Orca Security Reviews

Name: Orca Security
Brand: Orca Security
Rating: 4.4 (31 reviews)

Vendor: Orca Security

4.4 out of 5

31 reviews
100% willing to recommend

Leave a review

What is Orca Security?

Orca Security provides comprehensive security management with agentless visibility and SideScanning technology, ensuring efficient threat detection without performance impact.

Get the Orca Security Buyer's Guide and find out what your peers are saying about Orca Security, Datadog, Wiz and more!

Orca Security is the #2 ranked solution in top Cloud Detection and Response (CDR) solutions, #3 ranked solution in API Security Solutions, #5 ranked solution in Cloud Workload Protection Platforms, #5 ranked solution in top Cloud-Native Application Protection Platforms (CNAPP) solutions, #5 ranked solution in top AI Security solutions, #7 ranked solution in top Cloud Security Posture Management (CSPM) solutions, #8 ranked solution in top Data Security Posture Management (DSPM) solutions, #10 ranked solution in top Vulnerability Management solutions, and #10 ranked solution in Container Security Solutions. PeerSpot users give Orca Security an average rating of 8.8 out of 10. Orca Security is most commonly compared to Datadog: Orca Security vs Datadog. Orca Security is popular among the large enterprise segment, accounting for 56% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 15% of all views.

Helped 891,869 peers since 2012

Featured Orca Security reviews

reviewer2799597

Soc Analyst at a tech consulting company with 11-50 employees

Yes, as per my experience, it has been very helpful. In our organization, we did not find any major or priority one kind of alerts or risks because we had a very good infrastructure structure and cybersecurity architecture built in our organization. Orca Security helped us find what vulnerabilities or gaps existed which we could improve within our architecture. It helped us in such a way that we used to close the open ports and only allowed internal IPs for necessity. For staging environments and for prod we had DOS protection. If network traffic showed that anybody was trying to flood our systems, we would only accept all and our client-related IPs or an approved list of vendor lists we would have. We would get to know where the gaps are and where the improvements we could make. Being an analyst class engineer, I could use my brain in those areas and it was very helpful to have Orca Security in my arsenal.

Read full review

reviewer2800203

Assistant Manager at a manufacturing company with 10,001+ employees

The standout part of Orca Security is the package approach. When they provide remediation or alerts, they also provide the exact path for a particular vulnerability or alert. They show us the specific path that needs to be fixed in order to remove the vulnerability or alert. They provide path information directly from the systems, so sometimes we don't need to log in directly and investigate ourselves. This feature is valuable, though there are occasional false positives, which is a normal part of security. Regarding prioritization and assigning risk, Orca Security was good at analyzing risks contextually and holistically. As the tool and product mature, they will definitely announce new features. On a scale of ten, I would rate this around seven or eight. I have not given a ten because there are a few false positives and some areas where the product needs improvement on a regular basis. Sometimes they release the product, but modifications could still be required on their side. It is good to prioritize risks with Orca Security because they are not only targeting the CVSS score but also the EPSS, which is the Exploit Prediction Scoring System. They monitor particular assets based on both approaches. On the CVSS side, they reference the National Vulnerability Database, and on the EPSS side, they target the Exploit Prediction Scoring System. So they are targeting both risk-based approaches as well as the CVSS approach.

Read full review

RicardoEscriba Robles

Co E Cloud Security at Banco de Crédito BCP

Cloud security analyzes vulnerabilities or alerts by IaaS or PaaS because Orca Security analyzes these items very well. Side scanning is, in my opinion, the best tool by Orca Security. However, it is necessary to deploy the sensor agent in new tools, such as Kubernetes, Lambda functions, and other services. The sensor feature is good, but I prefer to use another alternative. For example, CSA by Cloud Security Alliance or by PCI or by CIS control is not optimized in Orca Security. I prefer to use another platform because these frameworks are more structured than Orca Security. AppSec by Orca Security is the most interesting feature because it analyzes keys, passwords, and any methods for pull requests because it has integration with GitHub, Azure DevOps, and other platforms. Orca Security continues to remodel the look and feel of the solution. In my opinion, it is very good. I would rate this review an eight out of ten.

