Mexico has introduced a new National Cybersecurity Plan, aiming to mitigate top threats such as organized crime and geopolitical risks, as well as emerging artificial intelligence threats, over the remainder of the decade1. The plan's implementation is crucial, given the frequent cyber incidents affecting federal, state, and local institutions, which have led to data theft, ransomware attacks, and service disruptions. The proposed plan seeks to establish a more coordinated national response to reduce these risks. Key aspects of the plan include addressing sector-specific risks, such as those faced by Intel, which was recently targeted by ransomware. This highlights the importance of operational resilience planning in preventing and responding to cyber threats. The plan's success will depend on its ability to effectively coordinate efforts across different institutions and sectors, making it a critical development for cybersecurity in Mexico, and a significant step towards enhancing the country's overall cybersecurity posture, so what matters most to practitioners is the plan's potential to serve as a model for operational resilience planning in other countries.