Recognizing resilient public service operations
Cybersecurity, Risk & Resilience Leadership
Definition, evidence, and examples of what qualifies for recognition in this category.
Category definition
Leadership that measurably reduces cyber and operational risk, improves readiness, strengthens response, and ensures resilient service continuity under evolving threats.
What judges look for
- Risk reduction tied to measurable indicators
- Improved incident readiness and response maturity
- Resilience planning (BC/DR, exercises, recovery)
- Security governance and accountability
- Balanced enablement that supports mission outcomes
Strong evidence
- Risk register improvements and control coverage metrics
- Incident response performance (MTTD/MTTR) where measurable
- Completed exercises, after-action reports, remediations
- Independent assessments with closure rates
- Policy, training, and adoption evidence
Examples of measurable outcomes
- Reduced high-severity vulnerabilities and faster remediation
- Improved phishing resilience and reporting metrics
- Faster detection and containment times
- Validated recovery objectives through exercises
- Demonstrated reductions in operational disruption
Nominate in this category
Ready to nominate a leader for Cybersecurity, Risk & Resilience Leadership?
Go to nomination form Back to categoriesTip: Include metrics, scope, constraints, and evidence. Avoid general praise without outcomes.