Read full review

Orca Security mindshare

Product category:

As of April 2026, the mindshare of Orca Security in the Cloud-Native Application Protection Platforms (CNAPP) category stands at 5.8%, down from 8.0% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Cloud-Native Application Protection Platforms (CNAPP) Mindshare Distribution
Product	Mindshare (%)
Orca Security	5.8%
Wiz	15.4%
Prisma Cloud by Palo Alto Networks	11.4%
Other	67.4%

Cloud-Native Application Protection Platforms (CNAPP)

PeerResearch reports based on Orca Security reviews

Type	Title	Date
Category	Cloud-Native Application Protection Platforms (CNAPP)	Apr 29, 2026	Download
Product	Reviews, tips, and advice from real users	Apr 29, 2026	Download
Comparison	Orca Security vs Wiz	Apr 29, 2026	Download
Comparison	Orca Security vs Prisma Cloud by Palo Alto Networks	Apr 29, 2026	Download
Comparison	Orca Security vs SentinelOne Singularity Cloud Security	Apr 29, 2026	Download

Valuable Features

Orca Security's most valuable features include its agentless architecture, which enables efficient cloud security gap analysis and vulnerability detection without needing agents. It provides comprehensive visibility into attack paths and risk prioritization, integrates seamlessly with CI/CD pipelines for code security, and supports multi-cloud platforms like AWS and Azure. The intelligent risk ranking, real-time monitoring via Orca Sensor, and flexibility in integrations make it highly valued for cloud security management.

"Orca Security typically delivers three major positive changes, in my opinion: a faster understanding of risks in cloud environments, better prioritization, and less noise."
"Orca Security integration was one of the easiest we have done because it is cloud-native and agentless."
"Before starting with Orca, I was blind; think about someone who was blind and now they can see, it's a new world."

Room for Improvement

Orca Security can enhance real-time blocking by integrating agentless features. Automation, particularly for remediation, is desired. Users seek better detection efficiency, customization options, and integration with tools like Power BI. Lateral movement detection and dashboard usability could be improved. Challenges with scan duration, UI changes, and OCI support need addressing. Improving reporting, documentation, and handling alerts could elevate the user experience, while expanding cloud and anti-malware capabilities would be beneficial.

"In two implementation projects that I participated in, the customers reported difficulty with the options for generating specific reports."
"The difference between agentless and agent solutions is that while agentless provides great visibility, it does not offer real-time blocking."
"The main drawback in an agentless approach is that if the solution detects a virus or malware in the environment, we need to manually remove it."

ROI

Users highlighted that Orca Security delivered immediate value and substantial returns within weeks, reducing operating costs significantly and enhancing security visibility. They emphasize Orca's simplicity, noting it eliminates the need for extensive training or additional staffing. Many mentioned financial savings from reduced overhead and staffing costs, acknowledging that while Orca's initial price is high, the total cost of ownership is lower compared to competitors. Users expressed that Orca facilitated cloud migration and significantly impacted cost savings.

Pricing

Orca Security's pricing is seen as competitive and flexible, varying based on cloud workloads and licensing needs. While some users find it affordable compared to competitors like Palo Alto Prisma Cloud, others note it can be costly for certain features or smaller organizations. Discounts are available for strategic partnerships, and its pricing model is straightforward, with all features included. Orca's approach allows for negotiation, especially for medium-sized companies. Pricing is influenced by asset quantity and environment setup.

"Its license is a bit expensive."
"Orca Security charges are based on cloud workloads. So, it's based on workloads. If we look at one feature, it might be expensive."
"Orca Security is cheaper compared to other solutions in the same space."

Popular Use Cases

Orca Security is widely adopted for cloud security, posture management, and vulnerability detection across various cloud infrastructures like AWS, Azure, and GCP. Its agentless architecture offers visibility into misconfigurations and attack paths, helping organizations manage identity risks and optimize compliance with security frameworks. Users appreciate the operational efficiency, identity management features, and risk prioritization, while also utilizing features like side scanning, container, and Kubernetes security checks, and CI/CD pipeline integration without needing on-premises installations.

