SC Awards Europe 2023

Rewarding outstanding cyber-security products, services and people

The SC Awards Europe aim to recognise and reward products and services that continue to stand out from the crowd, exceeding customer expectations to help defeat imminent threats and cyber-security attacks. 

Our Awards give you the opportunity to differentiate yourself as the best in the industry, whilst also classifying yourselves globally as an award winning company, which in the current climate is invaluable.

It is now more important than ever to focus on the strengths and showcase the astounding cyber-security products, services and people. Highlighting the perseverance of the cybersecurity industry and the success that needs celebrating! 

Remember to connect with us on Twitter using the #SCAwardsEurope and tag us @SCmagazineUK 

START YOUR ENTRY
DOWNLOAD ENTRY KIT
SC Awards 2022

From the editor


More than ever, security directors are at the heart of business and front and centre of rapid organisational management.

As many firms look to adopt a hybrid model, the office perimeter is wider, more porous and demands pervasive zero trust protection. At the same time, hostile actors, ransomware and phishing are rampant.

Today’s CISOs, vendors and security experts face a complex and rapidly evolving maelstrom of threats. In these perilous times, robust technology leadership is critical.

For decades SC Awards Europe, the most prestigious awards in the cybersecurity sector, have sought out and celebrated the very best experts in the field.

This year’s awards – assessed by a new and prestigious panel of judges – seek to inspire, recognise and commend Europe’s tech leaders as they guard our businesses and governments against an increasingly malevolent threat landscape.

We look forward to celebrating your achievements in person live on stage in June 2023.

Alicia Buller
SC Media UK editor

Key Information

Early Bird Entry Deadline - Tuesday 28th February

Standard Entry Deadline - Thursday 16th March

Shortlist Announcement - Thursday 20th April

Awards Ceremony - Tuesday 20th June 2023

Categories

Excellence Awards - Threat Solutions

Best Authentication Technology

Products here provide enhanced security to end-users or devices by offering credentials for access to an authenticator or authentication server. Software and hardware that specialises in the biometric authentication of users is also included here. These solutions may use a tangible device (something you have) for authentication and knowledge (something you know) for authentication. For biometrics, the solution provides identification and authentication using any of the following methods: finger/ thumb print/retinal scan/voice recognition/ hand/palm geometry/ facial recognition, or other unique user identifier.

Best Behaviour Analytics/ Enterprise Threat Detection

These products focus on detecting insider threats, targeted attacks and other fraudulent activities by examining human behaviours, identifying patterns that are then analysed through the application of algorithms and statistical analysis to detect anomalies that may indicate threats of loss or compromise to organisations’ critical data. Offerings in this space are also referred to as  “user-behaviour analytics” products by analyst company Gartner.

Best Cloud Security Solution

These technologies are deployed to protect data and/or applications in a cloud environment. They may also protect the cloud computing infrastructure itself. Cloud computing security concerns are numerous for both providers and their customers – and include security and privacy worries, compliance issues and legal/contractual problems. Solutions or services in this category can provide for the protection of data or applications in the cloud, protection for traffic flowing between companies and their cloud service providers, policy management and encryption capabilities, privileged user access and controls or more. 

Best Communications Security Solution

Products in this category deal with not only a collapsing perimeter, but also consumer-owned and controlled devices being used to get at corporate resources. At a minimum, these devices likely will require strong endpoint security, point-to-point encryption and more. This is a broad category - if your product is used to secure this type of small device/handheld, it may fit. Security can be for data at rest in the device itself, secure access to data in the enterprise, and encryption for data in motion between the enterprise and the device.

Best Data Leakage Prevention (DLP) Solution

Products in this category include those that help organisations safeguard their intellectual property and customers’ critical data persistently – inside and outside the company. Network based and endpoint data leakage prevention products will be considered. Products should prevent data from unauthorised exit from the network, or protect data on the endpoint – whether the endpoint is connected to a network or not. Products typically are policy-driven and should include scanning of all data, regardless of protocol or application leaving the network, and/or keep track of peripherals, such as removable storage and attached to the endpoint – reporting that inventory to a central location or administrator. All entrants should have the capability of being managed by a centralised administrator. Those products considered part of this category include: network DLP products, which are typically gateways; those products protecting only endpoints; and hybrid products that operate at both the gateway to the network and at the endpoint. Specifically for endpoint DLP, traffic should be monitored and encryption should be available.

