Quick Start Security for Orca
Talk to you soon!
Coralogix Extension For Orca Includes:
Alerts - 5
Stay on top of Orca key performance metrics. Keep everyone in the know with integration with Slack, PagerDuty and more.
Medium Risk Alert
Orca Security is the industry-leading Cloud Security Platform that identifies, prioritizes, and remediates security risks and compliance issues across your cloud estate spanning AWS, Azure, Alibaba Cloud, Google Cloud and Kubernetes. This alert type aggregates Orca medium risk alerts. Impact Depends on the type of granular alert. Mitigation Depends on the type of granular alert.
Low Risk Alert
Orca Security is the industry-leading Cloud Security Platform that identifies, prioritizes, and remediates security risks and compliance issues across your cloud estate spanning AWS, Azure, Alibaba Cloud, Google Cloud and Kubernetes. This alert type aggregates Orca low risk alerts. Impact Depends on the type of granular alert. Mitigation Depends on the type of granular alert.
High Risk Alert
Orca Security is the industry-leading Cloud Security Platform that identifies, prioritizes, and remediates security risks and compliance issues across your cloud estate spanning AWS, Azure, Alibaba Cloud, Google Cloud and Kubernetes. This alert type aggregates Orca high risk alerts. Impact Depends on the type of granular alert. Mitigation Depends on the type of granular alert.
Critical Risk Alert
Orca Security is the industry-leading Cloud Security Platform that identifies, prioritizes, and remediates security risks and compliance issues across your cloud estate spanning AWS, Azure, Alibaba Cloud, Google Cloud and Kubernetes. This alert type aggregates Orca critical risk alerts. Impact Depends on the type of granular alert. Mitigation Depends on the type of granular alert.
No logs from Orca
This rule detects if there are no logs in the last 24 hours for Orca in the customer account. Note- This alert should configured with relevant app & subsystem. Impact Disabling logging is a tactic that adversaries might employ as part of various MITRE ATT&CK techniques to avoid detection, cover their tracks, or impede incident response investigations. Mitigation Address logging concerns to ensure comprehensive monitoring within the Coralogix SIEM system. MITRE Tactic: TA0005 MITRE Technique:T1562
Integration
Learn more about Coralogix's out-of-the-box integration with Orca in our documentation.