SecurityBrief Asia - Technology news for CISOs & cybersecurity decision-makers
Asia

Guides

#
cloud security
#
cybersecurity
#
endpoint protection
#
firewalls
#
ransomware

Search

Bangkok cybersecurity control room dusk threat dashboards map
#
Firewalls
#
SIEM
#
Network Security

Thailand taps Elastic to power ‘Year of Cybersecurity’

Thu, 11th Dec 2025
Author image
By Sean Mitchell, Publisher

Thailand's National Cyber Security Agency has chosen Elastic Security as its primary security platform as part of a new collaboration with Elastic.

The agreement sits within Thailand's declaration of 2025 as a "Year of Cybersecurity". It covers technology deployment across government and large-scale training for cyber staff.

NCSA plans to use Elastic Security within its own operations first. It then intends to extend use of the platform to other Thai government agencies over the next year.

NCSA partnership

The collaboration focuses on national cyber defence and resilience. It targets protection of citizens, organisations, and the wider Thai economy from cyber threats.

NCSA is responsible for national cyber policy and coordination. The agency is expanding its focus on threat detection, incident response, and protection of critical information infrastructure.

Air Vice Marshal Amorn Chomchey, Secretary-General of NCSA, said the technology will underpin the country's strategic cyber stance.

"Elastic's capabilities in Search and AI will be extremely important in establishing our cybersecurity stance, and also help agencies to innovate while mitigating potential risks," said Amorn Chomchey, Secretary-General, NCSA.

The agency aims to strengthen the skills of cybersecurity experts working across the public sector. It also aims to reinforce the resilience of critical digital infrastructure.

Security platform rollout

Elastic Security gives users visibility across networks, endpoints, and cloud systems. It supports Security Operations Centre analysts during detection, investigation, and response activities.

NCSA will use Elastic Security for security information and event management. This will cover the collection and analysis of security logs and events across systems.

The agency plans to introduce the same platform into other state entities. These include ministries and organisations that fall under Thailand's Critical Information Infrastructure Group.

Elastic describes itself as a search and AI company. It builds its security products on a platform that combines search technology and artificial intelligence.

Skills and training drive

A key element of the collaboration is workforce development. More than 1,000 government cybersecurity practitioners have already received advanced training using Elastic tools.

The training took place during NCSA's annual security programme in Bangkok. Elastic ran a hands-on Advanced Security Analytics workshop during the event.

Attendees included representatives from the Ministry of Public Health and Ministry of Finance. Staff from other critical infrastructure organisations also joined the session.

The workshop focused on threat detection and incident investigation. It also covered the use of AI-driven security analytics within Elastic Security.

Participants used real-world style data. They practised identifying, analysing, and responding to fast-moving cyber incidents.

Elastic executives say public organisations face a combination of rising threats and staff shortages in cyber roles.

"Public sector innovation needs to be scaled concurrently with risk management," said Ravi Rajendran, area vice president, ASEAN, Hong Kong, Taiwan, and Korea at Elastic. "Organisations in the ASEAN region struggle with threats due to a growing skills gap in cybersecurity professionals, a rapidly evolving threat landscape, and a lack of quality threat intelligence. The timeframe for identifying and addressing threats before they proliferate is now a matter of minutes. In Thailand, Elastic is working closely with NCSA, using search and AI capabilities and Elastic Security Labs' quality threat intelligence as a force multiplier for public sector security teams."

Cyber exercises

NCSA is also preparing a major cyber range exercise for the public sector. The event will run as a simulated cyberattack against government systems.

Elastic will participate in the exercise. Its solution architects and security specialists will support design of the architecture used in the scenario.

The cyber range will test incident response processes and technical operations. It will also test how teams collaborate across agencies during complex attacks.

The exercise is due to take place during 2025. It will form part of Thailand's wider programme under the Year of Cybersecurity initiative.

Elastic's security platform is already deployed by thousands of organisations worldwide. The company says more than half of Fortune 500 firms use its search, observability, and security products.

NCSA expects the collaboration with Elastic to underpin broader cybersecurity improvements during 2025. It plans further training, technology rollouts, and live exercises with public sector teams over the coming year.

Related stories
CoreView adds new tools for secure Microsoft 365 tenants
Manual compliance strain fuels automation push - survey
Tanium named Leader in IDC report on Windows tools
Cobalt launches two-way Microsoft Teams pentesting tool
Ping Identity launches universal trust layer for ID

Top stories

Practical DevSecOps launches hands-on security course
Check Point targets securing AI factories at runtime
Exclusive: Genetec dives into the latest State of Physical Security Report
Claroty names James Love as new Chief Revenue Officer
Attackers target AI agents with prompt & tool hacks