Data Sources

Data sources available for use by the ICS community

Platforms

ICS supported platforms.

Teams

ICS Teams


Menu Button Menu Button

2025-01-15 Orca Onboarding

Nicole's Notes

Meeting recording

WUIT Platform Engineering can help with remediation efforts if our team can not solve.

Primary Dashboard URL
ORCA interface

GRC (Governance Risk Compliance-Denise Woodward's team) forms will be sent on risks in the future that we need to fill out, or in the case of something like GIC, we forward it to someone at BCH who can help answer.

It scans every 24 hours. Limited integration with CIC pipelines. Out of scope for Phase 2. There will be a mini project kicked off for CIC connections and Steven can connect us with that lead at no additional cost for help.
Who is point person to scan ORCA regularly for issues?
Orca scans everything in Azure AWS & GCP. If there are additional clouds, we can request to add those, but they are currently out of scope as of Jan 2025.

The news section of the dashboard provides insights into potential issues. It drills down to what is a vulnerable asset.
Don't panic within the suspicious activity console. It is mostly just usual admin activities that are authorized. However, it is appropriate to panic on the criticals.
Be aware that history logs may contain passwords in text.

API Security will be important. They are still making adjustments to update that tool.
Schedule a report rather than exporting as a csv since the interface will get hung up.

William Chandler w.chandler@wustl.edu Cloud Infrastructure Architect
Steven Bochte bochte@wustl.edu Information Security Architect
Dana Waddell dana.w@wustl.edu Cloud Security Architect
Rachel Lavick lavick@wustl.edu Business Analyst II
Zach Boemler boemler@wustl.edu Systems Engineer III
.

Niel's Notes

  • https://app.orcasecurity.io/ ← login with your wustl key
  • lots of issues with gic01 and gic02
  • this tool's reports and recommendations will be used by the infosec team to assess websites and cloud infrastructure served over the public (and privately too)
  • GRC form
    • Goverment Resource and Compliance (usually requested from Denise Woodward's team)
    • infosec has their own dashboards
  • splunk will be required on the VMs
  • Compliance
    • NIST CSF (Cybersecurity Framework)
    • Google - Best Practices to remedy
    • right now there's no compliance requirements for WashU academic standards, but this could change in the future

Table of Contents

Updated on August 7, 2025