Gartner® Critical Capabilities for Managed Network Services

AT&T is based in Dallas, Texas, U.S. Gartner estimates that it manages 60,000 LAN and 360,000 WAN customer sites worldwide. It also has 3,600 managed security customer sites, with its footprint remaining heavily concentrated in the Americas. AT&T has accelerated its automation and AI implementation, establishing the AT&T Business Agent Foundry to deploy agentic AI workflows. This utilizes an AIOps platform predictive monitoring with the AT&T AIOps platform for proactive alerting and automated root cause analysis. Its customer portal is upgraded to a “single pane of glass” digital experience platform. This platform offers advanced end-user experience monitoring, unified visibility, and real-time dashboards across SD-WAN and SASE environments. Its total FCR remains excellent at a high level. While its zero-touch FCR has improved, it lags behind the leading participating vendors in this research. AT&T provides typical SLA documentation, including country-specific specifications. AT&T offers managed LAN and Wi-Fi based on Cisco Catalyst/Meraki and HPE Aruba Networking products. Managed WAN offerings include SD-WAN vendor options from Arista VeloCloud, Cisco Catalyst/Meraki, and HPE Aruba EdgeConnect. A key differentiator is AT&T’s global aggregation, managing dedicated internet access (DIA) and broadband across 194 countries, alongside 4G/5G wireless WAN convergence. It also simplifies hybrid cloud adoption through Total Access Orchestration (TAO) and Equinix Network Edge. For managed SASE and security, AT&T supports Palo Alto Networks (Prisma), Zscaler, Fortinet, and Cisco Secure Access vendor options. Over the last year, AT&T enhanced its MNS portfolio with:

• Dynamic Defense improvements: It enhanced Dynamic Defense, which is embedded for real-time anomaly detection and predictive risk scoring.
• Security Joint Venture: AT&T established LevelBlue, a joint venture dedicated to advanced security. Through LevelBlue, AT&T introduced a new hosted SSE solution built on Fortinet.
• Accelerated SD-WAN deployment: AT&T also expanded its network functions virtualization (NFV) ecosystem and introduced preconfigured templates for SD-WAN security to accelerate deployment.

However, AT&T still lags behind some other vendors in security depth and execution, with its security footprint being much smaller than the leading vendors, and focused on OEM solutions rather than proprietary AI-driven overlays. AT&T is still working on a single-pane-of-glass interface across LAN, WAN and security. It also does not offer a stand-alone NAC solution as part of its MNS portfolio.

AT&T scores “good” for the automation and AI, and security use cases, and “fair” across all other MNS use cases. Within those “fair” use cases, the secure network access use case scores highest and the MNS for LAN use case scores lowest. Its geographic reach is broad, so it is a suitable option for enterprises with a large global footprint.

Comcast Business is headquartered in Philadelphia, Pennsylvania, U.S. Gartner estimates that, worldwide, it manages more than 303,000 LAN and 164,000 WAN customer sites, plus over 151,000 managed security customer sites. Its MNS footprint remains concentrated in the Americas.

Its AI transformation has resolved previous automation limitations, resulting in improved total FCR and zero-touch FCR rates. However, these rates both are lower than many participating vendors in this research. Comcast primarily focuses on SLOs rather than SLAs.

omcast Business primarily utilizes the Cisco Meraki stack and Fortinet to deliver its managed LAN capabilities. Additionally, the company leverages technologies from Aruba, Fortinet, and Cisco to provide fully managed Network Access Control (NAC) solutions tailored to these LAN environments.

Comcast Business offers Managed Wi-Fi with a strong emphasis on modern, controllerless architectures across several vendors. Its managed SD-WAN includes vendor options from Cisco Catalyst/Meraki, Fortinet, Versa and HPE Aruba Networking EdgeConnect. The vendor offers managed SASE and security services primarily via Fortinet and Cisco, and expanded its managed firewall portfolio to include Palo Alto Networks.

Comcast Business added critical capabilities to its SD-WAN embedded security functions, including postquantum cryptography and enhanced encryption, enhanced AI threat defense, and AI-powered security operations.

Over the last year, Comcast Business enhanced its MNS portfolio with:

• Overhauled SDP to incorporate AIOps and agentic AI: It has integrated specialized tools such as ServiceNow Now Assist, with additional capabilities for advanced diagnostics and agentic workflows, allowing the vendor to improve its automation capabilities.
• LEO satellite aggregation: Comcast introduced managed low Earth orbit (LEO) satellite aggregation via Starlink for hard-to-reach sites.
• Digital experience customer portal: It provides a digital experience (DX) customer portal, converging previously siloed LAN, WAN and security views into a single interface. This interface features near-real-time analytics and ServiceNow eBonding.