Best Email Security Solution

Email security addresses the ability to exchange email messages with assurance, as well as the ability to filter email messages based on content, source or other criteria. Solutions should ensure the privacy of sensitive messages, limit the repercussions of email forgery, and manage other aspects of safeguarding email within the organisation. These products are enterprise-centric and should have, but are not required to have, some form of centralised management. They may include spam filters, junk mail filters, malware filters, unauthorised content (sometimes called “extrusion protection” or “data leakage protection”), phishing and other types of undesirable content. However, these are not simply anti-spam filters. These email security products should be evaluated on their effectiveness, manageability, non-intrusiveness, ease of use and other factors that impact the implementation of this type of product in the enterprise environment. They typically provide features such as email encryption, digital signatures, automatic shredding of messages and attachments, and more.

Best Endpoint Security

While the emphasis has moved from protect to detect, its not time to take down the barriers, and strength in depth re.ch still needs endpoint protection. Best Identity Management Solution Products in this category address the identity management lifecycle in an enterprise environment, including password management, user provisioning and enterprise-access management.

Best Identity Management Solution

Products in this category address the identity management lifecycle in an enterprise environment, including password management, user provisioning and enterprise-access management.

Best Incident Response Solution

The faster and more effectively you respond to an incident, the shorter time you give attackers to steal from or do damage on your systems. But care also has to be taken to preserve digital forensic evidence in the event of criminal action. While IR is led by policies, procedures and training, there are tools and organisations that can help, from specialist services in the event of a crime, to complete outsourced teams. We are looking for those services and tools that stand out as a must have.

Best IOT/IIOT Security Solution

One of the biggest concerns for the security sector is the truly exponential growth of the Internet of Things, and the Industrial Internet of Things, increasing the attack surface to include everything from previously isolated industrial processes to everyday consumer appliances. Anything that connects to the internet is potentially hackable, so what solutions are there that organisations and their key employees can deploy to minimise and mitigate the threat posed by myriad connected devices?

Best Managed Security Service

These offerings provide a turnkey approach to an organisation’s primary technical security needs. These offerings can either be a co-located device at the client organisation facility, or can be a completely outsourced solution where the application to be protected would reside at the vendor’s data centre.

Best Privileged Access Management

Privileged users can have the keys to the kingdom. So impersonating them and taking control of their access is a key target for attack groups, from criminals to nation states. Hence ramped up versions of identity and access control, network segmentation tools, and approaches to outsourcing and third parties are appropriate here, where they may have been considered too cumbersome for the average user. Yet these, often senior, users are just as resistant to friction as any other, so how do you reduce reliance on trust while still letting people do their job?

Best Regulatory Compliance Tools and Solutions

There have long been regulatory compliance tools, but they have been thrust to the fore in the cyber-security sphere in the wake of GDPR, though this category encompasses other regulations and compliance requirements relevant to cyber-security and GRC teams. Solutions can be software, algorithms, or other innovative approaches that aid companies so that they know their compliance requirements, or prevent, identify, or remediate non-compliance.

Best SIEM Solution

Security information and event management (SIEM) tools are used to collect, aggregate and correlate log data for unified analysis and reporting. Typically, these tools can take logs from a large number of sources, normalise them and build a database that allows detailed reporting and analysis. While forensic analysis of network events may be a feature of a SIEM, it is not the only feature, nor is it the primary focus of the tool.

Best Threat Intelligence Technology

Contenders in this category should help cyber-security teams research and analyse cyber-crime and other threat trends and any technical developments being made by those engaging in cybercriminal activity against both private and public entities. These technologies facilitate the understanding and contextual relevance of various types of data, often an overwhelming amount, collected from internal network devices, as well as from external sources (such as open source tools, social media platforms, the dark web and more). Armed with these more digestible analysis on risks and cyber-threats, cyber-security teams should be able to enhance their tactical plans preparing for and reacting to an infrastructure intrusion prior to, during and after an attack, ultimately improving their overall security posture so their long-term security strategy is more predictive rather than simply reactive.

