キャプテラ - 日本企業の最適な
ソフトウェア選びをサポートし18年

Orca Securityとは

100以上のクラウド・アセットがあるなら、Amazon Web Services (AWS)、Microsoft Azure、Google Cloud Platform (GCP) のワークロード・レベルのセキュリティを導入しましょう。対象範囲のギャップやエージェントに関する心配はありません。

Orca Securityの製品詳細

良いポイント:

Their dashboards provide an intuitive, easy to digest view of the current state of application security without being swamped by alerts and information.

改善してほしい点:

Lack of on-prem/legacy scanning is a real bummer.

Orca Securityの評価

評価ポイント

使いやすさ
4.6
カスタマーサービス
4.8
機能
4.7
価格の妥当性
4.6

おすすめ度

9.2/ 10

Orca Securityの総合評価は4.8/5です。 (キャプテラに寄せられた58件のレビューより集計)。

Orca Securityを使用したことがありますか?

あなたのレビューを投稿しませんか?

レビューを絞り込む (58件)

Bill
Bill
アメリカのCTO
認証済みLinkedInユーザー
情報技術、情報サービス, 51~200人規模の会社
使用期間: 1~5か月
投稿経路

Orca Security : intensive scrutiny of your cloud deployments

5.0 3 年前

製品を使ってみた感想: We feel that we've been able to significantly improve our organization's awareness across the board to security issues.

良いポイント:

I appreciate how Orca Security does side-scanning, unobtrusively collecting information about our cloud deployments, and then submitting those records through intensive scrutiny. The scan results are compared against CVEs to establish prioritized lists for mitigation efforts

改善してほしい点:

Integration of Orca Security with Microsoft Teams to provide realtime alerts when issues are detected is in it's infancy at present, and we had some troubles getting it going.

Jonas
ブラジルのSenior Security Engineer
金融サービス, 201~500人規模の会社
使用期間: 6~12か月
投稿経路

Faster and Stroger that´s Orca Security

5.0 2 年前

製品を使ってみた感想: Faster and easier deployment, full visibility into AWS and Azure.

良いポイント:

Easy deploy and powerfull visibility it´s most values of Orca.

改善してほしい点:

Lack of visibility into the on-premises environment

Azeez
ナイジェリアのDevOps Engineer
コンピュータ・ソフトウェア, 501~1,000人規模の会社
使用期間: 1~5か月
投稿経路

Orca security general overview

4.0 2 年前

製品を使ってみた感想: I have enjoyed the Orca security in the sense that it gives in-depth details of vulnerability, attack path, security posture among many others

良いポイント:

It is a reach platform which provides us with comprehensive security tooling features.

改善してほしい点:

The only part I have reservations about is the shift-left aspect whereby there is no known IDE extension for the CLI

Aristide
オランダのProduct Security Engineer
小売, 501~1,000人規模の会社
使用期間: 1年以上
投稿経路

An efficient, All-In-One entry level solution to start tackling Cloud security issues.

4.0 3 年前

製品を使ってみた感想: Thanks to Orca we were able to quickly scale our vulnerability management program.

良いポイント:

Very easy to set-up. Top-notch customer follow-up and support. Continual solution improvement included in the pricing. Single pane of glass visibility into your Cloud infrastructure with a powerful query language and automation features.

改善してほしい点:

Limitations of agent-less scanning. Container and Kubernetes scanning could be more developed.

認証済みレビュアー
認証済みLinkedInユーザー
情報技術、情報サービス, 1,001~5,000人規模の会社
使用期間: 6~12か月
投稿経路

Orca - Scan from the side, 0 user impact

5.0 4 年前

製品を使ってみた感想: We switched to a custom Linux Kernel that agent based VMS could not support. Orca was the only solution that we found that could solve our use case.

良いポイント:

Orca is an agentless approach to VMS. This means there is 0 user impact or performance degradation. Your Operations team does not have to manage agent roll out, it also does not need to manage upgrades/downtime. This saves you operating costs and allows your Ops team to focus on other security items. Orca is OS agnostic, it does not matter what your development/architecture team decides to pivot to. Orca supports Windows/Linux/Mac/Containerization. It also is Cloud agnostic, have subs in Azure or AWS? Orca can handle them all with a few clicks. The entire roll out took around 10 minutes.

改善してほしい点:

There are features missing in Orca from a nice to have stand point. The product is fairly new and a lot of these enhancements are being worked on. The Orca team has been very responsive to enhancements thus far.

