Vietnamese businesses increasingly value SOC
SOC is a specialized department in the organization, with the task of continuously monitoring and protecting the entire information technology infrastructure of the enterprise. SOC's core mission is to proactively detect, analyze and respond promptly to network security threats.
Kaspersky conducted a large-scale global study, surveying senior information technology security experts, managers and directors at businesses with a scale of 500 employees or more.
The common point of participating businesses is that they do not yet own SOCs, but have plans to build SOCs in the near future. The research has been deployed in 16 countries and regions of Europe and Russia, Middle East & Africa (META), Latin America (LATAM), Asia - Pacific (APAC), including Vietnam.
Research results show that in Vietnam, 82% of surveyed businesses affirm that SOC is a key factor in improving network security capabilities, and 83% emphasize the need to respond to more complex new threats. These indicators in Vietnam are significantly higher than the global average.
The construction of SOC also serves goals such as budget optimization, shortening the time to detect and handle incidents, as well as managing the rapid increase of software, terminal equipment and users.
In Vietnam, 57% of surveyed businesses aim to optimize network security costs through building SOCs, 75% want to improve the speed of detecting and responding to incidents, and 56% need to control the increasing number of devices, software and users in the system.
SOC's top requirement: Continuous 24/7 monitoring
Among the main functions that organizations in Vietnam plan to implement, 24/7 network security monitoring activities are prioritized by 76% of businesses, higher than the global average of 54%.
The ability to monitor the system continuously and without interruption helps businesses detect abnormal signs early, limit the spread of incidents and improve the ability to respond to network security risks in real time.
This demand reflects the trend of Vietnamese businesses prioritizing a more proactive approach in cybersecurity risk management when threats can always appear at any time.
Humans are still the decisive factor in choosing SOC technology
Although SOC is operated based on many advanced technologies, the choice of Vietnamese businesses shows that the central role of humans is still irreplaceable.
The three most chosen technologies include: Security Information and Event Management System (SIEM) (71%), Endpoint Detection and Response Solution (EDR) (69%), and Threat Intelligence Platform (63%).
Businesses are also particularly interested in other supporting solutions such as XDR (Extended Detection and Response) (54%), NDR (Network-level Detection and Response) (65%), and MDR (Managed Monitoring and Response Services) (57%).
These figures show that Vietnamese businesses tend to focus on improving their ability to detect hidden threats, thereby optimizing the process of analysis, inspection and minimizing response and incident handling time.
