That’s crucial for Graham, whose lean team of 42 workers manage IT governance, risk and compliance, as well as business continuity and disaster recovery for 101 offices worldwide. Graham, who has managed risk in roles at First Data and SunTrust Banks, says financial services firms have hundreds of staff dedicated to cybersecurity. Whether a staff runs large or small, Graham says it’s possible for companies to move all of their cybersecurity protections to the cloud, saving the time and trouble of managing every device or security tool.
Standardizing on cloud security
“I honestly think that that’s where it’s headed, and we’re doing as much of that as we can right now,” he says. He adds that there’s nothing that he wouldn’t consider putting in the cloud from a cybersecurity perspective. Jabil is currently considering purchasing from Zscaler cloud firewall services to secure its perimeter, as well as protection for when it acquires new companies. He says Zscaler routinely provides Jabil a six-to-eight week notice when it is performing an upgrade to its services.
Moving to a cloud model, of course, presents unique challenges. Some clients that entrust Jabil with sensitive intellectual property require documented evidence of cybersecurity protection, forcing the company to request the information from its cloud partners, such as Zscaler or Google, for which it relies on collaboration and productivity apps. “Building that evidence in a cloud model is something that we’re working towards.”
Sign up for CIO Asia eNewsletters.