“The Sony attack was a wake-up call to most of us practitioners,” says John Graham, referring to the 2014 breach of Sony Pictures computer systems when hackers stole a rich trove of confidential documents and posted them online. Malicious and destructive intent increasingly characterizes cyberattacks. And the victims of these attacks could be random: “The [cybersecurity] game has changed,” says Graham, “with what I would call drive-by’s, where the attacks are not targeted specifically at us as a company.”
Graham is chief information security officer (CISO) at Jabil, provider of advanced manufacturing solutions to technology and electronics companies worldwide. Before joining Jabil in 2013, Graham has served in senior cybersecurity, risk management, compliance, and IT management positions at First Data Corporation, McKesson, Capgemini Consulting, SunTrust Banks, and HP. Last year, Graham was selected as the Information Security Executive (ISE) of the Year Award winner for the ISE Southeast Region.