Orca Security Features

Management (3)

Dashboards and Reports: Access pre-built and custom reports and dashboards.
Workflow Management: Creates new or streamlines existing workflows to better handle IT support tickets and service.
Administration Console: Provides Administration tools/console that are easy to use and learn for routine maintenance tasks

Operations (3)

Governance: Allows users to create, edit, and relinquish user access privileges.
Logging and Reporting: Provides required reports to manage business. Provides adequate logging to troubleshoot and support auditing.
API / Integrations: Application Programming Interface - Specification for how the application communicates with other software. API's typically enable integration of data, logic, objects, etc. with other software applications.

Security Controls (4)

Anomaly Detection: Constantly monitors acivity related to user behavior and compares activity to benchmarked patterns.
Data Loss Prevention: Stores data securely either on premise or in an adjacent cloud database to prevent loss of data at rest.
Security Auditing: Analyzes data associated with security configurations and infrastructure to provide vulnerability insights and best practices.
Cloud Gap Analytics: Analyzes data associated with denied entries and policy enforcement, giving information of better authentication and security protocols.

Administration (7)

Risk Scoring: Provides risk scoring for suspicious activity, vulnerabilities, and other threats.
Secrets Management: Provides tools for managing authentication credentials such as keys and passwords.
Security Auditing: Analyzes data associated with security configurations and infrastructure to provide vulnerability insights and best practices.
Configuration Management: Monitors configuration rule sets and policy enforcement measures and document changes to maintain compliance.
Policy Enforcement: Allows administrators to set policies for security and data governance.
Auditing: Analyzes data associated with web traffic and site performance to provide vulnerability insights and best practices.
Workflow Management: Creates new or streamlines existing workflows to better handle IT support tickets and service.

Monitoring (3)

Continuous Image Assurance: Provides image verification features to establish container approval requirements and continuously monitor for policy violations to identify containers with known vulnerabilities, malware, and other threats.
Behavior Monitoring: Constantly monitors acivity related to user behavior and compares activity to benchmarked patterns and fraud indicators.
Observability: Generate insights across IT systems utilizing event metrics, logging, traces, and metadata.

Protection (4)

Dynamic Image Scanning: Scans application and image source code for security flaws without executing it in a live environment
Runtime Protection: Monitors container activities and detects threats across containers, networks, and cloud service providers.
Workload Protection: Protects compute resources across a networks and cloud service providers. Serves as Firewall and prompts additional authentication for suspicious users.
Network Segmentation: Allows administrative control over network components, mapping, and segmentation.

Security (4)

Compliance Monitoring: Monitors data quality and sends alerts based on violations or misuse.
Anomoly Detection: Constantly monitors acivity related to user behavior and compares activity to benchmarked patterns.
Data Loss Prevention: Stores data securely either on premise or in an adjacent cloud database to prevent loss of data at rest.
Cloud Gap Analytics: Analyzes data associated with denied entries and policy enforcement, giving information of better authentication and security protocols.

Compliance (3)

Governance: Allows users to create, edit, and relinquish user access privileges.
Data Governance: Ensures user access management, data lineage, and data encryption.
Sensitive Data Compliance: Supports compliance with PII, GDPR, HIPPA, PCI, and other regulatory standards.

Performance (4)

Issue Tracking: Track issues as vulnerabilities are discovered. Documents activity throughout the resolution process.
Detection Rate: The rate at which scans accurately detect all vulnerabilities associated with the target.
False Positives: The rate at which scans falsely indicate detection of a vulnerability when no vulnerabilitiy legitimately exists.
Automated Scans: Runs pre-scripted vulnerability scans without requiring manual work.

Network (3)

Compliance Testing: Allows users to scan applications and networks for specific compliance requirements.
Perimeter Scanning: Analyzes network devices, servers and operating systems for vulnerabilities.
Configuration Monitoring: Monitors configuration rule sets and policy enforcement measures and document changes to maintain compliance.

Application (3)

Manual Application Testing: Allows users to perfrom hands-on live simulations and penetration tests.
Static Code Analysis: Scans application source code for security flaws without executing it.
Black Box Testing: Scans functional applications externally for vulnerabilities like SQL injection or XSS.

