 Hey, welcome back everybody. Jeff Frick here with the Cube. We're at Pager Duty Summit in San Francisco at Pier 27. I got to look at it. I've never been here before. It's a cool facility right on the water between Pier 39 and the Bay Bridge. We're really excited to have back. I can't believe it's been like three years. I have Sheila Jordan. She's a CIO of Semantic and last we saw you was, I looked it up. It was Service Now Knowledge 2014. Yes, that's correct. Great to see you. Nice to see you. Thanks for being here. So I think when we first talked you were just starting in your role at Semantic and now you're three years into it. You just got off a panel about leading digital transformation. So just give us kind of a general view of what you've been up to and how has that journey been progressing? Right. Well, it's been quite a journey and I would say that it's been really a transformational journey. So the vision for Semantic really is to become the largest cybersecurity company in the world. And that vision really started two and a half years ago and I'd say that today it's a reality. When I was hired, I was actually hired to in source IT. So we completed that and then we went through the Veritas separation. So we separated the company with Veritas, which was a pretty significant separation. And then subsequently we've acquired four or five companies. We've recently acquired the Blue Coat company, which with that acquisition we get our CEO Greg Clark. And then we also have acquired some other companies on the consumer side. So the LifeLock business is really tied to our consumer digital safety. So we've been very busy and now we've just announced a small divestiture on our website security business. So lots of acquisitions, lots of change, lots of transformation that really we've been bringing into the organization. Right. And you talked on the panel, you know, your job is you got to keep the lights on right and keep things moving. Then you've got this acquisition and in your case, big the split, the divesture. But then you still want to innovate and you talked about, you know, looking at new applications. And I thought a really interesting comment you made was about shadow IT. And shadow IT is not all bad. There's a reason that somebody decided to take that action and really to try to understand why and what was the application requirement. And not just throw it out as unauthorized use. Pretty interesting lesson. Well, a couple of things on that. So working in an engineering organization, you can't ignore when there's apps being used and come up because there's a need. Obviously there's a need that the IT organization isn't providing. And so what is that need and what is that capability that the organization is looking for? Now, the cool thing is we have technology called CASB, which is the cloud access security broker that allows us to look at the entire environment of what both cloud applications of who's using what. So for example, we are sanctioned and our standard is box. But I can look across the organization and see what cloud applications we're using. And if Dropbox appears, that's a question to say no, that doesn't make sense, our standards box. But the reality is that all other applications that might be coming out of the engineering organizations using, we should be asking ourselves why, what capability are we not delivering and how do we bring that into the kind of the IT arsenal. Right, right. And essentially you bring up the box example because another thing you talked about on the stage was your cloud adoption. And so kind of you threw out a number 62%. So I'm not exactly sure what 62% is, but where was it when you got there? What is 62%? What are you measuring? And there's conversations about, you know, direct ROI, but it's a much more complicated formula than just a simple ROI. Yes, it really is. And I would say that first of all, from an IT perspective, I think any CIO has the obligation to help the organization run, change and grow. And for thinking CEOs really understand that technology can be used to not only run the company, that's kind of old school legacy, total cost of ownership cost. Really super important, but it's not only run, but how do you use the technology to change and grow? So when you have opportunities like SAS that allow the CIOs to have, reduce our total cost of ownership, be more agile, have the SAS providers update their products and solutions and all of that, that's kind of on the SAS providers, it makes our job a little easier or different, I'd say. And what I mean by that is that the role of the CIO hasn't changed. Our job is to protect the company's assets, you know, all of our company assets and our data, whether that's customer data, employee data, partner data. And yet five or seven years ago, it was these monolithic applications, it was a private data center and on-prem physical data center, it was massive monolithic PCs, all of that has changed. So the role hasn't changed, but now we've got to think about SAS applications, cloud, infrastructure as a service, public cloud on the infrastructure side. We think about all the applications that are coming in on our mobile devices. We think about IoT, we think about structured and unstructured data. So our role is the same, but how we have to manage that complexity to help our companies and enable our companies run, change and grow, it's just very different. And do you get involved in kind of investigating kind of the second order impacts, you know, kind of the law of unintended positive consequences by going to a SAS application, for instance, or going to some of these platforms that doesn't show up in the simple ROI analysis? No, I agree with that, but I also think it's total cost of ownership, but it's also as important today as agility. You know, everyone wants to get to market