Data Centers & Cloud InfrastructureSilver report

Published April 2026Insight Research13 min read2026 Edition12 sources, 12 primary-gradeStrong source depth

Thailand Cybersecurity, SOC, MDR Deep Dive

Thai cybersecurity ~THB 18-25B. AIS Cyber, KBTG, SCB Tech, True Cyber, Palo Alto, Fortinet, CrowdStrike, Cisco. PDPA, Cybersecurity Act, NDID, critical-infra.

Key takeaways

1
Thai cybersecurity market ~ FY2024.
2
Service mix: MSSP, SOC, MDR ~, endpoint+network+email ~, IAM, NDID ~, cloud security ~, data, DLP ~, GRC ~.
3
Thai operators: AIS Cyber, True Cyber, KBTG, SCB Tech, selective domestic SOC, MDR.
4
Foreign vendor: Palo Alto, Fortinet, CrowdStrike, Cisco, Microsoft, Splunk, IBM, Trend Micro, Check Point.
5
Drivers: PDPA, Cybersecurity Act 2562, ETDA, NDID, ransomware, financial-services breach, critical-infrastructure protection.

Executive summary

Thai cybersecurity market reaches ~ FY2024 across managed security services, endpoint, network, email security, IAM, cloud security, data security, GRC. Categories: managed security services (MSSP, SOC, MDR) ~ — anchor service category with AIS Cyber, True Cyber, KBTG, SCB Tech, selective domestic SOC, Thai MSSP, foreign-vendor managed-detection-and-response (CrowdStrike, Microsoft Defender, Sophos MTR); endpoint, network, email security ~ — endpoint protection (CrowdStrike, Microsoft Defender, Trend Micro, SentinelOne, Sophos), firewall, NGFW (Palo Alto, Fortinet, Cisco, Check Point, Sophos), email security (Proofpoint, Mimecast, Microsoft); IAM, NDID ~ — identity-and-access management, privileged-access, MFA, zero-trust, NDID National Digital ID integration.^{[, , , , ]}

Cloud security, data, GRC: Cloud security, CASB (Cloud Access Security Broker), CSPM (Cloud Security Posture Management) ~ — growing with hyperscaler AWS, Azure, GCP, Thai cloud, Thai-corporate cloud-migration; CASB, CSPM, cloud-workload-protection (Wiz, Lacework, Palo Alto Prisma, Microsoft Defender for Cloud, Trend Micro Cloud One). Data security, DLP, encryption ~ — data-loss-prevention, encryption, tokenisation, data-classification (Microsoft Purview, Symantec/Broadcom, Forcepoint, Trellix). GRC (Governance, Risk, Compliance), audit ~ — compliance frameworks ISO 27001, SOC 2, NIST, PCI-DSS, Thai PDPA compliance, audit, advisory (Big-4, Deloitte, EY, KPMG, PwC, selective Thai consultancy).^{[, , ]}

Thai operators, regulation, drivers: AIS Cybersecurity (Advanced Info Service) — telecom-anchored MSSP, SOC, MDR, threat intelligence; True Cyber (True Digital, True Corporation) — telecom, IDC adjacency; KBTG (Kasikornbank), SCB Tech (SCB X) — bank cybersecurity in-house, selective external service; selective Thai SOC, MDR (G-Able, Datapro, Eyenex, smaller). Foreign vendor: Palo Alto Networks, Fortinet, CrowdStrike, Cisco, Microsoft, Splunk, IBM, Trend Micro, Check Point, Sophos, SentinelOne dominant Thai market via channel, system-integrator, reseller. Regulation: PDPA Personal Data Protection Act, ODPC (Office of Personal Data Protection Committee), Cybersecurity Act B.E. 2562 (2019), NCSA, critical-infrastructure reporting, ETDA, NDID identity. Drivers: PDPA enforcement, ransomware, financial-services breach, government incident, critical-infrastructure protection, cloud-migration, IDC, DC growth.^{[, , , , ]}

ETDA, NCSA, AIS Cyber, True Cyber, KBTG, SCB Tech, Palo Alto, Fortinet, NDID, PDPA, Cybersecurity Act, IDC, Verizon, SCB EIC

Data as of: FY2024-Q1 2026

Thai cybersecurity service mix (% of FY2024 ~THB 18-25B)

Managed security services (MSSP, SOC, MDR)