Service and Support

Orca Security's technical support is regarded as skilled and responsive, often rated between eight and ten out of ten. Response times are generally quick, with issues addressed effectively. However, customer support varies. Some users find it less experienced, while others appreciate their helpfulness. The support team is praised for their dedication, although a few mention delays in response. Users highlight the benefit of a responsive environment, particularly due to the cloud-based nature.

Deployment

Users found Orca Security's initial setup exceptionally easy due to its cloud-native, agentless nature. They praised its quick deployment, typically taking minutes by simply entering admin credentials. Many valued its minimal setup complexity and seamless integration across different cloud platforms like AWS, Azure, and Google. Some needed Orca support for AWS onboarding. They appreciated Orca's efficiency, describing it as reducing overhead and eliminating the need for extensive testing.

Scalability

Orca Security is highly adaptable, supporting major cloud providers and enabling fast deployment without agents. It suits both small and large enterprises, efficiently scaling across environments. Many users rate it between eight to ten for adaptability. Some find it less effective with Kubernetes, requiring additional steps, yet it remains robust in cloud environments without significant downtime. Orca is praised for handling heavy loads and seamlessly integrating cloud resources for monitoring and security.

Stability

Orca Security earns high marks for stability from users, who report minimal downtime, bugs, or glitches. While some note occasional frontend issues, these are swiftly resolved by support. Many rate stability between eight and ten, praising its reliable performance even over extended use. A few instances of downtime were reported during non-standard hours, but Orca Security's overall performance is considered robust and the most stable among comparable tools.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Orca Security Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company Size	Count
Small Business	14
Midsize Enterprise	8
Large Enterprise	8

By reviewers

By visitors reading reviews
Company Size	Count
Small Business	277
Midsize Enterprise	169
Large Enterprise	569

By visitors reading reviews

Top industries

By visitors reading reviews

Financial Services Firm

15%

Computer Software Company

12%

Manufacturing Company

Healthcare Company

Construction Company

Comms Service Provider

University

Retailer

Outsourcing Company

Energy/Utilities Company

Government

Insurance Company

Media Company

Educational Organization

Non Profit

Real Estate/Law Firm

Hospitality Company

Transportation Company

Performing Arts

Aerospace/Defense Firm

Legal Firm

Wholesaler/Distributor

Logistics Company

Marketing Services Firm

Wellness & Fitness Company

Recreational Facilities/Services Company

Photography Company

Compare Orca Security with alternative products

Learn more about Orca Security

Orca Security offers agentless visibility across multi-cloud environments, streamlining security management with features like SideScanning technology and centralized security tools. It focuses on automation, vulnerability management, and compliance checks, enhancing a company's security posture with real-time alerts and integrated threat detection. Its intuitive interface prioritizes critical issues, making it suitable for managing DevSecOps processes efficiently.

What are the key features of Orca Security?

Agentless Visibility: Gain comprehensive insights into cloud environments without deploying agents.
SideScanning Technology: Detect threats and vulnerabilities efficiently across platforms.
Comprehensive Security Management: Centralizes security across AWS, GCP, and Azure with minimal setup effort.
CIEM Feature: Enhances security posture with integrated identity and access management.
Real-Time Alerts: Provide immediate awareness of security threats and vulnerabilities.
Automation and Compliance: Streamline processes with automated vulnerability management and compliance checks.

What benefits and ROI should companies look for in Orca Security?

Centralized Management: Simplifies security operations by consolidating tools across cloud environments.
Improved Security Posture: Reduces alerts and manages threats effectively with detailed insights.
Efficient Threat Detection: Enhances response capabilities with integrated threat detection and real-time alerts.
Easy Deployment and Setup: Facilitates quick implementation without complex configurations.
Enhanced Integration: Supports seamless integration with existing security frameworks and processes.

Companies in industries such as finance, healthcare, and technology leverage Orca Security for cloud security posture management, ensuring compliance with standards and securing applications and databases. Its agentless approach provides comprehensive visibility across AWS, GCP, and Azure, enhancing risk assessment and vulnerability management without impacting asset performance.

