Orca Security, the pioneer of agentless cloud security, announced that the Orca Cloud Security Platform has been certified by the Center for Internet Security, attesting that the platform accurately identifies any configurations that deviate from recommended best practices in over 60 CIS Benchmarks. Orca Security’s agentless approach provides comprehensive cloud security scans in a matter of minutes, identifying cloud risks without the gaps in coverage, allowing organizations to securely move to and scale in the cloud.
CIS is a community-driven nonprofit, responsible for the CIS Controls and CIS Benchmarks, globally recognized best practices for securing IT systems and data. The CIS Benchmarks are prescriptive configuration recommendations for a wide variety of vendor product families. They represent the consensus-based effort of cybersecurity experts globally to help organizations confidently protect their systems against cyber threats. CIS certifies that Orca has adapted its product to accurately assess and report to the security recommendations in the associated CIS Benchmarks for more than 60 different Benchmarks, including Amazon Web Services (AWS), Amazon Linux, Alibaba, Microsoft Azure, Azure Kubernetes, Google Cloud Platform, Oracle Cloud, Red Hat, and Ubuntu.
“In a complex threat environment, it is hard for organizations to know whom to trust,” said Gil Geron, CEO & Co-Founder, Orca Security. “Being officially certified to deliver CIS Benchmarks affirms that the Orca Cloud Security Platform is best in class, leveraging an innovative approach that enables organizations to confidently embrace the cloud. Whatever your platform and architecture, Orca can protect it at the speed of business.”
Orca’s patented SideScanning technology, which many competitors have since tried to imitate, is revolutionary in the cloud security space. Unlike traditional agent-based solutions, Orca utilizes cloud infrastructure rather than traditional network structure to identify or track assets. The platform collects data directly with read-only access from cloud workloads’ runtime block storage without the need to install an agent.
The CIS Benchmark certification gives Orca customers even more confidence in using the Orca Cloud Security Platform to ensure compliance across critical controls. For example, Hunters relies on Orca to pursue compliance with various regulations, including SOC 2 Type 2. “We’re in our second year with the SOC 2 audit and Orca Security makes it so much easier,” says Tomer Kazaz, co-founder and CTO at Hunters. “We export an Orca report, take a few screenshots, and paste it as evidence. But the audit isn’t just about production. They want to know about policies pertaining to enterprise security and other company processes. Orca helps us with technical aspects of the audit by informing us how we can run as cleanly as possible.”
SOURCE: Businesswire