Google Cloud has launched the Indonesia BerdAIa for Security initiative to at strengthen Indonesia’s cybersecurity capabilities through cutting-edge technology, expert training and a newly established security operations data region located in Jakarta.
The programme will support organisations across key sectors of the economy in transitioning from reactive to proactive security strategies by equipping them with Google Cloud’s AI-enabled security operations platform, tools and threat intelligence.
Under the initiative, Google Cloud has established a new security operations data region hosted in its Jakarta-based data centres. This critical infrastructure addition enables Indonesian organisations, including government agencies and enterprises in regulated industries, to take advantage of Google’s security innovations without compromising on local data policies.
According to research cited by Google Cloud, this AI-driven approach to cybersecurity has the potential to save local organisations at least IDR29 trillion (US$1.8 billion) in cyberattack-related losses over the next five years by reducing incident response times and minimising the impact of breaches.
“With access to AI-enabled security operations platform capabilities, actionable threat intelligence at unmatched scale, Mandiant experts and essential training options, companies can confidently implement a modern approach for faster, more effective cyber threat detection, investigation and response,” said Fanly Tanto (top), Country Director of Indonesia at Google Cloud.
Indonesia BerdAIa for Security is underpinned by Google Cloud’s well-established security transformation framework and backed by a strong local ecosystem of managed security service providers, including Accenture, Astra Graphia Information Technology, Deloitte, Elitery, and SQShield.
The programme begins with an independent assessment across four key domains of an organisation’s cybersecurity posture: governance, architecture, cyber defense, and risk management.
From there, Google Cloud and its partners deliver tailored best-practice recommendations, followed by a bespoke roadmap for establishing or transforming security operations centres.
The platform itself leverages intelligence-driven, AI-powered capabilities to reduce operational toil and speed up threat detection, investigation and response. Organisations can also measure their progress through key performance indicators such as mean time to detect and mean time to respond, with ongoing reporting to demonstrate improvements over time.
In addition to the technology infrastructure, the programme places a strong emphasis on workforce readiness. Through subsidised access to Google Cloud Skills Boost and Mandiant Academy Learning Passes, organisations can upskill their teams with on-demand training, instructor-led classes, and immersive simulations of real-world cyberattack scenarios. These training modules are designed for everyone — from C-suite executives responsible for strategic decisions to frontline engineers handling day-to-day cyber defense.
Early adopters of the programme include leading organisations such as Astra International, Bukalapak, Dipo Star Finance, and Kereta Api Indonesia.
Google Security Operations takes a holistic approach to modern SOC transformation by integrating tools such as SIEM and SOAR within its AI-enhanced ecosystem. The platform enables the ingestion of telemetry data across hybrid IT environments — on-premises, in Google Cloud or across multiple cloud providers — and is enriched with Google’s proprietary Threat Intelligence. It employs AI models fine-tuned for security use cases to help automate and streamline core SOC functions.
Its always-on alert triage agent parses and prioritises hundreds of daily security alerts by autonomously collecting context, analysing command-line input and mapping activity sequences to reveal threats. Once alerts are identified, the investigation assistant takes over to reduce manual workload through natural language interactions. Analysts can ask questions about security events and receive accurate, easy-to-understand summaries or use natural language commands to conduct threat hunts and develop detection rules.
A playbook assistant helps analysts build customised SOAR workflows that automate the next steps in responding to incidents, cutting down response times substantially. This deeply integrated use of AI not only enhances SOC productivity but also mitigates the current shortage of security experts. By empowering junior analysts to perform functions that traditionally require highly specialised skills, Google is bridging the talent gap and helping security teams achieve more with limited resources.
“We’ve more recently integrated generative AI tools and AI agents, enabled by Gemini for Security, into these solutions, reducing the time security teams spend triaging and investigating incidents. This is part of Google Cloud’s expansive vision for an agentic SOC, where a connected, multi-agent system works alongside security professionals to autonomously take on routine tasks, augment their decision-making, automate workflows, and empower them to focus on what matters most: the complex investigations and strategic challenges demanding human expertise,” said Tanto.
Entelechy Asia 