Outstanding Chief Information Security Officer (CISO)
Dr. Mohamed Al-Kuwaiti has transformed the UAE’s cybersecurity landscape, earning 16 Guinness World Records and receiving prestigious awards for his innovative leadership. A globally recognised figure, he delivered over 130 keynote speeches in 2024 and hosted major events while spearheading impactful initiatives like the CSC Cyber Pulse, Women in Cyber, and the National Youth Cyber Awareness Program.
Judges were impressed by Dr. Al Kuwaiti’s significant impact across his region, his innovative leadership in Cyber, and his ability to drive change across many stakeholders. Under his leadership, the UAE moved to #1 in the Global Cybersecurity Index, with advanced initiatives such as AI-driven solutions, a mobile SOC, and a DDoS program strengthening infrastructure protection. Judges also highlighted his global collaboration efforts, including leading international coalitions and signing dozens of MoUs, as well as his commitment to educating millions and achieving Guinness World Records for cyber awareness.
Outstanding Cyber Security Consultant
White Hat, part of EPAM Systems, is a global leader in offensive security and cyber intelligence, specialising in proactive defence strategies using AI-driven frameworks and proprietary technology. Trusted by organisations in finance, healthcare, and critical infrastructure, White Hat delivers comprehensive services from consulting to complex security transformations, setting new benchmarks in building adaptive and resilient security cultures.
Judges recognised White Hat for leading in innovation, with AI-driven security, an attacker-focused approach, and a proprietary platform delivering demonstrable client impact.
Outstanding Customer Service Initiative
NormCyber is a cyber-risk specialist offering tailored cybersecurity and data protection solutions to mid-market and enterprise organisations, with a customer-first, flexible approach. Their Smartbloc dashboard provides real-time cybersecurity visibility, empowering businesses with actionable reporting and expert support to improve resilience and drive sustained growth.
Judges highlighted clear evidence of strong and innovative customer service performance. The Smartbloc platform and Focal Analyst were praised for delivering excellent customer service, with the personal engagement of the Focal Analyst enhancing the customer experience and driving meaningful improvements.
Outstanding Cyber Security Professional
With over 12 years of IT and cybersecurity experience, Avinash specialises in designing, implementing, and troubleshooting network and security infrastructures, with proven leadership in vulnerability management, compliance audits, and incident response. Developed innovative security products like Pepper Patch, Celery Trap, and Pepper Fortress, while also contributing to the cybersecurity community through published journals on automation and patch management.
Judges were impressed by Avinash’s strategic approach to embedding cybersecurity into the fabric of Comerica Bank’s operations, significantly fortifying its defences against cyber threats. His efforts in enhancing data protection and fraud prevention were particularly commendable, reflecting his expertise and proactive leadership. Judges also highlighted his role in spearheading significant initiatives across high-profile organisations.
Outstanding Cyber Security Training/Awareness Initiative
Monzo have turned Security Awareness into an engaging and interactive experience, blending fun and creativity through events like October Security Festivals and security-themed musicals. By leveraging CultureAI insights, gamification, and innovative formats like intergalactic escape rooms and podcasts, Monzo have made security learning memorable and integral to their company culture.
Judges praised Monzo’s highly innovative training and awareness programme, which uses AI, gamification, and the “Ask Chat” feature to make security messaging engaging, memorable, and accessible. Their people-first approach prioritizes behavioural security principles, ensuring training is relatable and tailored to real-world risks like phishing, insider threats, and social engineering. With a measurable impact and sustainable implementation, this initiative is truly transforming security awareness.
Outstanding Police/Law Enforcement Initiative
Police Scotland’s Cybercrime Harm Prevention team collaborates with public, private, and voluntary sector partners to provide cybercrime prevention, mitigation, and resilience advice to individuals and businesses. Led by PC Mark Gordon, who has 17 years of police service, this unique initiative was devised and developed by him in 2021.
Judges commended this was an innovative and well-targeted initiative for aligning with broader policing objectives to tackle Violence Against Women & Girls. Providing cybersecurity and awareness training in settings outside of school, where young people feel confident and engaged, is an effective approach to delivering key online safety information. With a methodical approach to a serious issue and growing interest in its continuation, this programme is making a meaningful impact in highlighting cybersecurity’s relevance to everyday life.
Outstanding New Cyber Security Product
Punk Security, DevSecOps product offers an innovative yet simple solution to help businesses implement continuous security evaluation and “shift left” in their software development process. Their human-centric approach ensures that businesses of all sizes can effectively realise the value of continuously evaluating software changes.
Judges praised the product for its innovative approach to systematising code checks and assessing risk, making it a valuable tool in today’s fast-moving world. With clear evidence of client impact and tangible benefits.
Outstanding Cyber Security Team
The DFIR Team is highly regarded for their consistent support, clear communication, thorough forensics, and commitment to colleague development, contributing significantly to LBG’s security efforts. Their active participation, comprehensive threat hunts, and focus on continual improvement make them an essential part of the organisation’s security community.
Judges praised the Digital Forensics & Incident Response Team at Lloyds Banking Group for their high performance in driving cybersecurity within a large financial institution. Their well-articulated approach to managing fraud, combined with a clear and effective threat response strategy, has strengthened the bank’s resilience and influenced industry best practices. Judges also highlighted their strong leadership, collaboration with law enforcement and business units, and continuous improvements in forensic processes and training, commending their ability to maintain system integrity under evolving cyber threats.
Outstanding Young Cyber Security Professional
Sophia McCall is a highly accomplished cybersecurity professional, currently Strategic Threat Intelligence Team Lead at NCC Group, specialising in intelligence-led security solutions and regulatory frameworks like CBEST and TIBER-EU. A passionate advocate for diversity and inclusion, she co-founded Security Queens and is recognised with multiple accolades, including Most Inspiring Women in Cyber, shaping the future of cybersecurity through leadership and innovation.
Judges were impressed by Sophia’s inspiring achievements at such a young age, highlighting her dedication to inclusivity in the cyber sector and broader awareness. Her contributions extend beyond her company to the wider community through mentoring, volunteering, and innovation. With impressive technical qualifications and experience in complex cyber assurance services like CBEST, she is making a significant impact on the industry while helping to develop future talent through her work with CyberFirst.
Lifetime Achievement
Gary has had a distinguished 35-year career in cybersecurity, starting as a developer and later excelling in information security, business continuity, and data protection. He co-founded ‘Consultants Like Us’ in 2021, after building and selling a successful cybersecurity consultancy, and has supported over 300 businesses in achieving ISO27001 while contributing to the industry through speaking engagements, publishing books, and promoting cybersecurity education, including helping therapists safeguard sensitive data.
Judges recognised Gary’s substantial impact on defining and driving cybersecurity standards, with a thoughtful and considered approach to helping others achieve security and resilience. His influence spans multiple sectors through publishing, stakeholder engagement, and global speaking events, encouraging those outside the ‘cyber bubble’ to prioritise cybersecurity. With a long and distinguished career dedicated to industry advancement and education, he is a worthy recipient of this award.