Aaron
アメリカのSenior Security Engineer
コンピュータ・ソフトウェア, 501~1,000人規模の会社
使用期間: 6~12か月
投稿経路

Know your entire cloud sprawl in minutes

5.0 4 年前

製品を使ってみた感想: Product Integration - It's as easy as they sell it. I had it up and running in multiple accounts in no time. Support - Wonderful support and leadership team that cares about their customers. Open API - Rich and open API that allows you to extend and build on top of the product.

良いポイント:

The extensibility of the product, and how rich the API is. I can find out almost anything about my environment. Using Orca gives me insight into my entire cloud sprawl. I can get information about malware, open-ingress to EC2 instances, and open source vuln management. The only limit to its use is imagination.

改善してほしい点:

Creating new alerts can be clunky. However, the Orca team is always improving and is currently working on a V2. Navigating the UI can be a bit of a challenge at times when looking for specific info. This is why I often opt for using the API over the UI.

Abhinay
アメリカのDirector of Software Engineering
病院、ヘルスケア, 10,000+人規模の会社
使用期間: 1~5か月
投稿経路

Agent less solution is the future in security vulnerability and container security monitoring.

5.0 5 年前

製品を使ってみた感想: We were trying to solve container security challenges. Actively monitoring what is going on within container. Benefit of agent less solution is two fold, 1) Do not have to install agents on the host machine. 2) Effective in monitoring workloads running in managed containers.
Orca security, ability of side-scanning technology examines block storage out of band via a software-as-a-service (SaaS) platform.

良いポイント:

Agent less no installation required. Simple 3 step process to connect account and start monitoring. Extensive deep insight into installed packages within container. Clear categorization of alerts as Imminent compromises, Hazardous, Informational with color coding for clear visibility. Also builds digital asset inventory for tracking different types cloud based assets ex: S3 buckets, EC2 instances. Easy to connect multiple accounts across AWS, Azure, GCP. Under Vulnerability management some of the key features to highlight are Asset Discovery, Asset Tagging, Network Scanning, Patch Management,Vulnerability Assessment,Web Scanning, Risk Management and Policy Management. Couple of the key cloud security features to highlight are Endpoint Management,Threat Intelligence,Vulnerability Management, Intrusion Detection System, Behavioral Analytics, Encryption and Application Security. Ease of integration was one of the reason to consider Orca security solution.

改善してほしい点:

Reporting and user interface are immature, but improving, not real time. This is near real time solution depends on frequency of scanning. VM specific details if consolidated as actionable insights will be very helpful to narrow our focus to relevant issues (ex: identified affected packages within a container is great, giving link to specific patches will be very helpful.

Jason
アメリカのManager - Information Security Operations
金融サービス, 1,001~5,000人規模の会社
使用期間: 2年以上
投稿経路

Great Product

5.0 7 か月前

良いポイント:

I believe Orca is an amazing tool. The fact it is agentless, can be deployed in AWS, Azure, and GCP make it an all around tool. Another reason I like Orca is the support I have gotten. The team is always available when we have issues and is able to resolve anything we see quickly.

改善してほしい点:

I have no cons on this product. It works as intended.

Brenden
ベルギーのCTO
コンピュータ・ソフトウェア, 2~10人規模の会社
使用期間: 無料トライアル
投稿経路

Best in class, but expensive

5.0 8 か月前

良いポイント:

Orca has the complete package of security tooling available. If cybersecurity is a very important concern for your company, this is the best choice.

改善してほしい点:

While a complete package, they are very expensive. If you don't need all features other competitors might be more valuable for the money.

Ie
エストニアのDevSecOps Engineer
コンピュータ・ソフトウェア, 1,001~5,000人規模の会社
使用期間: 6~12か月
投稿経路

Great company! Awesome product! Amazing staff!

5.0 2 年前

製品を使ってみた感想: Great team, useful product! I loved working with Orca Security as vendor! Their product provided meaningful insights into overall project security and what can be done better on our side!

良いポイント:

I honestly love their innovative product! Used it with AWS cloud infrastructure - only really cool benefits!

改善してほしい点:

Nothing, really! The are clock-sharp in resolving any issues, hepling with setup and configuration, everythin was perfect!

Charbel
オーストラリアのSenior Security Engineer
金融サービス, 1,001~5,000人規模の会社
使用期間: 2年以上
投稿経路

Swim with ORCA. It will change your world

5.0 2 年前

製品を使ってみた感想: Great experience. The fact they take feedback and make it happen is great.

