Orca Security Named A 2021 Gartner Cool Vendor in Cloud Security Posture Management (CSPM)

Another Industry First, Orca Security Simplifies Security and Compliance Operations for AWS, Azure, and GCP by Unifying Core Capabilities of CSPM, CWPP, and CIEM for Faster Time-to-Remediation

LOS ANGELES--()--Orca Security, the cloud security innovation leader, today announced that it has been named a 2021 Cool Vendor in Cloud Security Posture Management by Gartner.

Orca Security pioneered the first solution to provide agentless workload and data protection, cloud security posture management, vulnerability management, and compliance management in a single platform. Orca Security’s patent-pending SideScanningTM technology deploys in minutes across AWS, Azure, and GCP and covers all cloud assets including virtual machines, containers, serverless functions, cloud storage buckets, VPCs, cryptographic keys, security groups, and much more.

SideScanning works by collecting data directly from the cloud provider APIs - as a CSPM - but also from the workload’s runtime block storage in an out-of-band manner. This means that after a quick and easy one-time deployment, Orca Security surfaces the most important risks such as vulnerabilities, malware, misconfigurations, weak and leaked passwords, lateral movement risk, misplaced PII, and more for both the workload and in the cloud configuration, all while guaranteeing 100 percent coverage.

Orca Security understands that risk is much more than the severity score of the underlying issue. It also depends on the accessibility and the business impact of the at-risk asset. Orca Security builds a visual graph that encompasses all cloud assets, their risk, connectivity, and trust. It then uses this graph to assess and prioritize the risk based on all of these factors. This helps security teams avoid alert fatigue and fix truly critical security issues before attackers can exploit them.

“It’s incredibly gratifying to see that Orca Security’s original vision of combining the best of CSPM, CWPP, and CIEM into a single platform now has a category name: Cloud-Native Application Protection Platform (CNAPP),” said Avi Shua, CEO and co-founder of Orca Security. “But more important than acronyms, our customers enjoy a new level of visibility, coverage, and operational efficiency not possible with siloed solutions.”

"CSPM tools are increasingly driving the evolution of cloud workload protection platforms toward cloud native application protection platforms (CNAPP)."[1]

Comprehensive Cloud Security and Compliance for AWS, Azure, and GCP

“Orca Security’s mission is to offer enterprises one platform that detects and prioritizes every important security risk in their cloud estate but that is also as easy to install as a smartphone app,” said Avi Shua, CEO and co-founder of Orca Security. “We are honored to be recognized as a 2021 Gartner Cool Vendor in Cloud Security Posture Management.”

Orca Security provides enterprises with multiple benefits:

  • 100 Percent Cloud Estate Coverage: Orca Security leverages cloud configuration and workload data to build a fully contextualized asset inventory and performs a holistic security assessment of an entire cloud estate.
  • Multiple Tools in One Platform: Orca Security’s single platform eliminates the need to deploy multiple tools such as cloud vulnerability management, workload protection, and security posture management solutions.
  • Prioritizes the 1 Percent of Alerts that Matter: Orca Security sees the big picture and prioritizes risk based on the security issue, its accessibility, and business impact. This reduces thousands of security alerts to the critical few that matter.
  • Deploy Once. Secure Forever: Because Orca Security is agentless, the platform deploys in minutes rather than weeks or months. With Orca Security, there are no gaps in coverage, no organizational friction, and no performance hits on live environments.

Our revolutionary approach to cloud security is a key reason why “security and risk management leaders with cloud first approaches and large cloud footprints should consider Orca Security for rapid risk assessments of complex workloads.”

To download the full Gartner 2021 “Cool Vendors in Cloud Security Posture Management,” visit the Orca Security Gartner Cool Vendor Blog.

Additional Resources:

[1] Gartner, “Cool Vendors in Cloud Security Posture Management,” Tom Croll, Neil MacDonald, Mark Wah, Prateek Bhajanka, June 9, 2021.

Gartner Disclaimer

Gartner does not endorse any vendor, product or service depicted in its research publications and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of the Gartner Research and Advisory organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

About Orca Security

Orca Security, the cloud security innovation leader, provides instant-on security and compliance for AWS, Azure, and GCP – without the gaps in coverage, alert fatigue, and operational costs of agents or sidecars.

Give your team superpowers and simplify security operations with a single SaaS-based cloud security platform for workload and data protection, cloud security posture management, vulnerability management, and compliance management. Instead of disparate tools operating in silos, Orca Security builds a graph that encompasses all cloud assets, software, connectivity, and trust - then prioritizes risk based on the severity of the underlying security issue, its accessibility, and business impact. This eliminates thousands of meaningless security alerts and helps you focus on what matters most.

With Orca Security, no code runs within your cloud environment. Orca SideScanning™ reads your cloud configuration and workloads’ runtime block storage out-of-band, detecting vulnerabilities, malware, misconfigurations, lateral movement risk, weak and leaked passwords, and unsecured PII. There are no overlooked assets, no DevOps headaches, and no performance hits on live environments.

Orca Security is trusted by global innovators, including Databricks, Lemonade, Gannett, and Robinhood. Connect your first cloud account in minutes and see for yourself. Visit https://orca.security

Contacts

Brendan Hughes
RH Strategic for Orca Security
orcapr@rhstrategic.com
206-264-0246

Contacts

Brendan Hughes
RH Strategic for Orca Security
orcapr@rhstrategic.com
206-264-0246