Comcast Business scores “excellent” for the automation and AI use case. It scores “good” for all other use cases. Within those “good” use cases, Comcast scores very consistently. Its lack of global presence outside the Americas limits its viability for highly distributed multinational corporations. Its evolution in AI-driven automation makes Comcast Business a capable option for midsize and large U.S.-centric enterprise customers.

 DXC Technology is headquartered in Ashburn, Virginia, U.S. DXC targets large enterprises and public-sector clients in verticals including finance, healthcare, government, manufacturing and retail. Gartner estimates that it manages over 20,000 LAN and 17,000 WAN customer sites, along with over 430 security customer sites. Its managed network services footprint remains concentrated in Asia/Pacific.

Its T-Core service delivery platform governs WAN and LAN support operations. It is now augmented by the proprietary OASIS agentic AI platform and MAX-AI for predictive incident management. DXC shows a slight improvement in its total FCR and zero-touch FCR rates, scoring on the lower end for total FCR and at a comparable level for zero-touch FCR rate compared to other vendors in this research. SLAs are typical of industry standards, but do not mention credits. The customer-facing DXC Network Visibility Portal offers real-time dashboards driven by MS Power BI. Its ITSM interface features Enterprise Virtual Agent (EVA) for guided troubleshooting and automated ticket routing.

Its managed LAN service supports multiple vendors, including Cisco and HPE Networking (Aruba and Juniper). DXC’s managed WAN portfolio includes SD-WAN vendor options from Cisco Meraki, HPE Aruba Networking, Fortinet and Arista (VeloCloud). For SASE and security, it is partnered with Zscaler, Fortinet, Cisco, Palo Alto and Check Point.

Over the last year, DXC enhanced its MNS portfolio with:

• Infrastructure as code (IaC): For WAN, DXC introduced an IaC capability to automate SD-WAN edge deployments, applying standardized security baselines to reduce manual errors.
• LAN and the edge: DXC expanded AI-driven intelligent operations, integrating NetBrain, ScienceLogic, and Dynatrace to reduce mean time to recovery (MTTR). It also introduced Wi-Fi 7 capabilities through its HPE Aruba Networking partnership and deployed advanced design architectures for Cisco SD-Access with identity-based TrustSec segmentation.
• Security: DXC expanded its Zscaler managed services and introduced Illumio microsegmentation to enforce granular access control and reduce lateral movement across customer environments. DXC extended its zero-trust framework to cover the full spectrum from network to identity to cloud. It also enhanced SSE integration with Aruba Networking SSE/EdgeConnect and Fortinet SD-WAN security connectors for simplified interoperability.

However, DXC still lags the majority of other vendors, partly due to lower FCR rates and slower customer portal refresh rates, and it has made only minor investments in WAN management compared to the leading vendors in this research..

DXC scores “good” in the automation and AI use case. It scores “fair” for all other use cases. Within those “fair” use cases, the MNS for LAN use case scores highest and the MNS for WAN use case scores lowest. DXC Technology’s emphasis on multivendor flexibility, AI-powered operations, and zero-trust convergence provides a suitable option for large, complex enterprise network modernizations globally.

HCL Technologies, headquartered in Noida, India, has an installed base across enterprise LAN, WAN and security customer sites, ranking in the top third of participating vendors in this research. Most of its customer footprint is in the Americas and Europe. HCLTech’s AIForce service delivery platform has evolved into an autonomous, agentic AI-driven architecture. This integrates proprietary intellectual property, such as iObserve, IntelliOps, MyXalytics and BigFix AEX, to automate provisioning, full-stack observability and AI-driven troubleshooting. These AI investments have improved HCLTech’s zero-touch FCR rate to a level comparable to other participating vendors; however, its total FCR rate recently diminished.

HCLTech provides response and restore SLAs, but does not list credits. The managed LAN offering leverages multivendor infrastructure, including Cisco, HPE Aruba Networking, HPE JuniperNetworking and Fortinet.

The managed WAN portfolio features SD-WAN options from Cisco Catalyst/Meraki, Fortinet, Versa Networks, Arista (VeloCloud) and HPE Networking. SASE and SSE solutions include Zscaler, Palo Alto Networks, Cisco, Netskope and Fortinet.

