We performed a comparison between Orca Security and AWS GuardDuty based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Orca Security offers comprehensive cloud visibility and simplified insights through its patented agentless SideScanning technology. Users like its container security, compliance dashboard, and non-intrusive vulnerability management. AWS GuardDuty stands out for its single pane of glass data collection and the ability to monitor AWS accounts at no additional cost. Orca Security could enhance its intrusion detection, data center compatibility, and integration with non-standard ticketing systems. AWS GuardDuty would benefit from a mobile version and stronger dashboard analytics.
Service and Support: Users praised Orca Security's customer service for their prompt assistance and proactive approach to meeting customer requirements. Users value the team's commitment to enhancing their product. Reviewers also spoke highly of AWS technical support, but some users reported occasional delays when reaching out via phone.
Ease of Deployment: The initial setup of Orca Security is quick and uncomplicated, requiring minimal effort and no ongoing maintenance. AWS GuardDuty is also relatively simple and efficient to set up, although it may vary in complexity based on the architecture and integrations involved.
Pricing: Some Orca Security users find it expensive compared to alternatives like Wiz. At the same time, many think the cost is justified due to the level of visibility and security it offers. AWS GuardDuty offers a competitive pay-go license without any extra charges.
ROI: Orca Security offers an all-inclusive security solution that saves users money and allows them to consolidate tools. It delivers instant results, and minimal training is required. Additionally, Orca Security constantly introduces new features without additional charges. In contrast, AWS GuardDuty enhances an organization's overall security posture, resulting in improved customer trust and potential business prospects.
Comparison Results: Orca Security is favored over AWS GuardDuty. Users appreciate the visibility Orca Security offers and find it easy to gain insight into their environment. Orca Security effectively ranks vulnerabilities and risks and excels in container security. Users complained about AWS GuardDuty's lack of dashboard analytics and mobile app.
"I did a lot of research before signing up and doing the demo. They have a good reputation as far as catching threats early on."
"It is advantageous in terms of time-saving and cost reduction."
"Cloud Native Security's most valuable features include cloud misconfiguration detection and remediation, compliance monitoring, a robust authentication security engine, and cloud threat detection and response capabilities."
"The most valuable feature of PingSafe is its integration with most of our technology stack, specifically all of our cloud platforms and ticketing software."
"Cloud Native Security has helped us with our risk posture and securing our agenda. It has been tremendous in terms of supporting growth."
"It is fairly simple. Anybody can use it."
"The solution is a good alerting tool."
"The agentless vulnerability scanning is great."
"AWS GuardDuty helps by providing continuous threat detection and signaling potential threats. Its most valuable feature is continuous monitoring. The tool's integration with other AWS services has improved security. It provides continuous monitoring and intelligent threat detection, quickly signaling any issues. I would rate this improvement a seven out of ten."
"We use the tool for threat detection. AWS includes AI features as well. AWS GuardDuty gives us reports."
"The solution is easy to use."
"We have over 1,000 employees, and we monitor their activity through AWS GuardDuty."
"The product has automated protection powered by AI/ML, which is now far more powerful than before. It uses AI/ML in its detection algorithm, providing fast and quick results."
"What we found most valuable in Amazon GuardDuty is its threat detection feature, especially because we were monitoring a huge number of AWS accounts, so we needed a solution that would monitor for any kind of malicious activity. The monitoring aspect of the solution was great because it gave us timely notifications if and when anything happened, and Amazon GuardDuty helped keep us on our toes to make sure we took action right away."
"One of the advantages of cloud services is the ability to use them on demand. There's minimal installation involved; you can check the latest offerings and make new deployments while dismantling the previous ones. This approach keeps you ahead of potential services, showcasing the agility of AWS."
"The solution will detect abnormalities in the AWS workload and alert us so that we can monitor and take action."
"Another valuable feature with Orca, something that's not talked about enough, is its ability to rank your gaps and your tasks... You can get visibility with agents and there are a lot of ways to do that. But the ranking and the context across the entire environment, that is what is unique about Orca."
"Orca gives you great visibility into your assets. It shows you the issues and the things that you need to attend to first, by prioritizing things. You can see a lot of information that is not always visible, even to DevOps, to help you know about the machines and their status. It's very easy to see everything in a single dashboard. That makes it a very useful tool."
"The reporting and automated remediation capabilities are valuable to me. They're real game-changers."
"It's for protection. It's an agentless tool. We don't need to install anything at a customer's premises. We can just scan the entire assets in the cloud."
"The visibility Orca provides into my environment is at the highest level... When I dropped them into the environment, from the very get-go I had more insight into the risks in my environment than I had had during the entire two and a half years I had been here."
"The most valuable feature of Orca Security is the automated scanning tool, user-friendliness, and ease of use."
"There are so many valuable features that I could list, but one that I appreciate is the PCI DSS compliance report."
