Google Cloud launches AI-driven cyber security in Indonesia

Google Cloud has introduced Indonesia BerdAIa for Security, a programme focused on enhancing the cyber resilience of key sectors across Indonesia using artificial intelligence-enabled cyber defence solutions.

A core element of the programme is the launch of Google Cloud's new security operations data region located in Jakarta. This regional infrastructure allows organisations, including government entities and highly regulated industries, to store security telemetry data domestically. The company states this meets local data residency requirements while providing access to its intelligence-driven, AI-enabled Google Security Operations platform.

According to research cited by Google Cloud, the deployment of advanced AI security tools and threat intelligence could help Indonesian organisations shift from reactive to proactive cybersecurity strategies. Over the next five years, this approach is projected to reduce cyberattack-related losses by at least IDR 29 trillion (USD $1.8 billion).

"Financial losses and reputational damage from data breaches stem from three of security's most deeply-rooted problems: threat overload, toil, and the widening talent gap. Indonesia BerdAIa for Security helps organisations overcome these problems. With access to AI-enabled security operations platform capabilities, actionable threat intelligence at unmatched scale, Mandiant experts, and essential training options, companies can confidently implement a modern approach for faster, more effective cyber threat detection, investigation, and response. They will emerge from this programme with a defender's advantage for protecting their most critical assets," said Fanly Tanto, Country Director, Indonesia, Google Cloud.

The programme draws on Google Cloud's established security transformation framework, combining its technology, expertise, and a network of Managed Security Service Provider (MSSP) partners. Among the participating partners are Accenture, Astra Graphia Information Technology (AGIT), Deloitte, Elitery (PT Data Sinergitama Jaya Tbk), and SQShield (PT Gan Mitra Usaha).

Indonesia BerdAIa for Security aims to deliver independent security assessments, advise on best practices to strengthen security posture, and develop tailored strategies for both establishing and optimising security operations or Security Operations Centres (SOCs). The deployment of Google Security Operations, equipped with AI tools and security-tuned Gemini models, is intended to reduce repetitive manual work and accelerate the detection and response to threats.

Organisations participating in the programme can expect assistance with tracking key performance indicators such as Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR), as well as access to 24/7 threat detection, investigation, and response support through Mandiant experts. The programme also provides a range of workforce training opportunities, including on-demand, instructor-led, and hands-on courses via Google Cloud Skills Boost for Organisations and Mandiant Academy.

Early adopters of Indonesia BerdAIa for Security include well-known organisations such as Astra International, Bukalapak, Dipo Star Finance, and Kereta Api Indonesia.

Security operations platform

Google Security Operations enables collection of security data across entire IT environments, with built-in data residency controls. Enhanced by Google Threat Intelligence, the platform helps uncover indicators of compromise through forensic analysis and leverages AI to power integrated Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) functionalities.

The platform addresses the challenge of threat overload, where security teams face hundreds of alerts each day. Its always-on alert triage agent autonomously analyses suspicious activities, reviews command line instructions, and maps sequences of events, providing recommendations along with alert severity ratings.

Google Security Operations' investigation assistant is designed to reduce manual, repetitive tasks in threat investigation and remediation. Security analysts can interact with the assistant using natural language to request summaries, generate complex queries, and create detection rules or SOAR playbooks without specialist programming knowledge.

The company highlights that combining machine learning and generative AI tools helps to address skilled workforce shortages in the security field, empowering less-experienced analysts with advanced capabilities.

"Google Cloud has been incorporating machine learning (ML) into its security solutions for well over a decade. We've more recently integrated generative AI tools and AI agents, enabled by Gemini for Security, into these solutions, reducing the time security teams spend triaging and investigating incidents. This is part of Google Cloud's expansive vision for an agentic SOC, where a connected, multi-agent system works alongside security professionals to autonomously take on routine tasks, augment their decision-making, automate workflows, and empower them to focus on what matters most: the complex investigations and strategic challenges demanding human expertise," said Tanto.