Orca Security and Carahsoft Announce Orca’s Achievement of FedRAMP® Authorization for Its Cloud Security Platform

FedRAMP Authorized Status Streamlines Public Sector Access to Orca’s Cloud Security Platform Providing the Most Comprehensive Coverage and Visibility of Risks Across Cloud Assets

PORTLAND, Ore. and RESTON, Va. — February 13, 2025 — Orca Security, the pioneer of agentless cloud security, and Carahsoft Technology Corp., the Trusted Government IT Solutions Provider^®, today announced that the Orca Cloud Security Platform has been designated as Federal Risk and Authorization Management Program (FedRAMP^®) Authorized. The Orca Platform now meets the stringent data and security requirements set by the U.S. Government at the Moderate impact level.

FedRAMP is the U.S. Government’s standardized approach to security assessment, authorization and continuous monitoring for cloud solutions. With FedRAMP Authorization, Government agencies can rapidly deploy Orca’s leading cloud security platform through Carahsoft and its reseller partners, eliminating the need for individual agency security assessments.

“Achieving FedRAMP Authorized status is a significant step in Orca’s commitment to helping Government organizations improve security as they continue to migrate their infrastructure to the cloud,” said Gil Geron, CEO and Co-Founder, Orca Security. “Strengthening cloud security is critical to protecting Government organizations, and through Orca’s FedRAMP Authorization and partnership with Carahsoft, we can enhance security for more agencies with faster deployment”

Orca Security provides an agentless-first Cloud Security Platform that discovers all cloud assets and identifies, prioritizes, and remediates risks and compliance issues across cloud environments. The platform detects cloud risks, including vulnerabilities, malware, misconfigurations, API risks, lateral movement risks, weak and leaked passwords, and overly permissive identities. Orca deploys in minutes, provides visibility into all assets, and automatically includes new assets as they are added. Orca also offers a lightweight agent for organizations that require real-time protection for critical workloads.

“Through our strong partnership with Orca Security, Carahsoft and its reseller partners are already helping Federal, State, and Local Government agencies strengthen security in their cloud environments,” said Drew Scherer, Program Manager for FedRAMP Initiatives at Carahsoft. “Now that Orca has achieved a FedRAMP Authorized designation, it streamlines the path to stronger security for even more Government organizations as attackers attempt to exploit the increasing reliance on cloud-based infrastructures.”

The Orca Platform helps Federal agencies and contractors achieve regulatory compliance with more than 150 out-of-the-box frameworks (including NIST SP 800-53, NIST CSF, DISA STIG, and ISO 27001), CIS Benchmarks, and custom compliance checks. Leveraging a Unified Data Model, Orca performs contextual analysis of all risks in a cloud environment and uncovers potential attack paths (with references to the MITRE ATT&CK framework) to enable rapid identification of which risks present the highest danger to mission data and security objectives.

Orca Security’s offerings are available through Carahsoft’s SEWP V contracts NNG15SC03B and NNG15SC27B, ITES-SW2 Contract W52P1J-20-D-0042 and NASPO ValuePoint Master Agreement #AR2472 contracts. For more information, contact the Carahsoft Team at (844) 445-5688 or Orca@carahsoft.com.

About Orca Security  
Orca Security is the pioneer of agentless cloud security trusted by hundreds of enterprises globally. Orca makes cloud security possible for enterprises moving to and scaling in the cloud with its patented SideScanning™ technology and Unified Data Model. The Orca Cloud Security Platform delivers the world’s most comprehensive coverage and visibility of all risks across the cloud. With continuous first-to-market innovations and expertise, the Orca Platform ensures security teams quickly identify and remediate risks to keep their businesses secure.  Connect your first account in minutes: https://orca.security or book a personalized demo.

Contact
Susie Dougherty
orca@famapr.com

About Carahsoft
Carahsoft Technology Corp. is The Trusted Government IT Solutions Provider, supporting Public Sector organizations across Federal, State and Local Government agencies and Education and Healthcare markets. As the Master Government Aggregator^® for our vendor partners, we deliver solutions for Cybersecurity, MultiCloud, DevSecOps, Artificial Intelligence, Customer Experience and Engagement, Open Source and more. Working with resellers, systems integrators and consultants, our sales and marketing teams provide industry leading IT products, services and training through hundreds of contract vehicles. Visit us at www.carahsoft.com.

Contact
Mary Lange
(703) 230-7434
PR@carahsoft.com