Orro launches threat exposure management service

Sydney-based managed security and digital infrastructure services provider Orro has launched its Continuous Threat Exposure Management (CTEM) service for Australian security teams.

The managed security service aims to address common pain points in vulnerability management by focusing on real-world risks and threats rather than theoretical vulnerabilities.

With this focus, the solution is designed to help security teams tackle challenges arising from having to manage thousands of vulnerability alerts flagged as high and critical. These include alert fatigue, challenges prioritising threats and tension between security and operations teams over preferred remediation actions.

Orro said the Australian Cyber Security Centre notified Australian organisations of potentially malicious cyber activity more than 1700 times in FY25 alone, which was an 83% increase from the prior year. Over the same period, attacks on Australian critical infrastructure rose 111%. Research meanwhile indicates that the average data breach now costs an Australian organisation $4.26 million.

To address the growing threat, the CTEM service uses an AI-powered platform to unify data from over 100 security tools and apply custom business context to help teams identify which exposures most threaten operational continuity.

Orro CEO Daniel Greengarten said the offering aims to help security teams identify and address their most critical exposures.

“Our CTM service … represents a fundamental shift from asking ‘what’s broken?’ to asking ‘what actually threatens our business?’ For organisations drowning in vulnerability data but starving for clarity, this changes everything,” he said. “Unlike traditional vulnerability management that relies on generic severity scores, Orro’s service delivers a context-over-severity approach.

“It factors in an asset’s business criticality, network position and active threat intelligence to prioritise remediation based on actual risk. The service extends across both corporate IT and OT environments, a critical capability for organisations managing critical infrastructure.”

Image credit: iStock.com/tadamichi