Over the last year, HCLTech enhanced its MNS portfolio with:

• Agentic AI operations: Deployed Agentic AI workflows via BigFix AEX to execute autonomous closed-loop remediations, reducing manual tickets and MTTR.
• Converged SASE and security: Expanded SD-WAN embedded security through a converged SASE/SSE framework that unifies ZTNA, cloud access security broker (CASB) and firewall as a service (FWaaS). Launched Cybervigilia.AI, a microservices-based visualization platform providing persona-based dashboards for real-time threat intelligence.
• NetDevOps at scale: Advanced NetDevOps using IaC pipelines to accelerate zero-touch provisioning and autoremediate configuration drift.

Other notable upgrades include expanded IT-OT convergence and private 5G-as-a-service solutions tailored for industrial environments.

HCLTech scores “excellent” in the automation and AI use case. It scores “good” for all other use cases. Within those “good” use cases, the MNS for security use case scores highest and the MNS for LAN use case scores lowest. HCLTech’s automation and security advancements position it as a suitable choice for large global enterprises seeking a modernized, AI-ready network infrastructure.

Hughes Network Systems is headquartered in Germantown, Maryland, U.S. Gartner estimates that it manages nearly 42,000 LAN and over 475,000 WAN customer sites. It also manages an expanded base of over 76,000 security customer sites.

Its Hughes service delivery platform governs WAN and LAN support operations. It is augmented by a proprietary AI-driven network root cause analysis (RCA) and autonomous remediation engine using Google Gemini large language models (LLMs). Hughes shows an improved total FCR rate at a high level, and a lower level zero-touch FCR rate compared to other participating vendors in this research. Hughes considers SLAs to be confidential. The customer-facing HughesON Portal features the PULSE platform, offering API-first access.

Its managed LAN service supports vendors including Cisco Catalyst/Meraki, Fortinet and HPE Aruba Networking, while recently adding Celona’s private wireless solutions. Hughes’ managed WAN portfolio includes wireless solutions like Ericsson Enterprise (Cradlepoint) and SD-WAN vendor options from Cisco, Fortinet, and Arista (VeloCloud). Hughes also offers an aeronautical-focused SD-WAN technology leveraging Hughes-manufactured electronically steerable antennas (ESAs) for geostationary Earth orbit (GEO) and LEO multitransport connectivity. For SASE, it partners with Fortinet and Netskope.

Over the last year, Hughes enhanced its MNS portfolio with:

• eSIM and LEO connectivity: For WAN, it introduced multicarrier eSIM enablement with remote profile management to streamline cellular path switching. It also expanded its Hughes Managed LEO satellite offering with Committed Information Rate (CIR) plans for deterministic performance at remote sites.
• Enhanced LAN/edge connectivity: Hughes launched managed Private Wireless with Celona for high-density environments and extended multivendor Wi-Fi rogue suppression across mixed estates. It also expanded its patented Active Power Edge smart power distribution unit (PDU) to Australia and New Zealand.
• AI-driven security: Hughes deployed a managed unified SD-WAN client that converges SD-WAN with intelligent SSE, delivering a software-based SASE agent. Additionally, Hughes built a security copilot based on Azure OpenAI to help automate SOC analyst functions and threat correlation.

Hughes scores “good” for all use cases. The automation and AI use case scores highest and the secure network access use case scores lowest. Hughes should be considered for managed network services in all geographies, particularly in the Americas. 

Lumen Technologies is headquartered in Monroe, Louisiana, U.S. Gartner estimates that it manages approximately 29,000 LAN and 142,000 WAN customer sites, alongside 24,000 managed security customers. The vast majority of Lumen’s footprint remains concentrated in the Americas.

Lumen’s service delivery platform manages network inventory, provisioning and service operations, using a diverse array of vendor tools integrated through ServiceNow. In the last year, Lumen has implemented agentic AI within its AIOps framework. Lumen uses intelligent agents for predictive analytics, automated incident triage, and proactive remediation that leverages Cisco AI Network Analytics and Aruba AIOps. This modernization has helped reduce MTTR by up to 40%. Lumen maintains a low total FCR rate, while improving its zero-touch automation execution. However, its zero-touch FCR rate is still lower than leading vendors in this research. Lumen’s SLAs have one of the more customer-favorable credit structures.

