I still forget where things are exactly.

Reason for choosing Orca Security

Orca Security has a unique technology that is agentless. The ability to get that type of visibility was a key differentiator.

Reasons for switching to Orca Security

Not having to deal with agents on a machine was critical due to the various technical hurdles to install it on every cloud resource.

Abhinay

Hospital & Health Care, 10,000+ employees

Used weekly for less than 6 months

Review Source: Capterra

OVERALL RATING:

5

EASE OF USE

5

VALUE FOR MONEY

4

CUSTOMER SUPPORT

5

FUNCTIONALITY

4

Reviewed August 2020

Agent less solution is the future in security vulnerability and container security monitoring.

We were trying to solve container security challenges. Actively monitoring what is going on within container. Benefit of agent less solution is two fold, 1) Do not have to install agents on the host machine. 2) Effective in monitoring workloads running in managed containers. Orca security, ability of side-scanning technology examines block storage out of band via a software-as-a-service (SaaS) platform.

PROS

Agent less no installation required. Simple 3 step process to connect account and start monitoring. Extensive deep insight into installed packages within container. Clear categorization of alerts as Imminent compromises, Hazardous, Informational with color coding for clear visibility. Also builds digital asset inventory for tracking different types cloud based assets ex: S3 buckets, EC2 instances. Easy to connect multiple accounts across AWS, Azure, GCP. Under Vulnerability management some of the key features to highlight are Asset Discovery, Asset Tagging, Network Scanning, Patch Management,Vulnerability Assessment,Web Scanning, Risk Management and Policy Management. Couple of the key cloud security features to highlight are Endpoint Management,Threat Intelligence,Vulnerability Management, Intrusion Detection System, Behavioral Analytics, Encryption and Application Security. Ease of integration was one of the reason to consider Orca security solution.

CONS

Reporting and user interface are immature, but improving, not real time. This is near real time solution depends on frequency of scanning. VM specific details if consolidated as actionable insights will be very helpful to narrow our focus to relevant issues (ex: identified affected packages within a container is great, giving link to specific patches will be very helpful.

Reason for choosing Orca Security

Agent less deployment with similar functionality.