Best Use of Machine Learning/AI

From big data analysis, dealing with millions of logs, to cutting edge analytics, cyber security is moving closer to Artificial Intelligence and driving potential use-cases for deployment. Machine learning should be more than automating manual tasks, but should apply logic to infer conditions and courses of action; AI is currently referring to machine learning from unstructured data, and while other definitions will be considered, judges will be alert to hype exceeding reality in this cutting edge area. 

Best Vulnerability Management Solution

These products perform network/device vulnerability assessment and/or penetration testing. They may use active or passive testing, and are either hardware or software-based solutions that report vulnerabilities using some standard format/reference.

Excellence Awards - Industry Leadership

Best Customer Service

Support as well as service of products and services sold are critical components of any contract. For many organisations that seek out help from information security vendors and service providers, the assistance they get from customer service representatives is crucial to the deployment, ongoing maintenance and successful running of the technologies they’ve bought and to which they have entrusted their businesses and sensitive data. For this category, we’re looking for vendor and service providers that offer excellent support and service – the staff that fulfilled its contracts and maybe even goes a little beyond them to ensure that organisations and their businesses are safe and sound against the many threats launched by today’s savvy cybercriminals.

Best Emerging Technology

What cutting-edge technologies are bursting onto the scene to address the newest information security needs facing organisations with some innovative capabilities? This new category welcomes both new vendors and old pros looking to provide products and services that look to help shape the future by addressing fast-evolving threats through the creation of these types of offerings. The product must have been launched not more than 18 months prior to entry, and entries should have some customers available who can act as references. The company should also have an office in UK/ Europe and provide ready support and service to customers in the UK/Europe.

Best Enterprise Security Solution

This includes tools and services from all product sectors specifically designed to meet the requirements of large enterprises. The winning solution will have been a leading solution during the last two years, having helped to strengthen the IT security industry’s continued evolution.

Best Risk Management

These products measure, analyse and report risk, as well as enforce and update configuration policies within the enterprise, including but not limited to network, encryption, software and hardware devices. Entrants’ products should be enterprise-centric; collect data across the network; report associated risk, endpoint configuration, enforcement, auditing and reporting; provide remediation options (but are not exclusively patch management systems); and, finally, offer centralised reports based on regulatory requirements and local policies.

Best Security Company

Nominees should be the tried-and-true, longer-standing companies which have been offering products and services to customers for at least three years. Nominations can come from all sectors. Areas that will be accounted for in the judging process include: product line strength, customer base, customer service/support, research and development, company growth and solvency, innovation and more.

Best SME Security Solution

This includes tools and services from all product sectors specifically designed to meet the requirements of small- to mid-sized businesses. The winning solution will have been a leading solution during the last two years, having helped to strengthen the IT security industry’s continued evolution. 

Professional Awards

Best Professional Training or Certification Programme

This category targets companies and organisations that provide end-user awareness training and/or certification programmes for those looking to ensure that its employees are knowledgeable and supportive of IT security and risk management plans. It also considers training and certification organisations that provide programmes for end-user organisations’ IT security professionals to help them better address components of their IT security and risk management plans, such as secure coding, vulnerability management and incident response/computer forensics. Programmes usually entail training and education or examination/ assessment by outside industry experts who may hold various seminars, hands-on classes, etc. and recommend additional activities that further support training sessions. Entrants should include companies and organisations that offer such training without the requirement or need to secure any particular professional certification, as well as certification programmes that may or may not provide training. Programmes typically are defined as professional industry groups offering certifications to IT security professionals wishing to receive educational experience and credentials. Entrants can include organisations in the industry granting certifications for the training and knowledge they provide.

Best Security Team

Contenders should only include teams from end-user companies that have executed and are managing exceptional and strong security programmes, which they have built from virtually nonexistent ones. The team should have successfully established and implemented an integral and/or innovative/ cutting-edge component of their security programme, and should have spearheaded various areas of support for its success, such as strong end-user awareness training, good configuration management, and more. Please note: Professionals who work for an IT security vendor, IT reseller or IT consultancies are not eligible for this category. However, vendors may nominate the team at an end-user customer and SC will follow up to confirm that they wish to enter and submit an application.

Cybersecurity Newcomer of the Year

The Cybersecurity Newcomer of the Year award is a new category that has been introduced to highlight and commend the cyber generation of the future. This award is focused on acknowledging those who are bringing fresh innovation, ideas and influence to the infosec sector. FREE OF CHARGE. 