Lumen’s managed LAN services include options from Cisco (including SD-Access), HPE Aruba Networking (SD-Branch), and Meter. Its managed WAN and SD-WAN services feature Cisco Catalyst/Meraki, Versa Networks and Fortinet. Its managed SASE and security offerings include vendor options from Fortinet, Versa, Palo Alto Networks and Zscaler. Over the last year, Lumen enhanced its MNS portfolio with:

• SD-WAN expansion: Lumen expanded its global SD-WAN gateways and hosted SASE nodes in strategic regions to reduce latency, improve resiliency and better support multinational deployments.
• AI-driven threat mitigation: Lumen integrated its AI-enabled threat defense platform, Lumen Defender, as well as Black Lotus Labs threat intelligence across all managed WAN and LAN bundles. This delivers proactive, network-native threat mitigation at the edge.
• Public-sector-compliant management: Lumen introduced a unified LAN/WLAN management capability via a FedRAMP-compliant SD-Branch architecture tailored for the public sector, simplifying global site operations and policy control.
• LEO satellite services: Lumen launched managed LEO satellite services via Starlink to expand enterprise broadband access and ensure resiliency for hard-to-reach sites.

Lumen lags behind some of the other vendors, due in part to lower automation improvements and FCR rates, slower portal refresh rates for network telemetry, and a low adoption rate for ITSM and CMDB integrations compared to leading vendors..

Lumen scores “good” for all MNS use cases. The automation and AI use case scores highest and the MNS for LAN use case scores lowest. It is best suited for U.S-centric enterprises seeking MNS services.

MetTel is based in New York City, New York, U.S. Gartner estimates that it manages over 45,000 LAN and 120,000 WAN customer sites, along with more than 42,000 managed security sites. Most of its customer base is concentrated in the Americas.

nlike many competitors, MetTel owns and operates its own WAN backbone and gateways. Its service delivery platform, Bruin, manages the full life cycle of MNS services, from ordering to operations. MetTel utilizes its Intelligent Process Automation (IPA) platform, which has recently evolved into an agentic AI engine. Integrated with Anthropic’s Claude Enterprise LLM, the IPA platform autonomously interprets network status, summarizes and resolves tickets, and executes automated runbooks. This results in zero-touch FCR and total FCR rates that are comparable to many others in this research. SLAs for LAN/WAN are for equipment repair/replacement only, without provisions for monitoring or incident response. MetTel negotiates individual SLAs with customers that are focused around on site availability. For security, MetTel covers availability and has a customer-favorable credit structure.

MetTel’s managed LAN and Wi-Fi offerings are supported by vendor partners, including Cisco and Arista. Its managed SD-WAN portfolio features Arista (VeloCloud), Cisco Meraki, Fortinet and Ericsson (Cradlepoint). For managed SASE and security, MetTel partners with Netskope, Fortinet and Zscaler.

Over the last year, MetTel enhanced its MNS portfolio with:

• Converged SASE/SSE: MetTel successfully onboarded the full SASE stack from Netskope to offer converged, single-vendor SASE and SSE solutions.
• LAN/WAN updates: The vendor also heavily invested in multiorbit transport, fully automating Starlink satellite deployments for its enterprise clients while actively testing Amazon’s LEO. MetTel LAN offerings integrate the Arista unified orchestrator, allowing full segmentation and security management for switches and access points via a unified SD-Branch platform. MetTel expanded the deployment of its managed remote PDU. Tied directly to the IPA engine, this allows the platform to autonomously monitor and reboot malfunctioning LAN/WAN devices, drastically reducing truck rolls and accelerating incident resolution.
• Private 5G roaming: MetTel launched its new MetTel Mobile Core and SingleSIM service. This enables managed private 5G networks that allow seamless device roaming, from private infrastructure to the best available public wireless network.

MetTel lags behind some of the other vendors, due in part to a lack of SD-Branch orchestration and because some of its network telemetry visibility has delays.

MetTel scores “fair” for the MNS for LAN use case. It scores “good” for all other use cases. Within those “good” use cases, the automation and AI use case scores highest and the secure network access use case scores lowest. Enterprises within the United States with MNS needs should consider MetTel.

Microland is based in Bengaluru, India. Gartner estimates it manages approximately 11,700 LAN and WAN enterprise sites, alongside an expanded base of over 6,100 managed security customers. Its customer footprint is distributed across the Americas, EMEA and Asia/Pacific.

Its Intelligeni NetOps service delivery platform has evolved into an AI-first, autonomous management platform. Leveraging a core knowledge graph (digital twin) and agentic AI, the platform enables proactive anomaly detection, predictive maintenance and autonomous closed-loop remediation. These processes integrate with Microland’s customer portal, supplying real-time visibility into user experience (UX) scores, infrastructure health, and incident response via conversational natural-language interfaces. There is a focus on experience-centric, as the vendor moves beyond SLAs to experience-level agreements (XLAs). These AI investments have advanced Microland’s operational metrics, achieving improved total FCR rate and zero-touch FCR rate. However, the zero-touch FCR rate still lags leading providers in this research. SLAs are typical compared to others, but service credits are not mentioned.

