In addition to SIEM, Threat Intelligence and EDR solutions are in greatest demand.
According to an international study by Kaspersky, half of the organizations planning to create a SOC (Security Operations Center) in the next two years are doing so to improve information security and protection against complex cyber threats.
About 40% of respondents believe that SOC will help optimize the cybersecurity budget, speed up incident detection and response, and securely store and analyze confidential information. A third of respondents expect SOC to become their competitive advantage.
Companies are going to include in the SOC primarily advanced Threat Intelligence (TI) solutions to obtain high-quality analytics on cyber threats (48%) and Endpoint Detection and Response for detection and response on endpoints (42%), as well as SIEM systems for monitoring and managing security events (40%).
Among the solutions that companies plan to implement in SOC are Extended Detection and Response (XDR), Network Detection and Response (NDR), and Managed Detection and Response (MDR) technologies. The effectiveness of solutions depends on the qualifications of security specialists who provide contextual information and make decisions about response measures.
The survey was conducted by Kaspersky's internal research center in 2025 in 16 countries, including Russia. A total of 1714 employees of enterprises from various industries were interviewed.