API Management (4)

API Discovery: Detects new and undocumented assets as they enter a network and add them to asset inventory.
API Monitoring: Detects anomalies in functionality, user accessibility, traffic flows, and tampering.
Reporting: Provides results of the simulation and reveals potential security gaps or vulnerabilitites.
Change Management: Tools to track and implement required security policy changes.

Security Testing (3)

Compliance Monitoring: Monitors data quality and send alerts based on violations or misuse.
API Verification: Allows users to set customizable API verification settings to improve security requirements.
API Testing: Runs pre-scripted security tests without requiring manual work.

Security Management (3)

Security and Policy Enforcement: Abilities to set standards for network, application, and API security risk management.
Anomoly Detection: Constantly monitors activity related to user behavior and compares activity to benchmarked patterns.
Bot Detection: Monitors for and rids systems of bots suspected of committing fraud or abusing applications.

Configuration (5)

DLP Configuration: Offers data loss prevention tools to protect data from leaving the environments it is allowed to.
Configuration Monitoring: Monitors configuration rule sets and policy enforcement measures and document changes to maintain compliance.
Unified Policy Management: Allows users to track and control security policies across cloud services and providers.
Adaptive Access Control: Provides a risk-based approach to determining trust within the network.
API / Integrations: Application Programming Interface - Specification for how the application communicates with other software. API's typically enable integration of data, logic, objects, etc. with other software applications.

Visibility (2)

Vulnerability Management (4)

Threat Hunting: Facilitates the proactive search for emerging threats as they target servers, endpoints, and networks.
Vulnerability Scanning: Analyzes your existing cloud, network, and IT infrastructure to outline access points that can be easily compromised.
Vulnerability Intelligence: Stores information related to new and common vulnerabilities and how to resolve them once incidents occur.
Risk-Prioritization: Allows for vulnerability ranking by customized risk and threat priorities.

Access control - Cloud Infrastructure Entitlement Management (CIEM) (4)

Policy Management: Helps define policies for access management
Fine-Grained Access Control: Uses principle of least privilege to ensure access control at granular level of specific resources and apps
Role-Based Access Control (RBAC): Enables organization to define roles and assign access based on these roles
AI-driven access control: Streamlines the management of user access through AI

Monitoring - Cloud Infrastructure Entitlement Management (CIEM) (2)

Auditing - Cloud Infrastructure Entitlement Management (CIEM) (2)

Security - Cloud-Native Application Protection Platform (CNAPP) (4)

Workload and container security: Scans containers, workloads, and kubernetes clusters for any misconfigurations or vulnerabilities.
Threat detection and response: Monitor live environments for anomalies, risks and threats to ensure rapid response.
DevSecOps Integrations: Integrates with CI/CD pipelines to detect security risks early in the development life cycle.
Unified Visibility: Consolidate all security data across the tech and cloud stacks into one dashboard.

Artificial Intelligence - Cloud-Native Application Protection Platform (CNAPP) (3)

Cloud Configuration Management - Cloud-Native Application Protection Platform (CNAPP) (2)

Agentic AI - Vulnerability Scanner (2)

Agentic AI - Cloud-Native Application Protection Platform (CNAPP) (2)

Agentic AI - Cloud Detection and Response (CDR) (3)

Services - Cloud Detection and Response (CDR) (1)

Functionality - AI Security Posture Management (AI-SPM) Tools (5)

Security Ecosystem Integration: Integrate with existing security infrastructure (SIEM, CASB, IAM, DSPM/CSPM/SSPM) to bring AI‑SPM into the wider security ecosystem.
AI Asset Discovery: Discover AI applications, agents, chatbots and integrations across SaaS, APIs and other environments.
Adaptive Policy Updates: Support continuous updates to policies and controls as AI‑tool usage evolves and new threats emerge.
Access and Permissions Monitoring: Monitor data flows, permissions and resource access associated with AI integrations and tools.
Policy Enforcement: Enforce AI‑specific security policies in real time, such as limiting agent permissions and blocking unauthorized AI activity.