Cloud Security, SOC

Orca Security Extends Runtime Protection to Hybrid and Private Cloud Environments

Cloud Security AWS AI

Credit: Adobe

Hybrid cloud adoption is creating new security challenges. Public cloud already brings complexity in visibility and policy enforcement. Adding private cloud and on-premises workloads widens the attack surface, creates more room for misconfigurations, and makes regulatory compliance harder to manage.

Orca Security is expanding its runtime protection to cover hybrid, private, and on-premises environments, extending the same Cloud Native Application Protection Platform (CNAPP) capabilities it has long applied to AWS, Azure, and Google Cloud. The move is aimed at giving organizations a single, unified view of threats and risks across all workloads, without the operational drag of managing multiple point solutions.

Extending Agentless Security to Every Environment

Gil Geron, CEO and Co-Founder at Orca Security, told MSSP Alert that the company’s approach is designed for the way modern workloads run:

“Orca’s hybrid cloud runtime protection capabilities are purpose-built to deliver runtime visibility and protection anywhere organizations run their cloud native applications. Since inception, Orca has been an agentless-first platform designed to secure public cloud environments. Over time, our customers continue to operate across hybrid, private, and on-premises environments and drive our strategy to innovate as their cloud security partner of choice. While other solutions were designed for more traditional endpoints, Orca is bringing its unique vision as a modern platform to more environments. This means that we’re delivering an integrated Sensor that’s engineered to secure your cloud native applications wherever you deploy them.”

The new release adds features like:

  • Expanded Sensor Detections for advanced threats such as container escapes, privilege escalation, reconnaissance activity, and “living off the land” attacks.
  • Windows Runtime Protection for detecting malicious processes on servers and workstations in real time.
  • AI-Assisted Threat Investigation that uses natural language and guided workflows to streamline detection-to-response cycles.

Extending agentless-first coverage into private cloud and on-premises systems is a known challenge. Geron said the company is applying the same design principles that differentiated its public cloud capabilities:

“Orca Security maintains its agentless-first advantage in public cloud environments, but brings our engineering pedigree and vision to innovate to any environment that our customers want secured. In this sense, customers benefit from a central platform, unified risk and compliance reporting, and policy management across all of their environments - whether they be public, private, or on-premises. This saves teams operational effort, reduces the difficulty of juggling multiple dashboards, and unifies their sensor management that’s needed to address the dynamism of cloud native applications.”

AI-Driven Investigation to Reduce SOC Overload

According to Geron, this unified approach also distinguishes Orca from more traditional endpoint or workload protection tools:

“Orca Security's expanded runtime protection for hybrid environments stands apart from traditional endpoint or workload protection platforms by offering a lightweight Sensor form-factor that is unified into its existing platform. Many traditional tools were built upon their heavyweight agent that was designed for on-premises endpoints and workstations. Instead, Orca unifies our runtime protection capabilities with our agentless-first approach by delivering a lightweight Sensor architecture designed and optimized for modern workloads and applications.”

The company also sees AI playing a growing role in how SOC teams investigate and resolve threats.

“GenAI holds incredible possibilities in aiding cloud security teams and the SOC. Over the last 18 months, Orca has brought GenAI into our platform to make information easier to understand, improve policy management, and quicken remediation. With our AI Assistant, powered by Orca AI, security teams can triage alerts and investigate threats using natural language questions and guided Q&A workflows. This ultimately will reduce dwell time, improve an organization’s overall level of security, and prevent risks from impacting companies.”

By integrating these capabilities into one platform, Orca is positioning itself as a hybrid cloud security provider that maintains its agentless-first roots while adapting to the realities of increasingly mixed infrastructure.

An In-Depth Guide to Cloud Security

Get essential knowledge and practical strategies to fortify your cloud security.
Suparna Chawla Bhasin

Suparna is the Senior Managing Editor for CyberRisk Alliance’s Channel Brands, including MSSP Alert and ChannelE2E. She manages content development, sharpens editorial workflows, and ensures storytelling is tightly aligned with audience needs. With a background in technology, media, and education, she combines strategic insight with creative execution.

Related

Related Terms

Blue TeamCloud ComputingCold Warm Hot Disaster Recovery SiteCountermeasureCronDaemonDisaster Recovery Plan (DRP)Greynet

You can skip this ad in 5 seconds