Microland’s MNS LAN offering supports vendors including Cisco Catalyst/Meraki, HPE Juniper Mist AI, and Arista. Its MNS for WAN portfolio supports SD-WAN options from Cisco Catalyst/Meraki, Fortinet, Versa, Arista VeloCloud, and HPE Juniper Networking, available through traditional and NaaS purchasing models. Its SASE and security options include Cisco, Zscaler, Fortinet, Palo Alto Networks and Cato Networks.

Over the last year, Microland enhanced its MNS portfolio with:

• Automated multicloud WAN Fabric: microland advanced its multicloud networking (MCN) and software-defined cloud interconnect (SDCI) capabilities. This enhanced partnerships with providers like Aviatrix to deliver seamless, automated, policy-driven cloud fabrics.
• Self-healing AI networks: Microland has deployed agentic AI and GenAI capabilities to transition customers toward self-healing, autonomous network operations.
• LAN advancements: Microland’s LAN capabilities advanced with Wi-Fi 7 pilot deployments, enhanced IT-OT convergence for vertical-specific IoT profiling, and expanded ZTNA capabilities for identity-centric microsegmentation.

Microland scores “good” across all use cases. It scores highest in the automation and AI use case, and lowest in the MNS for LAN use case. Enterprises globally should consider Microland for their MNS needs.

NTT DATA is headquartered in Tokyo, Japan. Gartner estimates NTT DATA manages about 135,000 LAN and 1.55 million WAN customer sites, and 13,500 security sites globally. Its largest customer base is in Asia/Pacific, followed by the Americas and EMEA.

Its One NTT DATA platform (formerly SPEKTRA) has deeply incorporated AIOps and agentic AI for incident management, unifying monitoring and access control across service categories. It uses Service Experience Insights (SEI) and GenAI to streamline incident response, autonomous diagnostics, and repair. As a result, the vendor maintains exceptional incident management metrics, including a very high FCR rate. Real-time network status, digital twin visualizations and experience data feed directly into the One NTT DATA services portal. SLAs are good overall, but credits are low. NTT DATA’s managed LAN services support over 30 OEMs, including Cisco Catalyst/Meraki, HPE Aruba Networking (Aruba and Juniper). Its managed WAN services include SD-WAN options with vendors Cisco Catalyst/Meraki, HPE Aruba Networking EdgeConnect, Palo Alto Networks and Fortinet. Managed SASE offerings support vendor options such as Palo Alto Networks, Cisco Secure Access, Fortinet and Zscaler.

Over the last year, NTT DATA enhanced its MNS portfolio with:

• MNS LAN expansion: NTT DATA expanded MNS for LAN, supporting managed operations of SD-LAN fabrics and introducing network digital twin visualizations for wireless heatmaps. It deployed advanced agentic AI capabilities, such as a process watchdog and service experience agents, to automate incident diagnosis and remediation. It also expanded its services to support cellular private 5G integration, utilizing Nokia radio access network (RAN) and Cisco core components.

• MNS WAN improvements: It increased the number of OEMs and supported technologies in the One NTT DATA platform and operations team. This includes support for multiple OEM SASE solutions. Additionally, improvements include tighter CMDB integration for circuit inventory, clearer SLA demarcation and coordinated carrier management, covering detection through resolution.

• Notable service upgrades: This includes expanding its LAN support to 1,500+ device types and its security support to include physical, virtual, cloud and edge form factors. This includes vendors Fortinet, Palo Alto Networks, Check Point, and HPE Juniper Networking. It also deepened its integration with Zscaler to support private 5G SASE use cases, extending zero-trust enforcement to private cellular environments.

NTT DATA scores “good” in all use cases. The automation and AI use case scores highest, and the secure network access and security use cases score lowest. Enterprises of all sizes, and particularly those in Asia/Pacific, should consider NTT DATA for all MNS use cases. 

Sify Technologies (Sify) is based in Chennai, India. Gartner estimates that it manages approximately 38,500 LAN and 95,000 WAN customer sites, alongside nearly 170 managed security customers. While the vendor can deliver services globally, its footprint remains overwhelmingly concentrated in Asia/Pacific.

Sify’s service delivery platform utilizes the proprietary Aizen engine and agentic AIOps for automating service qualification, installation, provisioning, and dynamic ticket suppression based on business hours. Its Aakaash 3.0 customer portal provides near real-time network status, trouble tickets, and application usage analytics. However, its total FCR and zero-touch FCR rates are low compared to others in this research. Overall, its SLAs meet industry standards or better; however, its credit structure is weak compared to many other participants in this research.

