Nearly 93% of organisations in the Asia-Pacific (APAC) region are opting to outsource at least part of their Security Operations Centre (SOC) operations, according to a recent survey by cybersecurity firm Kaspersky. The survey reveals that 64% of these organisations prefer a hybrid model, combining internal and external resources, whilst 29% are moving towards a full SOC-as-a-Service (SOCaaS) approach. This shift is driven by the need for round-the-clock protection, regulatory compliance, and access to advanced cybersecurity expertise.
As cyberthreats grow more sophisticated, companies are re-evaluating their SOC strategies. The survey highlights that only 9% of organisations plan to maintain entirely in-house SOCs, underscoring the challenges of continuous monitoring and attracting skilled specialists. In Malaysia, where internet penetration reached 97.7% in early 2025, the digital economy is expected to contribute up to 30% of GDP by 2030, further emphasising the importance of robust security operations.
Outsourcing SOC functions allows organisations to delegate tasks such as SOC design, technology deployment, and monitoring to external providers. This approach not only ensures 24/7 protection but also reduces the workload on internal IT teams, enabling them to focus on strategic initiatives. Sergey Soldatov, Head of Security Operations Centre at Kaspersky, noted, “The trend towards outsourcing SOC functions is primarily driven by the necessity for enhanced operational focus and strategic agility.”
The survey also found that the most commonly outsourced tasks include solution installation, development, and SOC design. Companies are increasingly seeking external support for compliance and advanced technologies, with first-line and second-line analysts being the most in-demand roles. Adrian Hia, Managing Director for APAC at Kaspersky, stated, “As digital dependence and regulatory expectations increase, leaders are recognising that resilience depends on how expertise and responsibility are structured.”
Kaspersky advises organisations planning to build a SOC to engage with their consulting services and leverage advanced solutions like Kaspersky SIEM and Threat Intelligence to enhance security performance.
