Question 1

What is ORDR?

Accepted Answer

ORDR is a connected asset security platform that provides complete visibility, risk management, and enforcement across IT, OT, and IoT devices. Our platform uses agentless discovery and behavioral intelligence to identify every device on your network, assess its risk, and enforce the controls needed to stop threats — without disrupting operations.

Question 2

What types of devices does ORDR cover?

Accepted Answer

ORDR covers the full spectrum of connected assets: managed IT endpoints, unmanaged IoT devices, operational technology (OT) including PLCs and HMIs, medical devices, building automation systems, network infrastructure, and anything else that communicates over your network. If it's connected, ORDR can see it.

Question 3

What industries does ORDR serve?

Accepted Answer

ORDR serves organizations across healthcare, manufacturing, financial services, higher education, government, retail, hospitality, and enterprise environments — any sector with a significant IoT, OT, or unmanaged device footprint.

Question 4

What is ORDR IQ?

Accepted Answer

ORDR IQ is the AI-native investigation engine built into the ORDR platform. It lets security teams interact with their asset data through natural language, asking questions about device behavior, risk posture, compliance gaps, and recommended actions — and receiving answers grounded in real device intelligence rather than generic AI responses.

Question 5

How does ORDR discover devices without agents?

Accepted Answer

ORDR uses passive network traffic analysis to identify and profile devices based on their real communication behavior. This requires no software installation on the devices themselves — ORDR observes traffic at the network level, enabling it to profile any device that generates network traffic, including legacy equipment and specialized OT hardware.

Question 6

How is ORDR deployed?

Accepted Answer

ORDR is deployed as a network-connected appliance or virtual sensor that passively observes network traffic. Deployment typically takes hours, not weeks, and does not require changes to existing network infrastructure or software installation on production systems.

Question 7

Does ORDR require active scanning?

Accepted Answer

No. ORDR's primary discovery and profiling capability is entirely passive — it observes network traffic without sending any packets to devices. This is critical for OT and medical environments where active scanning can disrupt sensitive equipment.

Question 8

Can ORDR be deployed in air-gapped or OT environments?

Accepted Answer

Yes. ORDR is designed to work in sensitive OT and industrial environments. Its passive, agentless approach means it can be deployed without interrupting production systems or introducing operational risk.

Question 9

How long does deployment take?

Accepted Answer

Most organizations see initial visibility within hours of deployment. Full baseline profiling, where ORDR learns the normal behavior patterns of all discovered devices, typically occurs over the first few days to weeks depending on network activity levels.

Question 10

What security tools does ORDR integrate with?

Accepted Answer

ORDR integrates with a wide range of enterprise security tools, including SIEM platforms (Splunk, Microsoft Sentinel, IBM QRadar), ITSM systems (ServiceNow, Jira), network access control (Cisco ISE, Aruba ClearPass, Forescout), firewalls and SD-WAN (Palo Alto, Fortinet, Cisco), and endpoint security platforms. See the full integration catalog at ordr.net/integrations.

Question 11

Does ORDR replace existing security tools?

Accepted Answer

No. ORDR extends your existing security investments by providing the device visibility and enforcement layer that most tools lack. It feeds enriched device context into your SIEM, routes incidents to your ITSM, and enforces policies through your existing firewalls and NAC infrastructure — adding capability rather than replacing it.

Question 12

Can ORDR feed device data into our CMDB?

Accepted Answer

Yes. ORDR can sync discovered device data to your CMDB (including ServiceNow CMDB), providing a continuously updated, accurate asset inventory that doesn't require manual maintenance.

Question 13

What compliance frameworks does ORDR support?

Accepted Answer

ORDR helps organizations meet requirements for NIST CSF, CIS Controls, IEC 62443, HIPAA, CMMC, SOC 2, PCI DSS, and a range of industry-specific regulatory frameworks. ORDR maps device intelligence and enforcement evidence to specific control requirements and provides continuously captured, audit-ready evidence.

Question 14

Is ORDR SOC 2 Type II certified?

Accepted Answer

Yes. ORDR is SOC 2 Type II certified. For details on our security program, certifications, and data handling practices, visit our Trust Center at ordr.net/trust-center.

Question 15

How does ORDR handle customer data?

Accepted Answer

ORDR processes network metadata and device behavioral data to provide its security capabilities. We do not inspect or store the content of network communications — only the metadata (device identifiers, communication patterns, protocol types) necessary for device profiling and threat detection. Our privacy policy details all data handling practices.

Question 16

Where is ORDR hosted?

Accepted Answer

ORDR is available as a SaaS platform hosted on major cloud infrastructure (AWS, Azure), or as an on-premises deployment for organizations with data residency or air-gap requirements. Deployment model can be discussed during your evaluation.

Question 17

How do I request a demo?

Accepted Answer

Visit ordr.net/request-demo to schedule a personalized demonstration. You can also explore ORDR IQ's capabilities in a no-signup sandbox environment at ordr.net/ordr-iq before speaking with our team.

Question 18

Is there a free trial available?

Accepted Answer

Contact our team to discuss evaluation options for your environment. We offer a proof-of-concept deployment that lets you see ORDR's device discovery and risk assessment capabilities in your actual network before making a purchase decision.

Question 19

How is ORDR priced?

Accepted Answer

ORDR pricing is based on the number of devices managed and the deployment model. Contact our team for a quote tailored to your environment and requirements.

Question 20

What does implementation support look like?

Accepted Answer

ORDR provides implementation support and customer success services to help you get value quickly. Our team works with you through deployment, initial configuration, integration with your existing tools, and onboarding your security team to the platform.

Frequently Asked Questions

About ORDR

Platform & Deployment

Integrations

Security & Compliance

Getting Started

Still have questions?