Checklist

Judging Criteria & Checklists

Company Categories

Cybersecurity Solutions Provider of the Year

Checklist

Check Required Information
(Documents to be either uploaded or brought physically for inspection during the interview)
Application Submitted to through the Microsoft Form
Authorization Letter uploaded or sent to digit@isaca.lk
Payment Confirmation
References letters from at least 3 satisfied clients
Company Logo uploaded or sent to digit@isaca.lk
Company Certifications - certifications or accreditations has your company obtained to demonstrate its commitment to cybersecurity best practices and standards
Employee Certifications - information on the certifications obtained by key personnel within your organization, particularly those responsible for cybersecurity-related roles and responsibilities
Evidence of successful deployments and quantifiable impact on client security posture
Any brochures / presentations that indicates innovative aspects of your solutions and approach to cybersecurity
Customer service and support approach, highlighting unique practices or features
Evidence of industry recognition, such as media mentions, analyst reports, or awards received.

Interview Preparation Guide

Check Presentation Preparation Tips
Read about Digital Trust, click here
Select a Team of Up to Five Representing Your Best Talent for the Evaluation
Prepare for 20 minutes Presentation
Prepare for 15 minutes Q&A / Discussion with the Judging Panel

Evaluation Criteria

% Area of Evaluation Sub Areas
10% Company Overview
  • Market Presence
  • Financial Information
  • Products / Services
  • Shareholding Structure
20% Certifications
  • Company Certifications
  • Employee Certifications
70% Solutions & Innovations
  • Effectiveness and Client Focus
  • Market Impact and Reputation

Technology Resilient Company of the Year

Checklist

Check Required Information
(Documents to be either uploaded or brought physically for inspection during the interview)
Application Submitted to through the Microsoft Form
Authorization Letter uploaded or sent to digit@isaca.lk
Payment Confirmation
Company Logo uploaded or sent to digit@isaca.lk
Annual Reports 2021 - 2023 (if any)
Employee Certifications - information on the certifications obtained by key personnel within your organization, particularly those responsible for cybersecurity-related roles and responsibilities

Interview Preparation Guide

Check Presentation Preparation Tips
Read about Digital Trust, click here
Select a Team of Up to Five Representing Your Best Talent for the Evaluation
Prepare for 7 minutes Presentation
Prepare for 8 minutes Q&A / Discussion with the Judging Panel
Prepare the Presentation according to the given template
Make sure to ready with the Justifications your selection of CMMI Maturity Level
  • Maturity Level 1: Initial Unpredictable and reactive.
    • Work gets completed but is often delayed and over budget.
  • Maturity Level 2: Managed Managed on the project level.
    • Projects are planned, performed, measured, and controlled.
  • Maturity Level 3: Defined Proactive, rather than reactive.
    • Organization-wide standards provide guidance across projects, programs, and portfolios.
  • Maturity Level 4: Quantitatively Managed Measured and controlled.
    • Organization is data-driven with quantitative performance improvement objectives that are predictable and align to meet the needs of internal and external stakeholders.
  • Maturity Level 5: Optimizing Stable and flexible.
    • Organization is focused on continuous improvement and is built to pivot and respond to opportunity and change. The organization’s stability provides a platform for agility and innovation.

Evaluation Criteria

% Area of Evaluation Sub Areas
30% Direct and Monitor Governance, Risk Management, Measurement
20% Culture Values, Ethics, Behaviors
5% Architecture Technology Infrastructure, Design Principles
7% Enabling and Support Resources, Processes, Skills
25% Emergence Collaboration, Innovation, Ecosystem Dynamics
13% Human Factors Awareness, Skills, Behaviors

Cyber Resilient Government Organization of the Year

Checklist

Check Required Information
(Documents to be either uploaded or brought physically for inspection during the interview)
Application Submitted to through the Microsoft Form
Authorization Letter uploaded or sent to digit@isaca.lk
Company Logo uploaded or sent to digit@isaca.lk
Annual Reports 2021 - 2023 (if any)
Employee Certifications - information on the certifications obtained by key personnel within your organization, particularly those responsible for cybersecurity-related roles and responsibilities

Interview Preparation Guide

Check Presentation Preparation Tips
Read about Digital Trust, click here
Select a Team of Up to Five Representing Your Best Talent for the Evaluation
Prepare for 15 minutes Presentation
Prepare for 15 minutes Q&A / Discussion with the Judging Panel

Evaluation Criteria

% Area of Evaluation Sub Areas
25% Preparedness People, Process & Technology
15% Adaptability
  • Adaptability to Technological Changes
  • Continuous Improvement Initiatives
10% Collaborativeness Supplier and Vendor Resilience, Employee Feedback and Involvement
20% Trustworthiness & Responsible Customer Communication during Disruptions, Regulatory Compliance
30% Governance Strategic Integration, Measurement and Performance, IT Strategy & Alignment, Implementation and Progress, Forward-Looking Insights



Individual Categories

CISO of the Year

Checklist

Check Required Information
(Documents to be either uploaded or brought physically for inspection during the interview)
Application Submitted to through the Microsoft Form
Job Role Verification Letter uploaded or sent to digit@isaca.lk
Payment Confirmation
Portrait Photograph uploaded or sent to digit@isaca.lk
Educational Qualification Documents
Experience Related Documents
Evidence or Examples of Your Contributions to the GRC, Privacy, Information Systems, or Cybersecurity Community
Evidence of Your Awards or Recognitions

Interview Preparation Guide

Check Presentation Preparation Tips
Read about Digital Trust, click here
Prepare for 7 minutes Presentation
Prepare for 8 minutes Q&A / Discussion with the Judging Panel
Focus your presentation on key evaluation points

Evaluation Criteria

% Area of Evaluation Sub Areas
25% Educational Qualifications
  • Academic Qualifications
  • Professional Qualifications
30% Experience
  • CISO
  • IT & Related
  • Managerial
25% Achievements
  • Awards and Recognition
  • Contribution to Community
20% Leadership
  • Self Initiatives
  • Successful Implementations
  • Influence & Persuasion

Information Security Officer of the Year (Public Sector)

Checklist

Check Required Information
(Documents to be either uploaded or brought physically for inspection during the interview)
Application Submitted to through the Microsoft Form
Job Role Verification Letter uploaded or sent to digit@isaca.lk
Portrait Photograph uploaded or sent to digit@isaca.lk
Educational Qualification Documents
Experience Related Documents
Evidence or Examples of Your Contributions to the GRC, Privacy, Information Systems, or Cybersecurity Community
Evidence of Your Awards or Recognitions

Interview Preparation Guide

Check Presentation Preparation Tips
Read about Digital Trust, click here
Prepare for 15 minutes Presentation
Prepare for 15 minutes Q&A / Discussion with the Judging Panel
Focus your presentation on key evaluation points

Evaluation Criteria

% Area of Evaluation Sub Areas
25% Educational Qualifications
  • Academic Qualifications
  • Professional Qualifications
15% Experience
  • ISO
  • Number of Years in Managerial Roles
  • Other Relevant Experience in GRC, Privacy & Information / Cybersecurity/ IT
20% Achievements
  • Awards and Recognition
  • Contribution to Community
40% Leadership
  • Self Initiatives
  • Successful Implementations
  • Influence & Persuasion