We performed a comparison between Orca Security and Trend Micro Cloud One based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Orca Security is strong in container posture and cloud security posture management and has impressive SideScanning and ranking gap features. On the other hand, Trend Micro Cloud One provides excellent vulnerability protection through virtual patching and login inspection, with valuable visibility inside microservice architecture through Container Security. Orca Security could enhance their coverage, user education, and user interface. On the other hand, Trend Micro Cloud One needs to improve their pricing, automation, and marketing documentation.
Service and Support: Orca Security's customer service receives high praise for being responsive and competent, with quick response times and a willingness to incorporate feedback. On the other hand, Trend Micro Cloud One has knowledgeable and available support, but with the caveat that support is shared among multiple customers.
Ease of Deployment: Orca Security has a simple and effortless initial setup process as it does not require any installation of agents. Conversely, Trend Micro Cloud One's setup process is a mixed bag, with some finding it easy and others finding it cumbersome.
Pricing: Orca Security has a straightforward setup cost that is in line with market expectations and doesn't come with any surprise fees. In comparison, Trend Micro Cloud One's pricing can be more complicated and may require additional expenses depending on the user's needs. Some users find it reasonable, but others have found it to be more challenging compared to other options.
ROI: Orca Security offers cost savings by replacing multiple solutions and providing thorough insights with minimal IT expertise, while Trend Micro Cloud One's ROI is not clearly defined.
Comparison Results: Orca Security is the top choice when it comes to comparing it with Trend Micro Cloud One. Orca Security has an agentless approach, a user-friendly setup, and a complete set of tools for vulnerability management and attack detection. Meanwhile, Trend Micro Cloud One has limited automation and robustness, a complicated initial setup, and complicated licensing.
"The vulnerability management modules and the discovery and inventory are the most valuable features. Before using Wiz, it was a very manual process for both. After implementing it, we're able to get all of the analytics into a single platform that gives us visibility across all the systems in our cloud. We're able to correspond and understand what the vulnerability landscape looks like a lot faster."
"The CSPM module has been the most effective. It was easy to deploy and covered all our accounts through APIs, requiring no agents. Wiz provides instant visibility into high-level risks that we need to address."
"The security baseline and vulnerability assessments is the valuable feature."
"The automation roles are essential because we ultimately want to do less work and automate more. The dashboards are easy to read and visually pleasing. You can understand things quickly, which makes it easy for our other teams. The network and infrastructure teams don't know as much about security as we do, so it helps to have a tool that's accessible and nice to look at."
"I like Wiz's reporting, and it's easy to do queries. For example, it's pretty simple to find out how many servers we have and the applications installed on each. I like Wiz's security graph because you can use it to see the whole organization even if you have multiple accounts."
"Our most important features are those around entitlement, external exposure, vulnerabilities, and container security."
"The solution is very user-friendly."
"With Wiz, we get timely alerts for leaked data or any vulnerabilities already existing in our environment."
"Another valuable feature with Orca, something that's not talked about enough, is its ability to rank your gaps and your tasks... You can get visibility with agents and there are a lot of ways to do that. But the ranking and the context across the entire environment, that is what is unique about Orca."
"Orca Security has updated its interface, making it more user-friendly. I find it particularly useful as it allows me to easily navigate the dashboard and prioritize actions based on severity and criticality."
"The vulnerability management does not require network scanning or agent technology, so I don't need to modify any of my products in order to do vulnerability assessments."
"Orca gives you great visibility into your assets. It shows you the issues and the things that you need to attend to first, by prioritizing things. You can see a lot of information that is not always visible, even to DevOps, to help you know about the machines and their status. It's very easy to see everything in a single dashboard. That makes it a very useful tool."
"The most valuable feature of Orca Security is the automated scanning tool, user-friendliness, and ease of use."
"The reporting and automated remediation capabilities are valuable to me. They're real game-changers."
"Orca's SideScanning is the biggest feature. It's the 'wow' factor... With Orca's SideScanning, they just need permissions for your account and that makes it so simple."
"It's for protection. It's an agentless tool. We don't need to install anything at a customer's premises. We can just scan the entire assets in the cloud."
"The storage and computing features are valuable."
"The perfect package for all security platforms, providing more than any other endpoint solution."
"The product helps us understand our environment better."
"The most valuable part of Trend Vision One - Cloud Security is its dashboard, as it's simple. It's easy to manage, and you can better control the solution."
"Trend Vision One - Cloud Security does not utilize a lot of resources which allows our users to keep working even during a scan."
"Virtual patching is one of the key features, which is executed with their IPS."
"I really like Trend Vision One - Cloud Security's dashboard."
"It has the best EDR functionality for cloud and typical endpoints."
