Orca Security Achieves CIS Benchmarks Certification Across 24 Cloud Frameworks
Orca Cloud Security Platform Certified to Ensure Compliance Across All Major Cloud Platforms and Critical Controls
PORTLAND, Ore. – August 1, 2023 – Orca Security, the pioneer of agentless cloud security, today announced that the Orca Cloud Security Platform has been certified by the Center for Internet Security® (CIS®), attesting that the platform accurately identifies any configurations that deviate from recommended best practices in over 60 CIS Benchmarks. Orca Security’s agentless approach provides comprehensive cloud security scans in a matter of minutes, identifying cloud risks without the gaps in coverage, allowing organizations to securely move to and scale in the cloud.
CIS is a community-driven nonprofit, responsible for the CIS Controls® and CIS Benchmarks™, globally recognized best practices for securing IT systems and data. The CIS Benchmarks are prescriptive configuration recommendations for a wide variety of vendor product families. They represent the consensus-based effort of cybersecurity experts globally to help organizations confidently protect their systems against cyber threats. CIS certifies that Orca has adapted its product to accurately assess and report to the security recommendations in the associated CIS Benchmarks for more than 60 different Benchmarks, including Amazon Web Services (AWS), Amazon Linux, Alibaba, Microsoft Azure, Azure Kubernetes, Google Cloud Platform, Oracle Cloud, Red Hat, and Ubuntu.
“In a complex threat environment, it is hard for organizations to know whom to trust,” said Gil Geron, CEO & Co-Founder, Orca Security. “Being officially certified to deliver CIS Benchmarks affirms that the Orca Cloud Security Platform is best in class, leveraging an innovative approach that enables organizations to confidently embrace the cloud. Whatever your platform and architecture, Orca can protect it at the speed of business.”
Orca’s patented SideScanning technology, which many competitors have since tried to imitate, is revolutionary in the cloud security space. Unlike traditional agent-based solutions, Orca utilizes cloud infrastructure rather than traditional network structure to identify or track assets. The platform collects data directly with read-only access from cloud workloads’ runtime block storage without the need to install an agent.
The CIS Benchmark certification gives Orca customers even more confidence in using the Orca Cloud Security Platform to ensure compliance across critical controls. For example, Hunters relies on Orca to pursue compliance with various regulations, including SOC 2 Type 2. “We’re in our second year with the SOC 2 audit and Orca Security makes it so much easier,” says Tomer Kazaz, co-founder and CTO at Hunters. “We export an Orca report, take a few screenshots, and paste it as evidence. But the audit isn’t just about production. They want to know about policies pertaining to enterprise security and other company processes. Orca helps us with technical aspects of the audit by informing us how we can run as cleanly as possible.”
The recognition from CIS is the latest in a series of significant milestones and commendations for Orca. In May, Orca was named to the CNBC Disruptor 50 List for 2023, which recognizes the fastest-growing, innovative private startups advancing breakthrough technology for tackling some of society’s biggest challenges across channels. In March, Forbes recognized Orca on its 2023 America’s Best Startup Employers list for its commitment to maintaining a strong reputation, investing in employee satisfaction, and experiencing steady growth.
For more information visit https://www.cisecurity.org/partner/orca-security
About Orca Security
Orca Security is the pioneer of agentless cloud security that is trusted by hundreds of enterprises globally. Orca makes cloud security possible for enterprises moving to and scaling in the cloud with its patented SideScanning™ technology and Unified Data Model. The Orca Cloud Security Platform delivers the world’s most comprehensive coverage and visibility of all risks across the cloud. With continuous first-to-market innovations and expertise, the Orca Platform ensures security teams quickly identify and remediate risks to keep their businesses secure. Connect your first account in minutes: https://orca.security or take the free cloud risk assessment.
The Center for Internet Security, Inc. (CIS®) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit, responsible for the CIS Controls® and CIS Benchmarks™, globally recognized best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats. Our CIS Hardened Images® provide secure, on-demand, scalable computing environments in the cloud. CIS is home to the Multi-State Information Sharing and Analysis Center® (MS-ISAC®), the trusted resource for cyber threat prevention, protection, response, and recovery for U.S. State, Local, Tribal, and Territorial government entities, and the Elections Infrastructure Information Sharing and Analysis Center® (EI-ISAC®), which supports the rapidly changing cybersecurity needs of U.S. elections offices. To learn more, visit CISecurity.org or follow us on Twitter: @CISecurity.
fama PR for Orca Security