Orca Security Releases Beta of Data Security Posture Management
February 28, 2023

Orca Security announced the launch of new comprehensive Data Security Posture Management (DSPM) capabilities as part of the Orca Cloud Security Platform.

Building upon its comprehensive approach to cloud security, the new offering significantly expands on Orca’s existing capabilities and provides enhanced data discovery and management that enables organizations to identify, prioritize, and mitigate sensitive data at risk across multi-cloud estates, including shadow data and misplaced data that organizations may not have been aware of.

With its new DSPM capabilities, Orca now continuously detects sensitive data at risk in managed and self-hosted cloud data stores, as well as in files on virtual machines, containers and cloud storage buckets across multi-cloud environments. These enhancements enable organizations to take preventive steps to reduce the data attack surface and triage anomalous data-related events across their cloud estates, including AWS, Azure, Google Cloud, and Alibaba Cloud, from a single comprehensive cloud platform - without requiring any additional tools.

“Ever since its initial release in 2019, the Orca Cloud Security Platform has included core data security capabilities,” said Avi Shua, CEO and co-founder of Orca Security. "With this latest Data Security Posture Management launch, we have greatly expanded our DSPM offering to provide security teams with full visibility into what data they have, where it resides, the attack vectors that lead to it, and any suspicious events and behaviors that need attention. With this latest addition, Orca is continuing to deliver on our promise to provide the most comprehensive cloud security solution from a single, unified platform.”

Orca combines data intelligence with other cloud risks – including vulnerabilities, malware, misconfigurations, lateral movement risks, identity and access risks, and API risks.

Leveraging Orca’s patented, agentless SideScanning™ technology, the platform identifies, classifies, and alerts to sensitive data at risk across the entire cloud environment, including shadow data and misplaced data that organizations may not have been aware of, allowing Orca to highlight how indirect, as well as direct risks, can lead to exposed sensitive data.

Orca combines its comprehensive cloud risk insights to apply Attack Path Analysis and identify opportunities for attackers to combine different weaknesses in the cloud environment to expose sensitive data, such as PII, PHI, and PCI data. Each attack path is automatically scored based on a number of criteria, including exploitability, severity, and business impact, allowing security teams to focus on remediating the risks that pose the greatest danger to the organization’s sensitive data, while reducing alert fatigue and preventing potentially damaging data breaches.

Orca is releasing its DSPM capabilities in public beta today.

Share this

Industry News

April 02, 2025

Kong announced the launch of the latest version of Kong AI Gateway, which introduces new features to provide the AI security and governance guardrails needed to make GenAI and Agentic AI production-ready.

April 02, 2025

Traefik Labs announced significant enhancements to its AI Gateway platform along with new developer tools designed to streamline enterprise AI adoption and API development.

April 02, 2025

Zencoder released its next-generation AI coding and unit testing agents, designed to accelerate software development for professional engineers.

April 02, 2025

Windsurf (formerly Codeium) and Netlify announced a new technology partnership that brings seamless, one-click deployment directly into the developer's integrated development environment (IDE.)

April 02, 2025

Opsera raised $20M in Series B funding.

April 02, 2025

The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, is making significant updates to its certification offerings.

April 01, 2025

The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, announced the Golden Kubestronaut program, a distinguished recognition for professionals who have demonstrated the highest level of expertise in Kubernetes, cloud native technologies, and Linux administration.

April 01, 2025

Red Hat announced new capabilities and enhancements for Red Hat Developer Hub, Red Hat’s enterprise-grade internal developer portal based on the Backstage project.

April 01, 2025

Platform9 announced that Private Cloud Director Community Edition is generally available.

March 31, 2025

Sonatype expanded support for software development in Rust via the Cargo registry to the entire Sonatype product suite.

March 31, 2025

CloudBolt Software announced its acquisition of StormForge, a provider of machine learning-powered Kubernetes resource optimization.

March 31, 2025

Mirantis announced the k0rdent Application Catalog – with 19 validated infrastructure and software integrations that empower platform engineers to accelerate the delivery of cloud-native and AI workloads wherever the\y need to be deployed.

March 31, 2025

Traefik Labs announced its Kubernetes-native API Management product suite is now available on the Oracle Cloud Marketplace.

March 27, 2025

webAI and MacStadium(link is external) announced a strategic partnership that will revolutionize the deployment of large-scale artificial intelligence models using Apple's cutting-edge silicon technology.

March 27, 2025

Development work on the Linux kernel — the core software that underpins the open source Linux operating system — has a new infrastructure partner in Akamai. The company's cloud computing service and content delivery network (CDN) will support kernel.org, the main distribution system for Linux kernel source code and the primary coordination vehicle for its global developer network.