Woman of Influence Award

In theory cyber-security is a results-oriented industry where no one notices your age, sex, background or other characteristics not relevant to your ability to deliver. But in reality there are obstacles in society, education, companies and organisations that have resulted in women representing less than 20% of the industry. This award recognises the women leaders who are paving the way in the industry and challenging the status quo. This award will recognise women for their professional success, community involvement and leadership roles in the fields of Information Security, Risk Management and Privacy.

Professional Awards: Not For Entry

CSO / CISO of the Year

This award commends the standout champions who have led best-in-class programmes of IT security. Whatever the company size that they represent, they have demonstrated to peers and stakeholders at every level, the importance of sound security strategy and implementation. Their planning and execution of a balanced tech and people-led approach will be demonstrably clear from projects and delivery. For this award, a carefully curated shortlist of exemplary CSOs/ CISOs will be sent to the judge by our editorial team. The judges will choose one standout winner from this list.

Editor's Choice

This coveted award is chosen by the editor alone, and commends a trendsetting, authoritative and outstanding company who has led the charge in reshaping and innovating security strategy in a changed post-pandemic world.

DOWNLOAD ENTRY KIT

Chair of Judges

Richard Starnes

Chief Cybersecurity Strategist, Capgemini

At Capgemini, my position is as the Chief Security Strategist, thought leader and trusted source, working closely with stakeholders to provide an information security management program appropriate to the risk appetite and needs of the business.

Also, as a Delivery CISO, I manage the strategic and operational cybersecurity of one of our largest Critical National Infrastructure (CNI) clients. I have twenty plus years of experience as an information security professional, serving in executive and senior management positions, in the US and the UK.

My responsibilities have included the development and implementation of global information systems security management programs aligned with ISO 27001, and NIST 800 series, among others. I hold a Master of Science in Information Security from Royal Holloway, University of London and was a senior instructor for the (ISC)² CISSP CBK seminar.

"No trophy shelf is complete without an SC Award. That is why, every year, vendors and professionals alike come together in London to celebrate the best of the best at the SC Awards. The judges panel is populated by well known industry practitioners and executives, who view the products from both a strategic and operational view, encompassing the whole lifecycle. This makes an SC award a powerful statement, not only about the capabilities of the product, but about the company itself."

Judging the SC Awards 2023

Nominations to get involved in the SC Awards 2023 are welcome from across the industry, either for yourself or a colleague using the link below. Our aim is to give as many diverse voices a chance to determine the results of this industry-leading event. Start your nomination today!

NOMINATE YOURSELF OR A COLLEAGUE

What can the SC Awards Europe offer your business?

  • Employee motivation - A fantastic way to recognise all the hard work of your team - make sure to get their thoughts and ideas when you are putting your entries together to let them know the value of all the work they have been doing. 
  • Support innovation in the industry - When writing your entries it allows you to evaluate your work from a different perspective, as well as introduce and publicise your new ideas to the industry - benchmarking yourself against your competition and making your work stand out. 
  • Cement your relationships - In the current climate, it is now more important than ever to focus on the positives on what your teams have been doing to combat an unprecedented challenge. Showcase and champion the astounding achievements and raise morale!

  • Marketing opportunities - The SC Awards Europe have truly established themselves as the most prestigious awards in the cyber-security sector. Entering the Awards gives you the opportunity to differentiate yourself as the best in the industry and get credibility from the leading brand in the profession - SC Media UK. 
  • Have your work judged by the best - Our prestigious judging panel consists of industry thought leaders who will review and determine what products, companies and people are exemplifying best practice and the highest standards the industry can offer. 
  • Share your work with the world - If shortlisted, benefit from exposure for your projects on the awards website. Being able to classify yourselves globally as an award winning company is invaluable.

SC Media UK

SC Media UK is the leading information resource for cyber-security professionals in the UK and Europe, who need knowledge on IT security strategies, data protection best practices, government regulations and current IT security technologies.

Well-regarded in the industry for providing up-to-date news, comprehensive analysis, cutting-edge features, expert contributions and the best, most extensive collection of product reviews in the business, SC has readily advanced its editorial offerings over time to supplement its award-winning print and digital media.

VISIT SC MEDIA WEBSITE

Copyright © 2022 Haymarket Media Group Limited. All Rights Reserved.