Quick and easy setup and helps comply with various security frameworks and strengthens overall security posture
What is our primary use case?
I mainly use it as a posture management tool to comply with security frameworks like CIS and NIST, strengthening my overall security posture.
What is most valuable?
The reporting and automated remediation capabilities are valuable to me. They're real game-changers.
What needs improvement?
Maybe better customization options for security frameworks and better integration with reporting tools like Power BI or Grafana dashboards. Modularizing reports and dashboards would be fantastic. Simplifying the way users build custom frameworks would be good.
For how long have I used the solution?
I have been using this solution for one year.
What do I think about the stability of the solution?
No issues at all! It's been quite stable and reliable.
What do I think about the scalability of the solution?
It is a very scalable solution. It supports all three major cloud providers and is designed for easy deployment. So, from my perspective, it's highly scalable.
How are customer service and support?
The customer support was not good. It really depended on who you got assigned to. Overall, I'd say it was decent, not perfect, but definitely helpful.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
We also looked at Lacework and CrowdStrike. The main problem with Lacework was the pricing model. It was based on capacity, and with our ever-growing environment, the costs became unsustainable.
The features, ease of integration, and compatibility with all our security frameworks swayed us towards Orca.
We migrated everything to Orca and haven't looked back.
How was the initial setup?
The initial setup is very easy. I would rate my experience with the initial setup a ten out of ten, where ten is easy to set up.
What about the implementation team?
I managed it all by myself. We had some support from Orca at the time, but the process itself was very easy. The whole setup, from initial discussions with Orca and setting up our own environments, was only about two to three days.
What was our ROI?
It is worth the money we are paying for it.
What's my experience with pricing, setup cost, and licensing?
It's not as expensive as some competitors like Prisma Cloud, but it's not the cheapest either. A subscription model based on AWS usage would be an interesting option to explore.
What other advice do I have?
Users can meet all the needs around security, automation, customization, and reporting. Orca is a feature-rich tool, easy to use, and seamlessly integrates with major cloud providers.
It offers comprehensive visibility not just from a security standpoint but also for management and high availability. That's my key advice.
Overall, I would rate the solution a ten out of ten.
A complete assessment and defined priorities in less than 24 hours
What do you like best about the product?
The platform is very intuitive and does not require extensive training to set up and understand the initial results. In less than 24 hours, a complete overview of our cloud was provided and priorities were defined. The dashboard provides great clarity and relevant metrics. Orca also offers possible resolutions recommended by AI.
What do you dislike about the product?
The KPIs showing the evolution over time could be a bit more refined.
What problems is the product solving and how is that benefiting you?
Orca, in 24 hours, provided a clear and precise result as well as priorities, while we had been trying to implement tools by ourselves for several months.
end to end cloud security
What do you like best about the product?
one of the best all in one suite i ever used so far seemless and its abudance of features helps us to get our hygenie report quickly and helped us on our pre audit. easy integrations and implementation since its agentless.
customer support is one of the best i have seen compared to other big players.
What do you dislike about the product?
UI should be improved and they are working on it
What problems is the product solving and how is that benefiting you?
entire cloud security findings its helping us >90% issues found due to our own lack of understanding or operational use. reporting helps us to know where we are
Orca takes security to the next level
What do you like best about the product?
Low-touch product, yet providing holistic security for our organization. amazing fast support. product teams that actually listen to their customer's needs.
What do you dislike about the product?
The UI can be more intuitive, especially the business unit feature.
What problems is the product solving and how is that benefiting you?
Orca helps us with compliance and yet makes sure our security standards are high as expected in our industry.
Easy on-boarding, massively effective
What do you like best about the product?
Orca is super-easy to set up, being agentless - and their engagement managers are very helpful. Once on, it shines - the whole landscape of attack surface-related issues are "in your face", easy to comprehend and address. It integrates with Jira in just a few clicks, it allows adding people and providing necessary visibility easily, and UX is really slick and useful
What do you dislike about the product?
