AI Adoption Accelerates in APAC SOCs, But Challenges Persist

Despite widespread interest in adopting artificial intelligence (AI) in Security Operations Centers (SOCs) across the Asia-Pacific (APAC) region, organizations are encountering several challenges on the path to implementation. According to a recent study by global cybersecurity firm Kaspersky, 99 percent of companies in the region are planning to integrate AI into their SOCs. Of these, 67 percent said they would potentially use AI, while 32 percent have already made final decisions.

Organizations expect AI to enhance threat detection (60 percent), enable automated responses (55 percent), and reduce unnecessary alerts or false positives. The primary objectives include improving detection efficiency, automating routine and repetitive tasks, and increasing overall SOC effectiveness—aligning with global trends.

Adrian Hia, Managing Director of Kaspersky Asia-Pacific, said, “Companies in the APAC region are taking a pragmatic approach to AI adoption in SOCs. They prioritize use cases that deliver quick, effective results. Particularly, they expect significant benefits from automated anomaly analysis for threat detection and predefined automation for rapid response. These measures help reduce alert fatigue and relieve security teams from routine operational burdens. While large global companies pursue broader AI objectives, APAC firms focus more on strengthening daily security operations.”

However, despite high interest and strategic planning, significant gaps remain in implementation. The study identified obstacles including a lack of high-quality training data (44 percent), shortage of skilled personnel (37 percent), AI-related security risks and system integration complexity (34 percent), and high costs (33 percent), which hinder successful AI deployment in SOCs.

Anton Ivanov, Chief Technology Officer at Kaspersky, noted, “Organizations understand AI can play a major role in SOCs, but moving from pilot use to measurable impact remains challenging. There is a scarcity of both cybersecurity experts and AI specialists, making it difficult for many to build AI capabilities independently. This is why cybersecurity firms are integrating AI-powered features into their products. Over the past year, we have added AI-supported tools throughout our business portfolio to enable faster threat detection and provide more effective, user-friendly solutions.”

To establish reliable and efficient SOCs, Kaspersky has recommended that organizations adopt their SOC consulting services, enhance performance through Kaspersky SIEM, strengthen protection with Kaspersky Next, and gain comprehensive threat insights via Kaspersky Threat Intelligence. These solutions are further reinforced through AI-driven analysis and capabilities.