Vietnamese businesses determined to deploy SOC
In order to understand how businesses build and operate the SOC model, Kaspersky conducted a comprehensive study on a global scale, with the participation of respondents from the Asia-Pacific region (APAC), including Vietnam.
The results show that 100% of Vietnamese businesses participating in the survey intend to integrate AI into network security operations. In particular, nearly 74% of organizations in Vietnam affirmed that they will definitely deploy AI, double the average of 32% recorded in Asia - Pacific.
In terms of practical application scenarios, Vietnamese businesses place very high expectations on the automation capabilities of AI. Specifically, 78% of organizations want AI to enhance threat detection capabilities through automatic data analysis to detect early abnormal behaviors; 78% expect AI to help automate response processes, allowing immediate activation of pre-set incident response scenarios...
Not stopping at detecting and responding, Vietnamese businesses are also aiming for more in-depth applications. Nearly 85% of organizations plan to apply AI to forecasting analysis to proactively identify threats and potential vulnerabilities early.
However, the clear gap between expectations and deployment capabilities is gradually emerging in the process of AI application, with a series of common and key challenges. The biggest obstacle comes from difficulties in integrating and managing AI tools. This is an issue that 69% of Vietnamese businesses consider a "bottleneck" hindering progress, complicating operating procedures and limiting the effectiveness of cybersecurity activities.
This problem becomes even more difficult when combined with factors such as: Lack of quality training data, shortage of personnel with AI expertise within the organization, the emergence of new security threats and vulnerabilities arising from the use of AI itself and the burden of costs for developing and maintaining AI-based solutions.
These factors create major barriers that prevent many domestic enterprises from successfully transforming AI strategies in practical operation, and at the same time reflect the urgent need for a methodical and closely supported AI access roadmap.
Recommendations
To build and operate SOCs effectively and reliably, Kaspersky recommends:
- Cooperation with comprehensive consulting services right from the startup stage or when upgrading existing SOC operations. This comprehensive consulting service is designed to help businesses build solid SOCs and optimize operating processes.
- Enhance security performance with the help of advanced technology and AI capabilities. This solution synthesizes, analyzes and stores log data on the entire enterprise's information technology infrastructure, providing context information and in-depth analysis so that businesses can come up with immediate incident handling plans.
- Protect businesses from many different types of threats with advanced solutions, providing real-time protection capabilities, monitoring, investigation and response through EDR and XDR, suitable for all scales and industries.
- Elevating the level of in-depth supervision capacity for network security teams in the face of organizational threats.
