Today, we’re excited to announce several significant enhancements to our Terraform Provider that make it even more powerful and versatile.
The foundation: Infrastructure as Code (IaC) for cloud security
As we discussed in our initial announcement, the Orca Security Terraform Provider bridges the gap between infrastructure as code (IaC) and cloud security operations. By enabling security teams to define and manage Orca configurations programmatically, we’ve helped organizations:
- Standardize security configurations across multiple cloud environments.
- Reduce manual intervention in security operations.
- Track security changes through version control.
Enhanced capabilities for modern cloud security
Our initial releases provided essential capabilities for managing alerts, configurations, and basic security controls. Users could define alert rules, set up basic automations, and manage Application Security and RBAC configurations through Terraform.
Now, we’re taking these capabilities to the next level with several powerful enhancements.
1. Expanded automation framework
The Orca Platform enables you to create automations—rules that trigger specific actions when predefined conditions are met. Automations save teams significant time and capacity on repetitive and routine tasks. With this latest enhancement, we offer expanded automation capabilities, allowing security teams to:
- Manage automations that leverage the following tools:
- Amazon Security Lake
- AWS Security Hub
- AWS SQS
- Azure Sentinel
- Coralogix
- GCP Pub/Sub
- Jira Server
- Opsgenie
- PagerDuty
- Slack (both v1 and v2 apps)
- Snowflake
- Splunk
- Tines
- Torq
- Manage automations that can dismiss alerts and change alert scores.
- Scope these actions to certain departments or applications through Orca’s Business Units feature.
- Disable automations for set periods of time.
2. Discovery-based alert rules
Orca’s Discovery feature allows users to query security intelligence across their entire cloud estate using plain language searches. It also enables users to create alerts based on those queries to track their associated findings over time. With our new enhancement, users can take advantage of our new Discovery-based alerting system for more granular control over security monitoring, enabling security teams to:
- Create alerts based on the more intuitive Discovery query builder in addition to Sonar queries (a search tool in Orca for more advanced users).
3. Enhanced dashboard widgets
The Orca Platform provides built-in and customizable dashboard widgets to surface the most important intelligence and enable teams to see key insights on the fly. Our new enhancement now supports table-based widgets (shown on the right in the image below) in addition to the already supported donut widgets (shown on the left). This provides users with greater flexibility when customizing their dashboard views.

4. Example Dashboards
To further assist security teams in operationalizing the Orca Platform with Terraform, we now offer built-in dashboards that cover several use cases. These built-in dashboards enable users to quickly deploy a complete dashboard they can readily use or tailor to their team’s specific needs. These include:
- Top 10: Displays top alerts from each alert category.
- Alert Metrics: Tracks alert resolution progress.
- Vulnerability Management: Displays top vulnerability findings, vulnerable assets, and more.
- External Exposure: Tracks exposed assets, exposed asset risks, and more.
- SecOps: Surfaces top security findings for security operations teams.

Getting started with the enhanced Terraform Provider
Ready to take advantage of these new capabilities? Here’s how to get started:
- Update your Terraform provider to the latest version (v0.0.XYZ).
- Check out our updated documentation.
- Raise a question (or issue) on the provider repo (as a GitHub issue).
We’re committed to continuing our investment in the Terraform Provider, making it easier for organizations to manage their cloud security posture through IaC. Try out these new features today and let us know what you think!
About the Orca Cloud Security Platform
The Orca Cloud Security Platform identifies, prioritizes, and remediates security risks and compliance issues across AWS, Azure, Google Cloud, Kubernetes, Oracle Cloud, and Alibaba Cloud. Orca leverages our patented SideScanning™ Technology and Unified Data Model to provide complete coverage, full context, and holistic risk detection.
Learn More
Interested in seeing the Orca Cloud Security Platform in action? Schedule a personalized 1:1 demo with one of our experts.