The Cato Experience Simplicity Gain “ BioIVT securely connected new locations With Cato we just ship a configured device in just 30 days. Sage ERP has become more to the site. Personnel plug it in and we’re responsive; Active Directory synching works ready to go. There are no subnetting more effectively. As for Office 365: issues; no building individual tunnels. The Cato Socket connects to the Cato “ network itself. The whole operation is a lot It’s been fantastic, really good speed benefit. less administrative and involves a lot less SD-WAN made the most sense from an ease technique than the Cisco series routers.” of use perspective.” Customer service and support was fantastic. Everyone was great to work with and rollout was very easy.” Agility and Speed: Key Requirements for BioIVT’s Networking Solution Thomson began looking at various networking solutions for connecting his locations. Agility and speed of deployment were critical for integrating new offices faster. He considered an SD-WAN appliance and a telco-managed SD-WAN service. But, SD-WAN appliances meant operating over the unpredictable Internet and both involved deploying even more infrastructure. Neither would have addressed his security issues. Then he ran into Cato. “ Cato did a lot of what we were after — which is saying a lot.” Instead of taking 90 days to configure tunnels and integrate each location, Thomson now is able to bring up new locations in as little as 30 days. And with his locations connecting across the Cato Cloud Network not the public Internet core, performance has improved. BioIVT Protects Sites With Cato MDR Today, BioIVT has all locations on Cato. But it’s not just networking provided by Cato that’s helped BioIVT; it’s also the security services. Thomson secures Internet connectivity and site-to-site connections with Cato’s Next Generation Firewall (NGFW); protects remote users running the Cato Client with Cato’s secure web gateway (SWG); and uses Cato IPS for preventing network-based threats. More recently, he’s activated Cato Managed Threat Detection and Response (MDR) to hunt for threats on his network. When we found out that Cato not only delivered a global network “ but also o昀昀ered built-in security services and now MDR, we were extremely excited. It was a huge help.” Cato MDR is a fully managed service that offloads the detection of compromised endpoints onto Cato’s SOC team. The service uses machine learning algorithms to look for anomalies across the billions of flows in Cato’s data warehouse and correlates them with threat intelligence sources and complex heuristics. This process produces a small number of suspicious events that Cato security researchers analyze, only alerting BioIVT on actual threats. BioIVT is relieved from handling the flood of false-positives that suck precious IT resources. Cato MDR has already discovered several pieces of malware “ missed by our antivirus system,” says Thomson, “We removed them more quickly because of Cato. Now I need to know why the antivirus system missed them.” Remediation Without the Fuss As part of Cato MDR, customers are notified immediately of verified live threats. Cato’s SOC team advises on the risk’s threat level, recommends remediation, and follows up until the threat is eliminated. “We’ve integrated Cato’s ticketing system with our own,” says Thomson, “so once the SOC discovers a threat the right IT resources are allocated.” Cato also allows companies to automatically block C&C domains and IP addresses. Best of all, Cato MDR is built into BioIVT’s network. Before Cato, we didn’t look at MDR. We just hadn’t gotten around “ to it because of the complexity. So having MDR built into the Cato platform has made all the di昀昀erence in the world.” Respond Predict C R A T D O M Datacenter Branch C OT OL A C Mobile Cloud DU Detect Prevent The Network for Whatever’s Next 5 Manufacturing Case Studies 6