John W. Graham

Global Chief Information Security Officer EBSCO Industries

EBSCO is a diverse organization with many businesses, but it operates as one company. EBSCO manufactures steel joists, LED signs, merchandising displays, fishing lures, and three-ring binders. EBSCO is the leading provider of discovery services, databases, and other information resources and services for libraries worldwide. EBSCO is also a real estate developer, a producer of promotional products, and an insurance agency. As the Global Chief Information Security Officer, John provides leadership across a diverse portfolio of businesses balancing risk with controls.

Before joining EBSCO, John was the Global CISO for Jabil. Jabil is the leading provider of worldwide electronic manufacturing services and solutions. John provided strategic leadership to ensure data protection for comprehensive electronics design, production and product management services provided by Jabil’s 150,000+ employees. Jabil’s footprint extends across 90 countries in support of clients in the aerospace, automotive, computing, defense, digital home, energy, healthcare, industrial, instrumentation, lifestyles, mobility, mold, networking, packaging, peripherals, storage, telecommunications, and wearable technology industries. 

Prior to joining Jabil, John was the Vice President of Global Information Assurance and Risk with the First Data Corporation and represented First Data on the Payment Card Industry (PCI) Standard Council Board as a member of the board of Advisors. First Data is a global technology and payments processing leader, serving more than six million merchant locations, thousands of card issuers, and millions of consumers worldwide. 

Before joining First Data, John served as a technology consultant executing global programs for a F50 enterprise and several global service providers.  He also was part of several large-scale acquisitions and worked collaboratively with business partners in the retail, supply chain, private equity, technology, communications, healthcare, and financial industries.  John has a deep technical background that includes enterprise architecture, cloud computing, networking, IPS, relational database, and Unix. He prides himself on balancing business strategy with appropriate controls.

His professional certifications have included CISA, CISM, CISSP, CRISC, which complement more than 20 years’ experience in technology. He balances this with a Bachelor of Business Administration degree in marketing from Georgia Southern University, and a Master of Science in Information Assurance (MSIA) from Norwich University in Northfield, Vermont.