Sify’s managed LAN services include support for Cisco Meraki and Fortinet vendor options. Its managed WAN services support SD-WAN vendors, including Cisco Meraki, Fortinet, Versa, HPE Aruba Networking and FatPipe Networks. Sify also offers managed SASE and SSE options through Netskope, Zscaler and Cato Networks.

Over the last year, Sify enhanced its MNS portfolio with:

• MNS LAN enhancement: Sify enhanced its MNS for LAN offering with AI/ML-driven monitoring analyzing wired/wireless telemetry, predicting faults, and proactively addressing performance issues. It also added zero-touch provisioning and automated configuration management for campus and branch LAN deployments. The vendor also integrated NAC and segmentation capabilities for identity-based access control.
• MNS WAN improvements: Sify improved its MNS for WAN with deeper SD-WAN application-aware telemetry to provide SLA tracking and accelerate the resolution of application experience issues. It also integrated hybrid WAN and cloud connectivity management, providing unified visibility, managed observability service, and path optimization across MPLS, broadband, 4G/5G and cloud on-ramps.
• MNS security upgrades: Sify now includes Cato Networks’ integration for ZTNA, extending context-aware remote user access and AI-driven threat detection that correlates network, endpoint and cloud telemetry. Sify also introduced automated incident response workflows to accelerate threat containment and traffic isolation.

Sify scores “good” across all MNS use cases. The automation and AI use case scores highest and the secure network access use case scores lowest. It is best aligned to customers with MNS needs in Asia/Pacific. 

Systal Technology Solutions is headquartered in Glasgow, Scotland, U.K. Gartner estimates it manages over 2,250 LAN and 1,250 WAN customer sites, as well as over 520 managed security customers. Most of its customer sites are in Europe.

Systal’s service delivery platform now features bidirectional API integration with key ITSM tools like ServiceNow and a broad ecosystem of vendor partners. Driven by introducing its agentic AI platform, Systal’s Secure AI Manager (SAM), its total FCR rate has increased to a very high level and its zero-touch FCR has also improved, almost doubling year-over-year, comparable to other participants in this research. Systal’s customer portal has been upgraded and no longer lags behind peers. It features natural language queries via “Ask SAM,” unified NOC/SOC dashboards, real-time telemetry correlation, and automated compliance tracking against frameworks like NIST and PCI. SLAs are typical; however, they do not include credits.

Systal’s managed LAN service includes Cisco, HPE Aruba Networking and HPE Juniper Mist AI options. For managed WAN services, it offers SD-WAN vendor options, including Cisco Catalyst/Meraki, Fortinet, Palo Alto Networks, HPE Aruba Networking and HPE Juniper Networking. Managed SASE and ZTNA vendor options include Zscaler, Palo Alto Networks, Cisco and Fortinet.

Over the last year, Systal enhanced its MNS portfolio with:

• MNS LAN Enhancement: Systal provides self-service portal workflows for common move/add/change/deletes (MACDs) and utilizes SAM to autogenerate validated device and fabric configurations. It also extended operations for software-defined environments like Cisco SD-Access and Application Centric Infrastructure (ACI).

• MNS WAN augmentation: Systal augmented its WAN offering by shifting from command-line interface templates to modernized feature templates, utilizing public cloud backbones for inter-regional hub connectivity. It also deployed Cisco Multi-Region Fabric (MRF) to ensure scale, lower latency and fault isolation for globally distributed deployments.

• Notable service upgrades: Systal has unified NOC and SOC workflows onto a shared event correlation platform equipped with automated incident response playbooks. This has reduced threat containment times to under 90 seconds. Additionally, Systal introduced intent-driven policy life cycle automation for firewall, cloud, and ZTNA changes to accelerate safe policy updates.

Systal scores “excellent” in the automation and AI use case. It scores “good” for all other use cases. Within those “good” use cases, the MNS for security use case scores highest and the MNS for WAN use case scores lowest. It is best suited for MNS customers with service needs in Europe. 

Tata Consultancy Services (TCS) is based in Mumbai, India. Gartner estimates it manages approximately 47,800 LAN and 39,300 WAN customer sites, and has increased security operations to manage almost 31,500 security customer sites.

The TCS Cognix for Networks service delivery platform orchestrates LAN, WAN and security via a multitenant SaaS design. It features AIOps, automated event management, service mapping and predictive analysis. The platform now heavily integrates generative AI and agentic AI to support autonomous closed-loop remediation, asset management and user experience observability. The integrated customer portal displays near-real-time network status, hardware inventory and AI-derived business-contextual views. TCS offers incident management metrics, with a total FCR rate and high zero-touch FCR rate that is comparable to other participating vendors in this research. Its SLAs are typical for
LAN/WAN/security, but information about service credits is not publicly available, which makes it a challenge for customers to evaluate TCS’ service level commitments.