良いポイント:

Easy of deployment. I can deploy and auto deploy to environments

改善してほしい点:

Nothing. Its great. I have no issues with the product

認証済みレビュアー
認証済みLinkedInユーザー
コンピュータ・ソフトウェア, 201~500人規模の会社
使用期間: 6~12か月
投稿経路

検討した類似製品:

Excellent CSPM/CWPP

5.0 2 年前

製品を使ってみた感想: Orca helps us maintain and improve our cloud security by prioritizing and contextualizing findings

良いポイント:

Incredibly easy setup and 100% visibility of cloud assets

改善してほしい点:

It would be helpful to group similar findings across scaleable infrastructure rather than showing each finding individually

Kevin
アメリカのSenior Vuln Mgmt Lead
保険, 5,001~10,000人規模の会社
使用期間: 6~12か月
投稿経路

Orca Review

4.0 2 年前

製品を使ってみた感想: Orcas ability to create custom reporting per cloud computing module has been crucial in reporting for our vulnerability remediation. Our internal teams have the ability to rescan items on demand as well to ensure things are being fixed within SLA

良いポイント:

Orca has been a crucial tool for our enterprise to to enhance our visibility into our cloud resources. Ontop of being a great product, their support has been outstanding in answering all of our questions, fixing bugs, and expediting our open cases.

改善してほしい点:

The only dislikes of Orca that I have emphasized to their support team is around vulnerability management reporting and navigation within the tool. They have since released the Discovery module that allows us to create custom rules to provide the reports we need. I would like to see them continue to enhance their dashboarding capabilities for vulnerability trend data.

Michael
イスラエルのIT Manager
コンピュータ・ソフトウェア, 51~200人規模の会社
使用期間: 1年以上
投稿経路

Orca Security review

5.0 2 年前

製品を使ってみた感想: Orca Security is constantly reviewing our AWS cloud environment security posture keeping our business as safe as possible

良いポイント:

The most I like about Orca is its extensive collection of security check for our AWS environment, also that Orca is always working on new features and new improvements

改善してほしい点:

I wish there was also a live scanner, but I guess its not part of the product or how its works, also if the price was lower

Fabien
オーストラリアのCTO
保険, 201~500人規模の会社
使用期間: 1~5か月
投稿経路

Strong product, outstanding support

4.0 3 年前

製品を使ってみた感想: Overall our experience with Orca has been great and their support team is really on top of their game. So far Orca is ticking all the boxes for us and has quickly become a trusted tool in our security arsenal.

良いポイント:

Orca is extremely easy to set up and we got our 27 AWS accounts onboarded within minutes. The findings from Orca are very relevant and pertinent recommendations were provided for remediation, including links to external documentation when relevant. Orca is also great at providing peace of mind when it comes to staying on top of new threats and vulnerabilities as it automatically scans our assets when new vulnerabilities are published. Automated scanning for the log4j vulnerabilities were available within a couple of days of disclosure.

改善してほしい点:

A few bugs in the UI, which are being addressed quickly.

Nickelby
オーストラリアのChief Information Security Officer
保険, 201~500人規模の会社
使用期間: 1年以上
投稿経路

An easy to deploy, manage and administer security solution

5.0 2 年前

良いポイント:

Agentless was a very big win for me. And now with API scanning, it goes to the next level!

改善してほしい点:

No dark mode. Seriously. We need to make sure that products have dark mode!

Rb
アメリカのsecurity engineer
セキュリティ、調査, 51~200人規模の会社
使用期間: 6~12か月
投稿経路

Orca Rocks

5.0 2 年前

良いポイント:

Not only does Orca work, the customer success team is always on top of things and keeping what we want for the future in mind.

改善してほしい点:

Sometimes I feel like UI focuses a little too much on style rather than function.

Al
オランダのIT Security Analyst
音楽, 1,001~5,000人規模の会社
使用期間: 1年以上
投稿経路

IT Sec Review

4.0 2 年前

良いポイント:

"Security score analysis" and "from the news" areas.

改善してほしい点:

Seeing already dismissed alerts & unclear algorithm for "security score analysis".

Carter
アメリカのSecurity Engineer
コンピュータ・ソフトウェア, 1,001~5,000人規模の会社
使用期間: 6~12か月
投稿経路

Orca Security

4.0 2 年前

製品を使ってみた感想: Orca has been great for our company as we are hosted in AWS and had limited visibility before.

良いポイント:

Orca is pretty simple to set up and provides a vast amount of data right out of the gate. There is very little continual maintenance needed.