"Wiz's reporting capabilities could be refined a bit. They are making headway on that, but more executive-style dashboards would be nice. They just implemented a community aspect where you can share documents and feedback. This was something users had been requesting for a while. They are listening to customer feedback and making changes."
"We wish there were a way, beyond providing visibility and automated remediation, to wait on a given remediation, due to a critical aspect, such as the cost associated with a particular upgrade... We would like to see preventive controls that can be applied through Wiz to protect against vulnerabilities that we're not going to be able to remediate immediately."
"The only small pain point has been around some of the logging integrations. Some of the complexities of the script integrations aren't supported with some of the more automated infrastructure components. So, it's not as universal. For example, they have great support for cloud formation and other services, but if you're using another type of management utility or governance language for your infrastructure-as-code automation components, it becomes a little bit trickier to navigate that."
"The remediation workflow within the Wiz could be improved."
"We would like to see improvements to executive-level reporting and data reporting in general, which we understand is being rolled out to the platform."
"The solution's container security could be improved."
"One significant issue is that the searches are case-sensitive, so finding a misconfigured resource can become very challenging."
"The reporting isn't that great. They have executive summaries, but it's only a compliance report that maps all current issues to specific controls. Whether you look at one subscription or project, regardless of the size, you will get a multipage report on how the issues in that account map to that control. Our CSO isn't going to read through that. He won't filter that out or show that to his leadership and say, "Here's what we're doing." It isn't a helpful report. They're working on it, but it's a poor executive summary."
"I think Orca could give me more alerts. It could give me a dashboard with all the specific types of alerts I want to see for the day. It should just be one click."
"In the future, I'd like to see Orca work better with third-party vendors. Specifically, being able to provide sanitized results from third parties."
"The solution could improve by making the dashboards more elaborative and more descriptive."
"Another improvement would be that, in addition to focusing on endpoint compliance, they would focus on general compliance."
"The presentation of the data in the dashboard is a little bit chaotic."
"The main drawback in an agentless approach is that if the solution detects a virus or malware in the environment, we need to manually remove it. But from my experience with other production environments, it's not straightforward to install agents in the hope they will automatically remediate viruses, even from production environments... Ultimately, the ability to auto-remediate is something that I would like to see."
"The interface can be a bit cranky and sometimes takes a lot of time to load."
"I would be happy if they offered more automatic remediation options. They're working on that, but the more the better. For example, if they want you to harden a server, they would offer a hardening script that would be more aware of what's going on."
"The firewall configuration should have been automated based on the understanding of the application, utilities, and protocols."
"The dashboard should be a bit more intuitive."
"The initial setup is easy for someone who operates container platforms on a daily basis. However, it could be difficult for those coming purely from informational security or another field of an IT."
"Securing S3 using Trend Vision One - Cloud Security can cost too much. Trend Vision One - Cloud Security has a tool that requires lots of privileges. From my understanding, it's only for static application testing, so they need to add dynamic application testing, and there should be more collaboration with the application testing tools on the market. We have not used this product, and I don't know if they plan to decommission it or something. They should focus on application security because this tool's unique feature is multi-cloud support. However, they should improve integration with tools for these kinds of use cases, especially application security and dynamic scanning. For example, I would like it to support Dell SecureOps. I'd also like to see some enhancements to API gateway security."
"The workbook insights generate a massive list, making it inconvenient to review."
"The pricing can get high."
"Trend Vision One - Cloud Security should address threats automatically without having user input."
"Trend Vision One - Cloud Security could improve connections with different types of authentication and user groups concerning cloud services."
More Trend Vision One - Cloud Security Pricing and Cost Advice →
Orca Security is ranked 12th in Container Security with 14 reviews while Trend Vision One - Cloud Security is ranked 8th in Container Security with 17 reviews. Orca Security is rated 9.4, while Trend Vision One - Cloud Security is rated 8.6. The top reviewer of Orca Security writes "Allows agentless data collection directly from the cloud". On the other hand, the top reviewer of Trend Vision One - Cloud Security writes "We can quickly deploy cloud conformity, provides good visibility, and control". Orca Security is most compared with Prisma Cloud by Palo Alto Networks, Microsoft Defender for Cloud, Tenable Vulnerability Management, CrowdStrike Falcon Cloud Security and AWS Security Hub, whereas Trend Vision One - Cloud Security is most compared with Microsoft Defender for Cloud, AWS GuardDuty, Check Point Harmony Email & Collaboration, Prisma Cloud by Palo Alto Networks and Tenable Security Center. See our Orca Security vs. Trend Vision One - Cloud Security report.
See our list of best Container Security vendors, best Cloud Workload Protection Platforms (CWPP) vendors, and best Cloud Security Posture Management (CSPM) vendors.
We monitor all Container Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.