Orca Security

Orca Security

https://orca.security
https://www.linkedin.com/company/orca-security/

Orca Security, a privately owned company founded in 2019 and headquartered in the US, employs approximately 480 people. Its primary offering is a computer and network security platform designed to detect, rank by importance, and address security vulnerabilities and compliance problems within cloud environments. This platform supports various cloud providers, including AWS, Azure, Google Cloud, and Kubernetes.

Revenue

Founded

2019

Headcount

478

Headquarters

US

Primary Segment

Computer and Network Security

Ownership

Privately Owned

News Summary:

On September 18, 2025, Antigen Security LLC announced a strategic partnership with Orca Security. This partnership enables organizations to receive cyber-insurance premium reductions averaging 20-60 percent when Orca Security's cloud-risk visibility is integrated into their security programs.

Similar Companies

Subscribe for full access to Orca Security's profile

Orca Security offers products in the telecoms tech industry. Orca Security's product portfolio comprises of enterprise security.

Subscribe for full access to Orca Security's products in full detail

Subscribe for full access to Orca Security's revenue in full detail

Dec

4th

2025

10:06

React2Shell: In-the-Wild Exploitation Expected for Critical React Vulnerability

The cybersecurity industry is on high alert following the disclosure of a critical React vulnerability that can be exploited by a remote, unauthenticated attacker for remote code execution. React (React.js) is an open source JavaScript library designed for creating application user interfaces.

Dec

3rd

2025

22:15

Orca Security and Zscaler strengthen integration.

Orca Security and Zscaler have announced the expansion of their strategic partnership through integration with Zscaler Unified Vulnerability Management (UVM). From now on, cloud-native vulnerability data identified by Orca will be incorporated, in near real-time, into UVM's consolidated exposure view—an advancement that promises to reduce operational noise and increase the accuracy of security teams in prioritizing risks.

TI INSIDE Online

Dec

3rd

2025

22:11

React and Next.js Vulnerabilities Enable Remote Code Execution

A critical vulnerability was announced today affecting React Server Components (RSC), which affects React (CVE-2025-55182) and all frameworks using RSC, notably Next.js (CVE-2025-66478). Both vulnerabilities were given a CVSSv3 10.0 score, marking them as highly critical.

Dec

2nd

2025

13:50

Tightening Zero-Trust + Cloud Risk: Orca Security and Zscaler Expand Their Strategic Partnership

Zscaler and Orca Security partner through an existing integration with Zscaler Unified Vulnerability Management (UVM) , enabling customers to bring Orca’s cloud-native vulnerability insights into UVM’s consolidated exposure view. This helps organizations maintain consistent risk scoring and streamline remediation across their cloud environments In today’s cloud-native era, organizations are facing a dual challenge: securing sprawling cloud workloads and managing remote or private application access that bypasses traditional network perimeters.

Dec

2nd

2025

12:53

Management Changes, B2B Tag

Orca Security Names Gera Dorfman Chief Product Officer to Accelerate Cloud Security Innovation

PORTLAND, Ore.--(BUSINESS WIRE)--Dec 1, 2025-- Orca Security, the pioneer in agentless cloud security, today announced the appointment of Gera Dorfman as Chief Product Officer (CPO). Dorfman joins Orca from Check Point Software Technologies, where he most recently served as Vice President of Network Security Products, leading global development of AI-driven enterprise network protection solutions shaping the technological and strategic direction of the domain.

The Joplin Globe

Dec

1st

2025

18:30

Orca Security Expands Strategic Partnership with Zscaler to Strengthen Zero Trust and Cloud Risk Management

Partnership delivers unified visibility across cloud workloads and access infrastructure, enabling faster, smarter, and more secure operations Orca Security, the pioneer in agentless cloud security, today announced an expanded strategic partnership with Zscaler, the leader in cloud security, that unites Zscaler Private Access™ (ZPA™) with Orca’s AI-powered cloud risk intelligence.

Dec

1st

2025

16:40

Management Changes, Business Expansion, Artificial Intelligence, B2B Tag

New Cybersecurity Leaders Step Into Key Roles Across Global Security, Compliance and Risk Functions

Gera Dorfman – Orca Security Gera Dorfman has been appointed Chief Product Officer at Orca Security, joining from Check Point where he served as Vice President of Network Security Products. He brings more than two decades of cybersecurity and AI experience, including work on Check Point’s AI Cloud Protect initiative.

Dec

1st

2025

14:05

Artificial Intelligence, B2B Tag

Orca Security Names Gera Dorfman Chief Product Officer to Accelerate Cloud Security Innovation

Orca Security, the pioneer in agentless cloud security, today announced the appointment of Gera Dorfman as Chief Product Officer (CPO). Dorfman joins Orca from Check Point Software Technologies, where he most recently served as Vice President of Network Security Products, leading global development of AI-driven enterprise network protection solutions shaping the technological and strategic direction of the domain.

Nov

30th

2025

18:30

Artificial Intelligence

Orca Security Names Gera Dorfman Chief Product Officer to Accelerate Cloud Security Innovation

Seasoned product leader from Check Point will advance Orca’s AI-first platform, simplifying and strengthening cloud security for organizations worldwide PORTLAND, Ore. – December 1, 2025 – Orca Security, the pioneer in agentless cloud security, today announced the appointment of Gera Dorfman as Chief Product Officer (CPO).

Nov

28th

2025

19:41

Emerging Tech, B2B Tag

Identity is the New Perimeter: How Exposed Accounts Forecast Incidents

Identity is now a primary battleground for defenders. In 2025, Verizon reported that 88% of web application attacks began with leaked credentials. In 2024, they said that for the past 10 years 1 out of 3 breaches involved leaked credentials, revealing how leaked credentials are becoming an even more dominant entry point for attackers.

Nov

25th

2025

13:50

What is Application Security?

The development of cloud-native applications is fueling business innovation, but also expanding the attack surface. According to the Verizon Data Breach Investigations Report (DBIR) , stolen credentials remain the leading cause of breaches in cloud environments, underscoring the growing risk tied to application-level identity and access controls.

Nov

24th

2025

18:43

The Second Coming of Shai-Hulud: npm Targeted Yet Again

TL;DR This is the second time a malicious campaign – codenamed Shai‑Hulud – has been detected targeting the npm ecosystem. The first campaign covered in this blog revealed how threat-actors trojanised trusted libraries. In this current wave: Attackers published trojanised versions of trusted packages that execute during install (via a post-install or pre-install hook) to harvest credentials such as developer tokens, CI/CD secrets, and cloud metadata (AWS, GCP, Azure).

Orca Security has partners like Lumen Technologies. Orca Security has suppliers like OpenAI.

Example Suppliers

Subscribe for full access to Orca Security's profile

Example Partners

Subscribe for full access to Orca Security's profile

Analyst insight reports

The trouble with live sports

Keeping up appearances

IBC 2025 – an industry reinventing itself, slowly

Retaining subscribers beyond 2025

Subscribe to access all analyst insight reports