Share %

32%

Anchor, position

AIS Cyber, True Cyber, KBTG, SCB Tech, foreign MDR

Endpoint, network, email security

Share %

26%

Anchor, position

CrowdStrike, Microsoft, Palo Alto, Fortinet, Cisco, Trend

Identity, access management, IAM, NDID

Share %

14%

Anchor, position

Microsoft Entra, Okta, CyberArk, NDID integration

Cloud security, CASB, CSPM

Share %

12%

Anchor, position

AWS, Azure, GCP, Thai cloud; Wiz, Prisma, Defender

Data security, DLP, encryption

Share %

Anchor, position

Microsoft Purview, Symantec, Forcepoint, Trellix

GRC, compliance, audit

Share %

Anchor, position

ISO 27001, SOC 2, PCI-DSS, Big-4 advisory

Service	Share %	Anchor, position
Managed security services (MSSP, SOC, MDR)	32%	AIS Cyber, True Cyber, KBTG, SCB Tech, foreign MDR
Endpoint, network, email security	26%	CrowdStrike, Microsoft, Palo Alto, Fortinet, Cisco, Trend
Identity, access management, IAM, NDID	14%	Microsoft Entra, Okta, CyberArk, NDID integration
Cloud security, CASB, CSPM	12%	AWS, Azure, GCP, Thai cloud; Wiz, Prisma, Defender
Data security, DLP, encryption	8%	Microsoft Purview, Symantec, Forcepoint, Trellix
GRC, compliance, audit	8%	ISO 27001, SOC 2, PCI-DSS, Big-4 advisory

ETDA, NCSA, IDC, Gartner, Frost, Thai operators, SCB EIC triangulation

Data as of: FY2024

Analyst framing

Why this report

Thai cybersecurity is MSSP-32%-anchored, endpoint+network-26%, IAM/NDID-14%, cloud-12%, AIS/True/KBTG/SCB Thai, Palo Alto/Fortinet/CrowdStrike foreign, PDPA/Cybersecurity Act/NDID-driven structural growth.

MSSP, endpoint, IAM, cloud, GRC, Thai-vs-foreign playbooks

MSSP, SOC, MDR: AIS Cybersecurity (Advanced Info Service) — telecom-anchored MSSP, SOC, MDR, threat intelligence; serves enterprise, government, financial-services, corporate; ~24/7 SOC, threat hunting, incident response, threat intelligence sharing; partnership with Palo Alto, Fortinet, CrowdStrike, Microsoft, IBM. True Cyber (True Digital, True Corporation) — telecom, IDC adjacency; serves enterprise, corporate, selective government. KBTG (Kasikornbank), SCB Tech (SCB X) — bank in-house cybersecurity, selective external service; financial-services-grade SOC. Selective Thai SOC, MDR: G-Able, Datapro, Eyenex, Internet Solution & Service Provider, smaller domestic. Foreign-vendor managed: CrowdStrike Falcon Complete, Microsoft Defender, Sophos MTR, Trend Micro Vision One, IBM Security, selective via channel partner.

Endpoint, network, email, cloud security: Endpoint protection (EDR, XDR) — CrowdStrike Falcon, Microsoft Defender for Endpoint, Trend Micro Apex, SentinelOne, Sophos Intercept X dominant Thai market via channel, reseller. Firewall, NGFW (Next-Generation Firewall) — Palo Alto Networks, Fortinet FortiGate, Cisco, Check Point, Sophos, Hillstone (Chinese), Huawei selective. Email security — Proofpoint, Mimecast, Microsoft Defender for Office 365, Symantec Email Security, Trend Micro Cloud Email Security. Network security — Cisco, Palo Alto, Fortinet, selective vendor. Cloud security, CASB, CSPM — AWS, Azure, GCP, Thai cloud, hyperscaler-native security; Wiz, Lacework, Palo Alto Prisma, Microsoft Defender for Cloud, Trend Micro Cloud One; cloud-workload-protection, cloud-misconfiguration, cloud-IAM, container security growing.

IAM, NDID, GRC, drivers, regulation: IAM, identity-and-access management, privileged-access, MFA, zero-trust — Microsoft Entra (Azure AD), Okta, CyberArk, Ping Identity, selective vendor; Thai NDID National Digital ID Platform integration enables financial-services, government identity verification, KYC, cross-institution. PDPA Personal Data Protection Act, ODPC, Cybersecurity Act 2562, NCSA, critical-infrastructure reporting, ETDA Electronic Transactions Development Agency framework drive demand. GRC (Governance, Risk, Compliance), audit — ISO 27001, SOC 2, NIST, PCI-DSS, Thai PDPA, ESG, Big-4 advisory (Deloitte, EY, KPMG, PwC, selective Thai consultancy). Ransomware, financial-services breach, government incident, critical-infrastructure protection, cloud-migration, IDC, DC growth, AI, LLM, privacy emerging drivers.

