Orca Security has signed a strategic collaboration agreement with Amazon Web Services aimed at strengthening cloud security and accelerating risk remediation with the help of Artificial Intelligence. The announcement comes at a time when an increasing number of companies are deploying AI services, models, and workflows on AWS, forcing security teams to gain visibility into much more complex environments than just a few years ago.
According to the company, the purpose of the agreement is to combine its agentless cloud security platform with native AWS signals to provide more context, risk prioritization, and AI-supported remediation guidance. Orca emphasizes that one of the key aspects of this collaboration involves using Amazon Bedrock capabilities to generate actionable remediation recommendations, which, in theory, aims to reduce the time teams need to close security issues in cloud environments.
A partnership focused on AI workload security
The background of this announcement is quite clear. As companies adopt AI in the cloud, simply monitoring configurations, identities, or vulnerabilities in isolation is no longer sufficient. It’s also important to understand how AI services are built, exposed, and consumed—what data they touch, what permissions they use, and how they relate to the rest of the environment. Orca argues that traditional security approaches do not always provide enough context to secure these workloads at a cloud scale.
Within the agreement, Orca and AWS highlight four specific areas: accelerated AI remediation, enhanced visibility and risk prioritization, simplified purchase and deployment via AWS Marketplace, and integrated security within cloud workflows and CI/CD pipelines. In other words, the message goes beyond detection, focusing on turning AI into a practical layer of operational assistance for security, aligning with current market trends toward copilots, agents, and contextual automation.
Orca already had an advanced relationship with AWS
Although the agreement is presented as a new step, the relationship between the two companies is not starting from zero. Orca was already recognized as an AWS Partner with Security Competency and native integrations with over 100 AWS services and products, including EC2, ECS, EKS, Fargate, Lambda, GuardDuty, CloudTrail, Security Lake, Security Hub, and Bedrock. The platform is also available on AWS Marketplace, a point emphasized in the announcement as a way to accelerate commercial adoption.
This suggests that the agreement should not be seen as an entirely new integration but rather as a broader formalization of a longstanding technological and commercial collaboration. Orca had already announced in 2023 an AWS-supported generative security integration based on Amazon Bedrock, marketed then as a kind of “security co-pilot” to simplify cloud operations.
The joint customer as a key argument
The announcement also includes testimony from Blue Yonder, whose CISO, Erika Voss, states that the combined use of Orca and AWS provides them with a clearer view of cloud risks and faster AI-driven remediation. Beyond the usual promotional value of such statements, featuring a joint customer aims to reinforce a specific idea: that the collaboration is not just a promise of future product releases but is already supported by real deployments in enterprise clients.
For AWS, Allison Johnson, Director of Technology Partnerships for the Americas, frames the agreement within the need for security solutions to evolve at the same pace as cloud environments and AI workloads. This point is significant because it neatly summarizes the current challenge facing the industry: the expansion of generative AI and native cloud services is increasing operational complexity, pushing security vendors to sell not only detection but also faster response times and prioritization capabilities.
Overall, this move strengthens Orca’s position in a increasingly competitive market for native cloud application protection and AI-oriented security solutions. While the AWS partnership does not fundamentally change that landscape, it places the company in a key strategic conversation for 2026: transitioning from mere cloud visibility to more automated, contextual security tailored for AI workloads.
Frequently Asked Questions
What exactly have Orca Security and AWS signed?
They have signed a strategic collaboration agreement to enhance cloud security and accelerate risk remediation using AI-supported capabilities within AWS environments.
What role does Amazon Bedrock play in this partnership?
Orca states that it leverages capabilities powered by Amazon Bedrock to generate actionable remediation guidance to help resolve security issues more quickly.
Did Orca previously work with AWS?
Yes. Orca was already an AWS Partner with Security Competency, presence on AWS Marketplace, and integrations with over 100 Amazon services and products.
What practical problems does this collaboration aim to solve?
Primarily, improved visibility into AI workloads in the cloud, better risk prioritization, and faster remediation integrated into cloud workflows and CI/CD pipelines.
via: orca.security