"With its Cloud Security Posture Management capability, we have the ability to read across all of our cloud-based environments, which includes AWS and Azure. We have visibility into those environments. Seeing all vulnerabilities and configurations is really powerful for us, but ultimately, the ability to use the API to query across the fleet to understand what is the current state, what is the patch level, which ones are potentially exposed for a new CVE that just came out is even more valuable. It allows us to gather really specific intelligence through simple queries."
"Whenever I view the processes and the process aspect, it takes a long time to load."
"The could improve their mean time to detect."
"One of the issues with the product stems from the fact that it clubs different resources under one ticket."
"We had a glitch in PingSafe where it fed us false positives in the past."
"We recently adopted a new ticket management solution, so we've asked them to include a connector to integrate that tool with Cloud Native Security directly. We'd also like to see Cloud Native Security add a scan for personally identifying information. We're looking at other tools for this capability, but having that functionality built into Cloud Native Security would be nice. Monitoring PII data is critical to us as an organization."
"It took us a while to configure the software to work well in this type of environment, as the support documents were not always clear."
"For vulnerabilities, they are showing CVE ID. The naming convention should be better so that it indicates the container where a vulnerability is present. Currently, they are only showing CVE ID, but the same CVE ID might be present in multiple containers. We would like to have the container name so that we can easily fix the issue."
"Customized queries should be made easier to improve PingSafe."
"Because it's a threat detection service, they need to keep up with the various threat factors because new threat factors and attack factors come up all the time."
"The solution's user interface could be improved because it will help users to understand multiple options."
"There is currently no consolidated dashboard for AWS GuardDuty. It would be helpful if they could provide a dashboard based on severity levels (high, medium, low) and offer insights account-wise, especially for users utilizing automation structures."
"It would be great if the solution had some automation capabilities."
"The solution has to be integrated with new services that AWS adds like QuickSight, Managed Airflow, AppFlow and MWAA."
"While sending the alerts to the email, they are not being patched. we have to do the patching and mapping manually. If GuardDuty could include a feature to do this automatically, it will make our job easier. That is something I believe can be improved."
"Cost changes. It's very expensive. If you turn on every feature, it's more than most commercial vendors. For smaller orgs, that doesn't make sense."
"One improvement I would suggest for AWS GuardDuty is the ability to assign findings to specific users or groups, facilitating better communication and follow-up actions."
"They can expand a little bit in anti-malware detection. While we have pretty good confidence that it's going to detect some of the static malware, some of the detections are heuristics. There could be a growth in the library from where they're pulling their information, but we don't get a lot of those alerts based on the design of our products. In general, that might be an area that needs to be filled since they offer it as a service within it."
"We are PCI DSS compliant, so we need to scan our environment externally with tools vetted by the PCI DSS organization. Orca doesn't scan the environment externally. It only scans what's currently in the cloud."
"Another improvement would be that, in addition to focusing on endpoint compliance, they would focus on general compliance."
"I would like to see an option to do security checks on a code level. This is possible because they have access to all of the code running in the cloud provider, and combining their site-scanning solution with that would be a nice add-on."
"As with all software, the user interface can always be made simpler to use. It would be helpful for people with very little knowledge, like somebody sitting behind the SOC, to allow them to be able to drill down into things a little bit easier than it is currently."
"The presentation of the data in the dashboard is a little bit chaotic."
"I would be happy if they offered more automatic remediation options. They're working on that, but the more the better. For example, if they want you to harden a server, they would offer a hardening script that would be more aware of what's going on."
"It's not all clouds that they are currently onboarded with. For instance, they are not yet with public cloud and many other private clouds."
More SentinelOne Singularity Cloud Security Pricing and Cost Advice →
AWS GuardDuty is ranked 4th in Cloud Workload Protection Platforms (CWPP) with 20 reviews while Orca Security is ranked 12th in Cloud Workload Protection Platforms (CWPP) with 15 reviews. AWS GuardDuty is rated 8.2, while Orca Security is rated 9.4. The top reviewer of AWS GuardDuty writes "A stellar threat-detection service that has helped bolster security against malicious threats". On the other hand, the top reviewer of Orca Security writes "Allows agentless data collection directly from the cloud". AWS GuardDuty is most compared with Microsoft Defender for Cloud, Prisma Cloud by Palo Alto Networks, CrowdStrike Falcon Cloud Security, Wiz and Akamai Guardicore Segmentation, whereas Orca Security is most compared with Wiz, Prisma Cloud by Palo Alto Networks, Microsoft Defender for Cloud, CrowdStrike Falcon Cloud Security and XM Cyber. See our AWS GuardDuty vs. Orca Security report.
See our list of best Cloud Workload Protection Platforms (CWPP) vendors.
We monitor all Cloud Workload Protection Platforms (CWPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.