Managed LAN services include support for Cisco, HPE Aruba Networking and HPE Juniper Networking, and Fortinet. For managed WAN, TCS supports SD-WAN vendors including Cisco Meraki, Fortinet, HPE Aruba Networking, Palo Alto Networks and Zscaler. Managed SASE and ZTNA options feature platforms from Zscaler, Palo Alto Networks and Netskope.

Over the last year, TCS enhanced its MNS portfolio with:

• MNS LAN advancements: TCS advanced its LAN offerings by introducing AI/ML-powered predictive analytics within Cognix for proactive fault management. It deployed a cloud-native orchestration framework accommodating multi-OEM environments to facilitate zero-touch provisioning. TCS also expanded its secure-edge-ready LAN architectures by incorporating zero-trust models, microsegmentation and private 5G integrations.
• MNS WAN upgrades: TCS upgraded its SD-WAN services with cloud-native orchestration and integrated SD-WAN with cloud security frameworks (SASE/SSE). It deepened the integration of Cisco and Versa SD-WAN into the Cognix platform and trained over 3,500 associates on multivendor SD-WAN technologies.
• MNS security updates: TCS launched cloud-native firewalling (FWaaS) across hybrid and multicloud environments, and introduced OT network security aligned with Purdue model segmentation. TCS also expanded microsegmentation capabilities and integrated agentic AI into ZTNA operations for autonomous troubleshooting.

TCS scores “good” for all use cases. The automation and AI use case scores highest and the MNS for LAN and MNS for WAN use cases score lowest. TCS should be considered by all enterprises that are seeking MNS services across all regions. 

Telefónica is headquartered in Madrid, Spain. Gartner estimates that it manages more than 336,000 LAN and 531,000 WAN customer sites, plus an expanded base of 45,000 managed security customers. It has a global footprint with operations focused in Spain, Germany, the U.K. and Brazil.

Telefónica’s MIND service delivery platform integrates orchestration, inventory, and billing, and is supported by a multiagentic-AI strategy. Telefónica maps these services to its rebranded EYE customer portal. This features the AI-driven EYE Bot virtual assistant for real-time tracking, proactive alerts and natural-language queries. The vendor has boosted its automation capabilities. Its total FCR rate and zero-touch FCR rate have improved during the past two years, but still trail others in this research..

Telefónica’s managed LAN offerings include Cisco Meraki, Fortinet and HPE Juniper Networking vendor options. Its managed WAN portfolio includes SD-WAN vendor options from Cisco Catalyst/Meraki, Fortinet, HPE Aruba Networking, Palo Alto Networks and Versa. Its SASE portfolio includes Cisco, Fortinet, HPE Aruba Networking, Netskope, Palo Alto Networks and Zscaler vendor options.

Over the last year, Telefónica enhanced its MNS portfolio with:

• Zero-touch SD-LAN provisioning: Telefónica added Juniper Mist SD-LAN as a standard service and introduced zero-touch provisioning (ZTP) for massive unattended Meraki and Fortinet deployments. It also introduced NAC Lite to provide cost-effective, adaptive access security for SMB customers.
• WAN-integrated SASE: Telefónica launched fully integrated single-vendor SASE propositions based on Cisco and Fortinet, converging SD-WAN, LAN/Wi-Fi and SASE under a unified framework. A notable innovation was the deployment of a “kill switch” mechanism, allowing the rapid, automated isolation of specific customer sites during cyberattacks.
• Notable security service upgrades: Telefónica added managed microsegmentation via Akamai Guardicore Segmentation, network detection and response via Darktrace, and secure browser offerings with Palo Alto Networks. Telefónica also enabled automated integration of its managed security services directly into a customer’s own SIEM to enhance unified threat response.

Telefónica scores “good” for all use cases.The automation and AI use case scores highest and the MNS for security use case scores lowest. Enterprises should consider Telefónica for MNS services concentrated in Europe, the U.K. and South America. 

Wipro is based in Bengaluru, India. Gartner estimates that it manages more than 60,000 LAN and 73,000 WAN customer sites, and over 31,000 managed security service customer sites.

