Source: securityboulevard.com – Author: Michael Vizard
Orca Security has extended the reach of its agentless cloud native application protection platform (CNAPP) to include multiple options that eliminate the need to aggregate data in a software-as-service (SaaS) platform.
Cybersecurity teams can now take advantage of a hybrid cloud computing through which metadata is processed using the Orca Security Cloud Platform as a backend rather than requiring all data and scanning to occur with its SaaS platform or, alternatively, they can opt for a bring your own cloud (BYOC) option to ensure all data is processed and scanned in a completely isolated IT environment.
Arie Teter, chief product officer for Orca Security, said that approach makes it possible for organizations to use the Orca Security platform without running afoul of regulations that require data to be processed in a self-hosted IT environment versus in an external SaaS application, he added. In some instances, organizations may take advantage of two or more of these deployment options based on the regulatory requirements that are attached to specific classes of application workloads, noted Teter.
Orca Security has been making a case for an integrated CNAPP platform that also provides cloud security posture management (CSPM), cloud workload protection, cloud infrastructure entitlement management and data security posture management. The overall goal is to reduce the total cost of cloud security using a platform that relies on side-scanning to collect data from runtime block storage without requiring organizations to deploy, maintain and update agent software.
There is, of course, no shortage of CNAPP options, but as cybersecurity teams embrace these platforms it becomes easier to secure cloud computing environments that have fundamentally different attributes than a traditional on-premises IT environment. Many organizations have attempted to extend the reach of existing on-premises tools and platforms to secure cloud computing environments with limited success.
It’s not clear how many cloud computing platforms the average organization is now employing but as workloads continue to become more distributed the number and types of cloud platforms that need to be defended is only going to increase. The challenge is that it’s not likely the resources that cybersecurity teams have at their disposal to defend these platforms will increase all that much. As such, there is a growing need to centralize the management of cloud platforms to both reduce the total cost of IT and improve security. Today many organizations are funding separate dedicated teams to manage and secure cloud computing environments in a way that ultimately increases the total cost of IT each time a new cloud platform is added.
Regardless of how cloud platforms are being secured, the one certain thing is the number of workloads being deployed on cloud computing platforms is only going to increase. While these platforms are usually more secure than on-premises IT environments, the processes used to build and deploy applications from a cybersecurity perspective are often flawed. As a result, cloud application environments have become favorite targets for cybercriminals that have become especially adept at stealing credentials to gain initial access.
The challenge, as always, is not just trying to prevent those breaches from occurring in the first place but also limiting as much as possible the scope of the blast radius when they all but inevitably happen.
Recent Articles By Author
Original Post URL: https://securityboulevard.com/2025/02/orca-security-adds-additional-cnapp-deployment-options/
Category & Tags: Cloud Security,Cybersecurity,Featured,Security Boulevard (Original),Social – Facebook,Social – LinkedIn,Social – X,Spotlight,cloud computing,cnapp,Orca Security,SaaS – Cloud Security,Cybersecurity,Featured,Security Boulevard (Original),Social – Facebook,Social – LinkedIn,Social – X,Spotlight,cloud computing,cnapp,Orca Security,SaaS
Views: 2