Its pricing model is based on VMs - which is not only outdated in the world of highly containerized and vertical serverless cloud configurations, but also impedes effective deployment on large legacy accounts with many VMs on them. Granted, Orca folks makes all they can easy, being flexible and helpful, but if there is one thing I dislike about Orca, it is this pricing model
What problems is the product solving and how is that benefiting you?
It is a really good "one click" security posture evaluation tool - immediately showing the wealth of issues related to attack surface, as they propagate through enterprise tech landscape tiers
The tool was easy to use and implement with useful console.
What do you like best about the product?
Easy to use console. Ease of ingesting accounts, granular access control
What do you dislike about the product?
Changing of vulnerability classifcations.
What problems is the product solving and how is that benefiting you?
Centralize view of cloud environments including vulnerabilities.
Highly scalable and stable solution with good support
What is our primary use case?
Our use case is very simple. Orca Security is used to monitor and have control over your client's cloud environment, specifically the CP-CFPM.
What is most valuable?
One of the most valuable aspects is the agentless feature. Orca Security doesn't use agents at all.
What needs improvement?
Maybe the presentation of the data in the dashboard. It's a little bit chaotic. There is room for improvement.
For how long have I used the solution?
I have been using Orca Security for one and a half years.
What do I think about the stability of the solution?
I would rate the stability a ten out of ten. I never faced any problem with stability. Our client base is more SMB.
What do I think about the scalability of the solution?
I would rate the scalability a ten out of ten. It can easily scale and control a huge environment comprising thousands of VMs.
How are customer service and support?
The support is very good.
How would you rate customer service and support?
How was the initial setup?
The initial setup is very easy. We have deployed the solution on the public cloud. However, there is a roadmap, a feature to deploy also in private environments and on-prem environments.
What about the implementation team?
The deployment process takes at least an hour. To onboard, the process is very smooth. You have to collect some information from your cloud environment, specifically as an admin user of your cloud subscription. Then, you have to follow a three-step process inside the Orca platform because Orca will automatically create all the policies and data needed to onboard your subscription.
What's my experience with pricing, setup cost, and licensing?
Orca Security is cheaper compared to other solutions in the same space.
What other advice do I have?
I would recommend trying this solution once, at least for a month. It is a very good product.
Overall, I would rate the solution a ten out of ten.
Which deployment model are you using for this solution?
Public Cloud
Great Visibility
What do you like best about the product?
Plethora of information and visibility into our cloud environment.
What do you dislike about the product?
Managing roles, groups and permissions could be better. Search functionality could be improved.
What problems is the product solving and how is that benefiting you?
Solving our need for visibility into our increasing cloud environment.
Orca is great tool for cloud security
What do you like best about the product?
Orca provides visibility to my environment, is easy to onboard, and is a genuinely cloud-native solution.
What do you dislike about the product?
It's almost near real-time results. I hope in future; it can produce real-time results.
What problems is the product solving and how is that benefiting you?
Orca helps my organisation solve asset discovery and management in multi-cloud platforms. It also provides rich vulnerability insight for my organisation to fix and improve.
Orca provides an amazing Cybersecurity insights instantaneously easily.
What do you like best about the product?
Easy to onboard to our existing clouds with an agentless approach. Very comprehensive on the Cybersecurity threats and vulnerabilities with daily updates. Comes with the recommended resolution for immediate action.
What do you dislike about the product?
No support for on-premise and private cloud workloads. Unable to automatically detect Windows ESU available on Azure. License costs cannot be reduced as workloads are optimised.
What problems is the product solving and how is that benefiting you?
The solution provides instant insights into the Cybersecurity landscape of our Cloud infrastructure and how to remediate vulnerabilities easily. We immediately see benefits within 30 days to reduce more than 30% of the threats and vulnerabilities within the organisation.
