Our next-gen architecture is built to help you make sense of your ever-growing data. Watch a 4-min demo video!

Quick Start Security for Orca

Orca
Orca icon

Out-of-the-Box Security For Orca Includes:

Alerts - 5

Stay on top of Orca key performance metrics. Keep everyone in the know with integration with Slack, PagerDuty and more.

Medium Risk Alert

Orca Security is the industry-leading Cloud Security Platform that identifies, prioritizes, and remediates security risks and compliance issues across your cloud estate spanning AWS, Azure, Alibaba Cloud, Google Cloud and Kubernetes. This alert type aggregates Orca medium risk alerts. Impact Depends on the type of granular alert. Mitigation Depends on the type of granular alert.

Low Risk Alert

Orca Security is the industry-leading Cloud Security Platform that identifies, prioritizes, and remediates security risks and compliance issues across your cloud estate spanning AWS, Azure, Alibaba Cloud, Google Cloud and Kubernetes. This alert type aggregates Orca low risk alerts. Impact Depends on the type of granular alert. Mitigation Depends on the type of granular alert.

High Risk Alert

Orca Security is the industry-leading Cloud Security Platform that identifies, prioritizes, and remediates security risks and compliance issues across your cloud estate spanning AWS, Azure, Alibaba Cloud, Google Cloud and Kubernetes. This alert type aggregates Orca high risk alerts. Impact Depends on the type of granular alert. Mitigation Depends on the type of granular alert.

Critical Risk Alert

Orca Security is the industry-leading Cloud Security Platform that identifies, prioritizes, and remediates security risks and compliance issues across your cloud estate spanning AWS, Azure, Alibaba Cloud, Google Cloud and Kubernetes. This alert type aggregates Orca critical risk alerts. Impact Depends on the type of granular alert. Mitigation Depends on the type of granular alert.

No logs from Orca

This rule detects if there are no logs in the last 24 hours for Orca in the customer account. Note- This alert should configured with relevant app & subsystem. Impact Disabling logging is a tactic that adversaries might employ as part of various MITRE ATT&CK techniques to avoid detection, cover their tracks, or impede incident response investigations. Mitigation Address logging concerns to ensure comprehensive monitoring within the Coralogix SIEM system. MITRE Tactic: TA0005 MITRE Technique:T1562

Documentation

Learn more about Coralogix's out-of-the-box integration with Orca in our documentation.

Read More
Schedule Demo