Managed Security Service Provider of the Year

• This category is not open for nomination

Education and Training Provider of the Year

• This category is not open for nomination

Safety Outreach Provider of the Year

• This category is not open for nomination

Innovative Company of the Year

Market Definition:

The Information Security Innovative Company OTY will be conferred on a Malaysian company that has shown excellence in new products and technologies within its industry. The recipient company should have shown innovation by launching a broad line of emerging products and technologies.

Measurement Criteria:

The contenders of this award will be evaluated based on the following key criteria:

• Degree of Innovation - New Vs. Improvement
• Impact of the innovation on Industry
• Financial success - Revenue growth ; profitability
• Customer wins & value enhancement
• Commitment to R&D - Spending on R&D as a % of revenues ; number of patents

Information Security Project of the Year

Market Definition:

• A Project implemented in the year 2010, which encompasses aspects of security such as risk management, data asset protection, regulatory compliance and privacy.
• An Information Security Project with proven ROI and Risk mitigation framework that is acknowledged as an “Industry best practice”.
• A Project that has positive implications, not just for the firm, but the nation at large and is recognized as resulting in Industry advancement.
• A Project that has been accomplished by Malaysian organizations, that adheres to International standards and best practices such as ISO 27001 & industry guidelines.

Measurement Criteria:

The Information Security Project OTY will be conferred on the project that has shown exemplary performance in 2010 in Malaysia. The contenders of this award will be evaluated based on the following key criteria:

• Design of Security Framework
• Scope of the Project - Complexity, size, length, breadth of impact.
• Security Initiatives
• The impact of the Project’s Security Initiatives on the organization and the community.
• Technology & Innovation
• Methodology & Approach - Technology, process and people triad adopted by the project in terms information security and risk management. Successful integration of this triad.  
• Project Deliverables
• The success of the project in terms of meeting the timeline, conforming to the allocated budget and achieving the objectives of the Project. Needs to have a clear demonstration of business value and alignment of security strategy with business strategy. 

Information Security Organization of the Year

Market Definition:

• An organization that is a visionary in following Information Security best practices through alignment of security strategy with business strategy
• Effective implementation and adherence to International standards and best practices such as ISMS, COSO, COBIT guidelines
• Effective implementation of Information Security Governance and risk management strategy
• An organization with a strong business presence in Malaysia and a registered business entity
• An organization that has demonstrated leadership in raising awareness of information security and risk over and beyond its core business interests

Measurement Criteria:

The Information Security Organization OTY will be conferred on the organization that has shown exemplary Information Security Governance framework and demonstrated the business value of InfoSec spending in Malaysia. The contenders of this award will be evaluated based on the following key criteria:

• Demonstrated leadership and commitment to Information Security Governance
  • Charter
  • Objectives
  • Achievements
• Innovation & Process Improvement
  • Innovation and rigorous process improvement demonstrated by the organization in terms of information security posture and risk management
• Advocacy
  • How has this organization demonstrated leadership in raising awareness of information security and risk over and beyond its core business interests?
  • Professional associations, Media, Conferences - Contributions beyond its ecosystem
• Key Customer Wins & Achievements
  • Business & Technical Benefits acquired by enterprises investing and transacting with this organization
• Demonstration of a holistic Security Governance
  • People - Management commitment, Awareness, training & education
  • Process - Implementation and process improvement in best practices
  • Technology - Design, Implementation and adherence to a pro-active technology framework

Information Security Visionary of the Year

This Award will have three Sub-categories:

• CXO of the Year
• Academician of the Year
• Student of the Year

Market Definition:

CXO of the Year

• A CIO / CSO / Compliance Officer or Equivalent
• An executive who has been instrumental in driving the Information security vision of his company by aligning security strategy with business strategy
• An executive who actions have had a positive implication, not just on the firm, but on the Industry / Nation
• Someone who is looked up by his peers for having set benchmark in Compliance & Risk management practices

Academician of the Year

• An academician who has been instrumental in driving the Information security vision in the nation
• An executive whose actions have had a positive implication, not just on the institution, but on the Industry / Nation
• Someone who is looked up by his peers for having published research papers, delivered seminars in educating the masses

Student of the Year

• A Student of UG/PG/Doctoral programme who has been instrumental in driving the Information security vision in the nation
• A student whose actions have had a positive implication, not just on the institution, but on the Industry / Nation
• Someone who is looked up by his peers for having published research papers, delivered innovation in the field of information security