Cato integrates Cyera data platform into XOps globally

Cato Networks has integrated Cyera's Data Security Posture Management into Cato XOps. The integration is now generally available worldwide.

The addition brings Cyera's data intelligence into Cato's security operations platform to help teams determine whether an alert involves sensitive or regulated information. Users can correlate network, endpoint, cloud and data security telemetry in one place.

Security operations teams often investigate suspicious activity without a clear view of the business impact when data is involved. Existing tools can generate alerts based on activity but may not show whether critical data is at risk, while fragmented systems can force teams to manually assemble information from multiple sources.

Cato XOps combines extended detection and response with operational automation in a single system. Linking it with Cyera's DSPM technology adds data sensitivity and business context to security alerts.

Data context

The integration supports three main use cases. First, data-aware detection and response enriches alerts with data sensitivity information, allowing teams to prioritise incidents involving regulated or high-value data.

Second, zero trust enforcement is based on data access paths. This can help security teams apply more precise segmentation and access controls in line with least-privilege policies.

Third, it creates a unified process for investigation and remediation. Security teams can review network, endpoint, cloud and data security information together within Cato's data lake and act through Cato XOps.

The announcement reflects a broader push in cyber security to connect data security with security operations. Many detection tools focus on signs of malicious activity, but data security vendors argue that teams also need to know what information an attacker may have accessed to prioritise response efforts.

Incident priority

For companies handling regulated data, that distinction can shape both incident response and compliance obligations. An alert tied to sensitive customer records, financial information or other protected data may require a different level of urgency than one involving routine internal material.

Adding Cyera's data intelligence is intended to reduce the volume-first approach that often dominates security operations centres. Instead of triaging alerts mainly by count or severity score, teams can use data context to decide which incidents matter most.

Aviram Katzenstein, Chief Platform Officer, Cato Networks, said the integration connects data security more directly with operational response.

"Security teams have long been forced to make critical decisions without understanding the true business impact of a data incident. The Cato SASE Platform already processes massive amounts of security telemetry in a single data lake. By integrating Cyera DSPM into Cato XOps, we're bringing data security telemetry directly into security operations. This enables enterprises to move beyond alert fatigue and focus on what matters most, real time protection of their most critical data," said Katzenstein.

Based in Tel Aviv, Cato sells a cloud-delivered networking and security platform and positions XOps as part of its broader secure access service edge offering. The Cyera integration is available globally.