2019 SD-WAN Product of the year winner, Cato Networks, has launched Cato Instant*Insight which includes SIEM capabilities included at no cost in a secure access service edge (SASE) platform. It leverages the convergence of networking and security into Cato SASE platform to eliminate deployment complexity, upfront investment, and the learning curve previously required with traditional event managers, SIEMs, and network analysis tools.
We have told you the worlds of SD-WAN and cybersecurity will continue to merge when we broke the story regarding Palo Alto Networks getting into SD-WAN. Today’s news shows this is the case. Cato was early in converging SD-WAN and network security into a global, cloud-native platform.
In addition, the competition is heating up. Here are just a few recent stories on SD-WAn we have recently broken:
- Martello Completes First Phase of Testing its SD-WAN Solution on ENCQOR 5G
- 128 Technology Announces Integration with Amazon VPC Ingress Routing
- Aviatrix Cloud-Native Networking Software Extends to Enterprise Branch Offices with CloudWAN Service
- Juniper adds Cloud-Managed SD-LAN and New CPE Devices
- Mars Picks Orange Business Services for Intelligent Automated Network Project
- Versa Networks to Support Amazon VPC Ingress Routing
- Intelsat Wins SD-WAN-over-Satellite Award
- InterVision is Your Latest SD-WAN Choice
- Ooredoo Kuwait Chooses Fortinet for SD-WAN
- SD-WAN Gets an Exciting New Entrant with a Global Network: Epsilon Telecommunications
- New Allstream IT CloudView Dashboard Manages WiFi, LAN, Cybersecurity and SD-WAN
- New Extreme Fabric Automation Continues Autonomous Enterprise Drive
“From its founding, Cato realized that converging networking and security into the cloud would simplify all aspects of networking. Cato Instant*Insight attests to that vision. With our SASE platform, we’re able to deliver the kind of visibility out-of-the-box that previously required extensive custom integration and development,” says Shlomo Kramer, CEO and co-founder of Cato Networks. “Cato Instant*Insight let us find the ‘needle in the haystack’ in minutes,” says Lars Norling, Director of IT Operations at ADB Safegate, a provider of airport efficiency and productivity solutions. “We build complex queries to filter through millions of events just by clicking on values on the side of the screen. Especially for smaller IT teams, Instant*Insight is a game changer. It lets them work together like a large NOC or SOC without investing tens if not hundreds of thousands of dollars on custom integration and forensic tools.”
“I’m very impressed with Instant*Insight,” says Tomy Joseph, Director of IT Infrastructure at Coolsys, a leader in the commercial refrigeration and HVAC industry. “We can use it right away to troubleshoot all sorts of problems, like our VoIP disconnects or security incidents, by mining a massive repository of security and networking data.”
SASE Enables Advanced Root Cause Analysis Without the Pain or Cost of a SIEM
Fragmented IT solutions provided by disparate vendors hamper problem resolution and prevention. Developing a timeline of events required mastering a range of protocols and APIs just to retrieve the necessary data from networking and security appliances. Data interpretation and normalization technologies were needed to store event data in common format for analysis. Querying and utilizing this information required specialized skills and knowledge. Finally, IT was left having to store and maintain this massive data warehouse. All of which made root cause analysis difficult and impractical for many enterprises.
Cato Instant*Insight addresses these problems by organizing the millions of networking and security events tracked by Cato into a single, queryable timeline. IT teams can quickly filter the millions of networking and security events tracked by Cato to arrive at root cause. Key to Cato Instant*Insight is the Cato’s SASE architecture. SASE converges many disparate network and network-security capabilities including SD-WAN, SWG, CASB, SDP/ZTNA, DNS protection, and FWaaS onto a global, cloud-native platform. As such, all networking and security events are already stored in a common data warehouse maintained by Cato.
Cato Instant*Insight evolves the delivery of SIEM in three ways:
- Automated aggregation consolidates all security and networking events into one massive data warehouse -no additional agents are needed to extract, or code required to normalize data.
- Faceted search makes Cato Instant*Insight very adaptable and still easy to use. All variables and parameters are presented for easy querying. Network and security professionals simply select the requisite items to construct the necessary queries.
- The network analysis workbench is a built-in interface for data mining. There’s no need to purchase an additional data analysis tool to piece together the timeline of networking and security problems. Instant*Insight correlates all events into a single timeline, filtered through this simple interface
Cato Instant*Insight helps organizations drill down through the millions of events generated across an enterprise network to spot security threats and diagnose network disruptions that were previously shielded by the fragmented visibility of appliances.
Security operations teams can use Cato Instant*Insight to easily identify the uniform, predictable communications that indicate bot traffic by reviewing entire communication exchanges between clients and suspicious target (see above). Companies with limited security staff or looking to augment their SOC should consider the Cato Managed Threat Detection and Response (MDR) service.
Networking teams can use Cato Instant*Insight to easily diagnose root cause of intermittent problems, such as periodic loss of connectivity. Normally resolving such issues require extensive event logging, unavailable in most edge routers. Cato Instant*Insight let’s network administrators filter through millions of events across their global networks in seconds to uncover the cause of connectivity problems (see above).
Cato continues to add value by bundling more services into a single solution which makes management easier and lowers costs to boot. The challenge may be convincing customers a free cybersecurity service is as valuable as one which is paid.
Still, the company has proven itself to be a quality purveyor of SD-WAN solutions – their reputation in the market will likely overcome any concerns by customers. Finally, customers quite often don’t want to spend money on additional cybersecurity – until they are hacked and might be forced to. Providing a new free service may be a good way for Cato and its channel to differentiate and get the business that just won’t spend more money on SIEM.
See the only SD-WAN vendors that matter at the ITEXPO #TECHSUPERSHOW.
Join others with $8.5B+ in IT buying power who plan 2020 budgets! Including 3,000+ resellers!
A unique experience with a collocated SD-WAN Expo, AIOps Expo and MSP Expo…
Come to the Digital Transformation Event! Feb 12-14, 2020, Fort Lauderdale, FL. Register now.
See these SD-WAN vendors and more!
New Exclusive Diamond Sponsor: Frontier Business.
| Martello | Oracle |
| Singtel | Tallac |
| Intelisys | Comcast Business |
| HughesON | Windstream Enterprise |
| Adaptiv Networks | Jenne |
| Fujitsu | Telarus |
| 128 Technology | SureNET |
| BEC Technologies | Sprint |
| RocketBroadband | Mach Networks |
| Tech Data | Aryaka |
| Inseego |