Scenarios to 2031

Bull: cloud, AI, zero-trust, ransomware drive demand

Sector ~THB 50B

Cloud-migration, AI, zero-trust, ransomware threat scale; PDPA, Cybersecurity Act enforcement, critical-infrastructure investment; AIS, True, KBTG, SCB Tech scale, foreign-vendor channel grows.

Base case

Sector ~THB 32B

Steady growth; PDPA enforcement, cloud-migration, ransomware structural drivers; Thai, foreign vendor mix stable.

Bear: macro softness, cybersecurity skill shortage

Sector ~THB 22B

Macro softness, corporate cybersecurity budget compressed; Thai cybersecurity skill shortage, talent, retention; managed service consolidation.

Unlock the full report

MSSP, endpoint, IAM, cloud, GRC playbooks, scenarios.

Unlock deep dive·$149-$199

Need more than the web report? Ask for a scoped export or source appendix.

Every report keeps visible citations and source metadata. Terms.

Related reports

Thailand Cloud Migration & Hyperscaler Deep Dive

Deep-dive into Thai cloud migration, hyperscaler IaaS+PaaS+SaaS market ~THB 60-90B FY2024. AWS launched Bangkok Region (ap-southeast-7) 2024-2025; Microsoft Azure Thailand Region 2024-2025; Google Cloud Bangkok Region 2024-2025; Huawei Cloud, Alibaba Cloud established earlier. Hyperscaler local-region launch is structural inflection driving regulated-data, sovereign-data, low-latency workload migration. Thai banks, ThaiBev, PTT, listed enterprise, government, healthcare, retail migrate from on-premise, colocation, Singapore-hosted to local Thai cloud. ETDA, PDPA, BOT cloud-policy, sectoral regulator (SEC, OIC, MoPH) shape compliance. SI ecosystem: G-Able, Bangkok Industries, IBM Thailand, Accenture, Deloitte, EY, KPMG, Thai cloud-native consultancies, Hyperscaler partner network.

Open report →

Thailand Data Centers & Cloud Infrastructure Market Intelligence

Thailand became ASEAN's 4th-largest data-centre market in 2024 — ~150MW Bangkok-concentrated, behind Singapore (~1GW), Mumbai (~400MW), Jakarta (~250MW). Hyperscale commitments total >USD 7B: AWS USD 5B+ Bangkok Region (Jan 2025), Google USD 1B+ (Sep 2024), Microsoft Thailand region (May 2024). Listed stack is telecom-led (AIS/ADVANC, True) plus INSET, Singapore-parent ST Telemedia GDC. EEC Digital Park, PDPA, AI Strategy drive the demand curve.

Open report →

Thailand Fintech Sandbox & RegTech Deep Dive

Deep-dive into Thai fintech, regtech, regulatory-sandbox framework. BOT Fintech Sandbox (payment, lending, blockchain, wealth, open-banking, Wholesale/Retail CBDC pilot, virtual-bank license 2024-2025 3-license issuance). SEC Thailand Fintech Sandbox (securities, crypto, tokenised asset, investment platform). OIC Insurance Sandbox (insurtech, bancassurance, product innovation). AMLO RegTech (KYC, transaction monitoring, AML compliance). NDID National Digital ID framework. Ecosystem: SCB 10X, SCB ABACUS, KBank, KBTG, BBL, KTB, TrueMoney Ascend, Rabbit LINE Pay, Jitta, FinVera. MAS, ASEAN regional cooperation, cross-border sandbox.

Open report →

Thailand Data Center Power & Cooling Economics Deep Dive

Deep-dive into Thailand's data-center power, cooling economics. All 3 US hyperscalers now have Thailand regions: AWS Bangkok (2025, ~USD 5B), Azure Thailand (May 2024, ~USD 1B), Google Cloud Thailand (Sep 2024). Co-lo leaders: STT GDC Thailand, ST Telemedia, True IDC (True SET: TRUE), CS Loxinfo, NTT Data, Supernap/Switch Thailand. Per-rack power density rising from 6-10 kW baseline to 30-50+ kW for AI/HPC workloads. PDP 2024 forecasts +3-5 GW DC demand by 2030 — material grid-interconnect question for EGAT, MEA, PEA. Cooling: chilled water, CRAH, CRAC, liquid immersion, direct-to-chip; PUE global benchmark 1.2-1.4 vs Thai ~1.5-1.8 (hot/humid climate penalty). REC market, wheeling regulation shapes renewable-PPA pricing. Gulf Energy, GPSC are the principal power-PPA partners.

Open report →