Wipro’s OneNetX.ai service delivery platform has automated workflows across monitoring, event management, network health reporting, service requests, provisioning and incident resolution. Through API integrations, WINGS OneNetX.ai incorporates various ITSM, reporting monitoring and management tools, and it has added AI technology to enhance its security monitoring services. Despite its service automation, its service response results are mixed, with a high total FCR rate but lower zero-touch FCR compared to other providers in this research. SLAs meet industry standards, but lack defined service credits for SLA violations.

A majority of Wipro’s managed WAN service contracts include managed LAN support, with vendor options including Cisco, HPE Aruba Networking (Aruba and Juniper), and Palo Alto Networks. Its managed SD-WAN vendor partners include Cisco Catalyst/Meraki, Palo Alto Networks, HPE Aruba EdgeConnect SD-WAN and Arista (VeloCloud). Wipro’s managed SASE portfolio includes Palo Alto Networks, Cisco, Netskope and Zscaler vendor options.

Over the last year, Wipro enhanced its MNS portfolio with:

• MNS LAN enhancement: Wipro enhanced its LAN offering with AI native capabilities in WINGS OneNetX.ai. Its Matrix module automates troubleshooting through agentic workflows. Remedix validates diagnostics and executes governed remediation and WINGMAN delivers vendor-agnostic visibility, compliance and experience analytics. Combined, they bring predictive operations and consistent outcomes across global networks. MNS
• WAN improvements: Wipro improved its WAN offering with a consulting-led multicloud network solution delivering software-defined connectivity from branch to cloud. The enhancement enables consistent policy, security and performance across distributed WAN and cloud environments. It also strengthened its WAN operations, improving prediction and operational consistency across SD-WAN and security estates.
• Notable service upgrades: Wipro added GenAI technology to its service platform and tool additions to upgrade its co-managed network services. Wipro also invested in automation and orchestration upgrades for incident response and added automated threat intelligence integration to detect and prevent threats.

Wipro scores “good” across all use cases. The automation and AI use case scores highest and the MNS for LAN use case scores lowest. Enterprises in all geographies should consider Wipro for all MNS capabilities. 

XTIUM (formed by the merger of ATSG and Evolve IP in March 2025) is based in Tampa, Florida, U.S. Gartner estimates it manages over 14,900 LAN and 1,500 WAN customer sites, along with approximately 500 managed security customers. Most of its MNS customers are in the Americas. However, it is actively expanding its EU presence and capabilities by integrating the former Evolve IP footprint and sales teams into its operations.

Its MNS architecture and life cycle management support processes are highly mature, with its proprietary OPTX AIOps observability platform deeply integrated into its service delivery. XTIUM sets itself apart by utilizing a deterministic AI/ML Bayesian correlation engine to automate root cause analysis. This reduces alert noise by over 90%, and triggers autonomous, self-healing remediation. As a result of these AI investments, the vendor achieves improved incident management performance. It reports a total FCR rate and zero-touch FCR rate that is comparable to other participating vendors in this research. SLAs are focused on time to notify, and change and resolve, but not availability. It also doesn’t offer service credits.

XTIUM managed LAN services support vendor partners including Cisco and HPE Aruba Networking (Aruba and Juniper). Its managed WAN services support a multivendor SD-WAN fabric. The partner vendors include Cisco (Viptela/Meraki), Palo Alto Networks
(Prisma SD-WAN), Fortinet, HPE Aruba Networking EdgeConnect and Arista (VeloCloud). Security and SASE offerings feature tight integrations with Cisco, Palo Alto Networks, Fortinet and Zscaler.

Over the last year, XTIUM enhanced its MNS portfolio with:

• Platform improvements: XTIUM expanded its OPTX platform by launching AI-powered predictive path selection, proactively steering application traffic to optimal paths before performance degrades. It also launched a managed extended detection and response (XDR) service built on Palo Alto Networks’ Cortex XDR. The vendor integrated cloud security posture management (CSPM) tools like Wiz and Prisma Cloud into its MNS for Security.
• MNS LAN enhancements, XTIUM enhanced its AI-powered wireless assurance and expanded its NAC capabilities. This includes dynamic microsegmentation for unmanaged IoT and medical devices via integrations with Armis and Claroty.
• Multicloud automation: XTIUM developed new automation workflows for AWS Transit Gateway, Azure Virtual WAN, and Google Cloud Network Connectivity Center, which reduced multicloud networking deployment times from weeks to hours.

XTIUM scores “excellent” for the automation and AI and security use cases while scoring “good” across all other MNS use cases. Within those “good” use cases, the secure network access use case scores highest and the MNS for LAN use case scores lowest. Enterprises in North America, and increasingly Europe, should strongly consider XTIUM for its highly automated and AI-driven MNS capabilities.