改善してほしい点:

The inability to create exceptions based on characteristics. Ea File path, name

Simon
英国のSenior Application Security Engineer
教育管理, 501~1,000人規模の会社
使用期間: 6~12か月
投稿経路

Probably the best Cloud Native Application Protection Platform I've used

5.0 3 年前

製品を使ってみた感想: Orca solves several problems we regularly face including producing asset inventories, helping with compliance, and providing focussed mitigation of security vulnerabilities. Orca's dashboards provide the necessary insights into the latest threats to allow a more focused application of security resources.

良いポイント:

Orca's agentless side-scanning techniques mean that all assets are automatically scanned - even if not running. Their dashboards provide an intuitive, easy to digest view of the current state of application security without being swamped by alerts and information. Orca provides an excellent way of producing an inventory of assets - particularly useful for ephemeral assets that are perpetually being created and destroyed. The compliance feature is also useful for auditing purposes. The recently introduced attack paths feature shows graphically how an attacker could gain access and potentially pivot through the system.

改善してほしい点:

Because of the way Orca's side-scanning technology works using snapshots, the downside is that the scanning is not performed in real-time so cannot provide true xDR capabilities. It would also be useful if older alerts were automatically dismissed after a while when the vulnerability is no longer detected. This would help to reduce the total number of vulnerabilities and alerts that are displayed in the dashboards.

Andrew
アメリカのSecurity Engineer II
通信, 201~500人規模の会社
使用期間: 6~12か月
投稿経路

Orca's SideScanner is a game changer.

5.0 3 年前

製品を使ってみた感想: Orca is solving our visibility issue. Without it, we wouldn't have been able to triage log4j, see malware in our environments, investigate vulnerable cloud instances, and a range of other basic but tricky cloud problems.

良いポイント:

Orca's SideScanning technology is excellent. The fact that it doesn't require an agent and is still able to provide as much insight as it does is truly amazing.

改善してほしい点:

Orca needs to figure out how to separate the wheat from the chaff. There are always a lot of vulnerabilities that appear in our console from old kernel versions or something that has already been patched that we're still getting alerts on.

Rachel
アメリカのSenior SOC Analyst
情報技術、情報サービス, 51~200人規模の会社
使用期間: 6~12か月
投稿経路

Orca is a one-of-a-kind platform that makes it easy to manage cloud security.

5.0 2 年前

良いポイント:

Orca allows collaboration across departments to manage cloud compliance, security, and posture. The UI is simple and easy to navigate. The integrations are straightforward to setup.

改善してほしい点:

Sometimes they roll out new features that don't extend to the rest of the product which can make it hard to use.

Weryke
アメリカのDeputy CISO
自動車, 5,001~10,000人規模の会社
使用期間: 1年以上
投稿経路

Innovative Cloud posture tool that defined a new approach that makes use so easy.

5.0 3 年前

製品を使ってみた感想: Exceptional, I have already recommended to peers who have also purchased.

良いポイント:

Ability to discovery new assets only having role built in parent org. It's visibility also of back plane to reduce false positives. Responsiveness of company to implement change to functionality and UI.

改善してほしい点:

I would say API visibility but that is already in Beta now.

Matthew
アメリカのSecurity Engineer II
運輸、トラック、鉄道, 5,001~10,000人規模の会社
使用期間: 1年以上
投稿経路

All around great CSPM

4.0 2 年前

良いポイント:

easy to use/configure, great insights and automated remediation

改善してほしい点:

does not provide visibility into system activity (like applications in memory)

Jeremy
日本のCloud Security Engineer
金融サービス, 51~200人規模の会社
使用期間: 6~12か月
投稿経路

検討した類似製品:

Super Easy to Setup and Start Managing Your AWS Risks

5.0 4 年前

製品を使ってみた感想: Not having to deal with agents combined with direct integration with our ticking system has saved us countless hours of precious engineering time. Because of this, we have gained tremendous value from the product since we can effectively manage AWS risks while focusing on creating more features and values for our customers.

良いポイント:

Since Orca Security does not require any agents to install, setup took less than five minutes. We are also use multiple AWS accounts and since setup was simple, within less than thirty minutes, we had a single pane view of most of our AWS risks. In addition, since Orca Security integrates with Atlasssian Jira, with only one click, we could quick open remediation tickets for high risk vulnerabilities.

改善してほしい点:

Although Orca Security offers a ton of AWS coverage, I'd like to see more work with AWS RDS and AWS networking services such as VPC and Security Groups.