What is the Cato Networks SASE Security Solution?
Cato’s SASE security solution is cloud-native and built direct into their global backbone. Available both regionally and globally, it is accessible even by remote users. This is because user and resource is identity-driven, meaning that each network connection is associated with an identity, reducing operational overhead as users can have a set of networking and security policies regardless of their location. The SASE offering is also cloud-native, leveraging key cloud capabilities such as elasticity, adaptability, self-healing and self-maintenance - lowering costs and improving efficiency. Further, Cato’s security offering is able to support all Edges - meaning that the SASE creates one network for all company resources such as datacenters, branch offices, cloud resources and mobile users.
Cato offer their full network security pack which is built direct into their global backbone, called ‘Security-as-a-Service’. This avoids the need for backhauling traffic to specific choke points and third party security products, that will require chaining together. All SASE policies are cloud native. Cato’s security-as-a-service, also directly integrated into the Cato Cloud network. This multi-layered system provides uniform security solutions and policies with global reach, provisioning integrated flexibility of the cloud. Cato uses Next Generation Firewall and a Secure Web Gateway to provide granular access management to internet-bound traffic and web access control.
Cato’s cloud native SASE solution is distributed over the global private backbone to ensure that security and network requirements are addressed by a single, interconnected facility.
Security as a Service comes with a number of key features:
- Firewall as a Service (FWaaS): Application aware ‘firewall-as-a-service’ (FWaaS). Cato is able to deliver firewall and network security capabilities with cloud service. This means that clients have access to network security (URL Filtering, IPS, AM, NG-AM, Analytics, MDR) in any location, and removes the need for appliance form factor firewalls.
- Secure Web Gateway (SWG): Included in the security pack is Secure Web Gateway (SWG). This focuses on layer 7 web traffic inspection, inbound and outbound, protecting against phishing, malware and many other internet-borne threats. Because it is cloud-based, security is available to remote users outside the office.
- Managed Threat Detection and Response Services (MDR): Designed to detect and eliminate malware threats, it offloads compromised endpoints to Cato’s security operation center team. It offers: automated threat hunting, which looks for anomalies across flows in Cato’s data warehouse, correlating them with threat intelligence sources and complex heuristics; expert threat verification, Cato’s security researchers evaluate the validity and risk level in flagged endpoints, removing the risk of false threats; threat containment, verified threats are automatically contained by blocking IP addresses and C&C domains, which disconnects compromised machines and users from the network; and guided remediation, Cato’s security operation center offers advice on the risk’s level threat, and give recommendations on how to fix the problem, following up until the threat is completely removed.