Orca Security customers

BeyondTrust, Postman, Digital Turbine, Solarisbank, Lemonade, C6 Bank, Docebo, Vercel, and Vivino

Product Categories

Cloud-Native Application Protection Platforms (CNAPP)

Vulnerability Management

Container Security

Cloud Workload Protection Platforms (CWPP)

API Security

Cloud Security Posture Management (CSPM)

Data Security Posture Management (DSPM)

Cloud Detection and Response (CDR)

AI Security

Popular Comparisons

Datadog vs Orca Security

Wiz vs Orca Security

SentinelOne Singularity Cloud Security vs Orca Security

Snyk vs Orca Security

Microsoft Defender for Cloud vs Orca Security

Darktrace vs Orca Security

Prisma Cloud by Palo Alto Networks vs Orca Security

Checkmarx One vs Orca Security

Veracode vs Orca Security

Varonis Platform vs Orca Security

Qualys VMDR vs Orca Security

Tenable Nessus vs Orca Security

AWS GuardDuty vs Orca Security

CrowdStrike Falcon Cloud Security vs Orca Security

JFrog Xray vs Orca Security

See all alternatives

Orca Security Reviews Summary
Author info	Rating	Review Summary
Soc Analyst at a tech consulting company with 11-50 employees	3.5	I find Orca Security an easy-to-deploy, agentless cloud security platform, excelling in posture management, vulnerability scanning, and attack path analysis. It offers great visibility and cloud context but lacks real-time blocking and automation.
Assistant Manager at a manufacturing company with 10,001+ employees	4.0	I found Orca Security a good CSPM tool, valuing its precise remediation paths and contextual risk prioritization. It helped reduce operating expenses. I noted occasional false positives and unannounced UI changes, but overall recommend it based on my experience.
Co E Cloud Security at Banco de Crédito BCP	4.0	I value Orca Security's agentless visibility, context-aware prioritization, and ease of use, with strong secret scanning. However, I find its vulnerability detection weaker than competitors and customer support is poor.
Cyber Security Analyst Ii at Grupo PRIMO	5.0	I find Orca Security excellent for its agentless AppSec, quick risk prioritization, and easy integration, quickly identifying cloud vulnerabilities and unused assets. While executive reporting is a drawback, setup was simple, and support is responsive, making it superior to previous solutions.
CTO /Director at OPLIUM	4.0	As an integrator, I rate Orca Security an 8/10. Its automation, compatibility, and deep investigation are excellent, making it a prime, stable, and scalable solution. It offers great visibility, though more comprehensive development is needed.
Cybersecurity Recruitment Specialist at a tech services company with 51-200 employees	4.0	I rate Orca Security highly for its comprehensive agentless cloud security, offering full visibility and frictionless deployment across major clouds. However, its elevated price and less professional customer support, including uptime issues, are concerns.
Cybersecurity Architect Lead at a consultancy with 11-50 employees	4.5	I use Orca Security to boost cloud security, finding its comprehensive CNAPP capabilities, easy setup, and immediate ROI excellent. It's stable, scalable, and competitively priced, though OCI support is limited. I rate it 9/10.
Cyber Security Consultant at ShieldSec	4.0	I find Orca Security valuable for its agentless Side-Scanning and Attack Path features, which accelerate cloud security insights and risk prioritization. It is stable and scalable, though reporting customization and AWS tag import need improvement.

Title	Rating	Mindshare	Recommending
Datadog	4.3	N/A	97%	208 interviews Add to research
Wiz	4.4	15.4%	97%	41 interviews Add to research

Orca Security Reviews

What is Orca Security?

Featured Orca Security reviews

Orca Security mindshare

PeerResearch reports based on Orca Security reviews

Valuable Features

Room for Improvement

ROI

Pricing

Popular Use Cases

Service and Support

Deployment

Scalability

Stability

Review data by company size

Top industries

Compare Orca Security with alternative products

Learn more about Orca Security

Orca Security customers

Related questions

Product Categories

Popular Comparisons