faster, everyone wants to be able to be more productive. So it's really the combination of both total cost of ownership and agility. Yeah, you said an interesting thing too, speed is a habit, which is a really interesting quote, because everybody wants speed. Right, absolutely. And there's, we just had another guest that talked about speed, you know, actually does correlate to better software, because it forces you to do that. But everybody wants speed, you know, you got to have it. Right. So the other, you were all over the back, I got notes we could go on all day, I won't go on all day, but somebody talked about what are the limits? What are the limits of applications? And you made a really interesting comment that at the end of the day it's just about the data flow and having a horizontal view from your seat, you may find that there's other ways to skin that cat based on what other people are doing. Right, so I would say one of the reasons I love being in IT is we see horizontally. I mean, there's many functions in the company that see, you know, in their silos, but we get to see horizontally, which means we see the redundancies in an organization and some of the gaps. And so, and as the world changes that it's less about these monolithic huge applications, but more about cloud and SaaS, it really becomes important about the data flow. Where is the data? Not only is it in that, say, Salesforce application, but how does that Salesforce application move to a box and how does that content move from box to say some of the collaboration tools and technology and how does that move and flow. So our role has to be about one, understanding the data flow and really where that exists and how do we enable the entire business, every function to be even more productive, but also how we protect and secure that. So I think it's so exciting that not only are we doing, our view in IT is to deliver that unified end-to-end experience and it's all comes down to the reference architecture approach. But the other part why I'm so excited about Symantec is because we're moving into the notion and the vision of having an integrated cyber defense platform. And I'll explain that for one second because historically the security business has been really fragmented. Point solutions to protect every layer of your architecture. So whether you have a point solution in infrastructure or endpoints or data or at the web gateway layer, whatever that was and what happened is over time our recent report would suggest that a large enterprise has anywhere between 65 and 85 security products in their enterprise, large enterprise. 65 to 85. Security products in their enterprise. Yeah, and so it becomes, yeah, it really does. So one of the visions that Greg Clark and Mike Fay have for our company is why can't we be and deliver this integrated cyber defense platform because it's really connected. We then have products that will live at each layer of the architecture but connected. And so the really super cool thing about that is that the white spaces between those fragmented products really are breathing grounds for the bad guys to come in and stay a while and sit and watch and observe. If you have all that legacy technology and legacy applications, it just becomes a breathing ground. And when you have an integrated cyber defense platform that actually allows it to be much more integrated and really reduce some of the risks and offer our CISOs and our customers a better opportunity to effectively manage their environment. Right, and you guys are a security company but also you're a CIO trying to protect stuff. So you're in a really good spot. Because the other thing that's happening is this radical increase in the tax services, especially as we go beyond cloud and APIs to the edge economy and IoT devices. So as you kind of look at the future both for protecting your own stuff but also helping to deliver the products for your customers, the security space is really, really rapidly evolving. Right, rapidly evolving and becoming even more important. Because again, the flow of data from your Salesforce application to your mobile device to IoT, back to a content solution, back to some of the collaboration, the flow of data is now app to app or SaaS to SaaS, SaaS to device to infrastructure as a service. So it really is the flow of data is so dynamic. And so security becomes just super critical to make sure we're securing that data in motion. Right, right. Yeah, it's crazy. And even if you have the most secure systems, you might have lapses in protocol, which we hear like some of the AWS breaches where somebody didn't configure something right. All right, so I can keep you here all day but I won't. But I want to give you the last word. What's next? And there was a little bit of conversation on the panel. So I want to open that up again as you kind of look forward or kind of cloud things kind of done. The API thing is kind of done as you look forward. What's kind of the next kind of never say five years in this business, next couple of years that you're excited about to move the industry forward. Yeah, I actually think and I know it might be an overused term, but I really think that we're just scratching the surface on AI, artificial intelligence and machine learning. We're using a lot of that in our products today and how we're building our security products. But when I think about corporate IT and I think about how we deliver statistics and information about our business. The transactional reporting on bookings and revenue and forecast and expenses. There needs to be a better, more predictive way of analyzing that data and understanding it in a much more sophisticated AI machine learning that we get our customer insights and we really start to use those insights into building out that kind of knowledge as we move forward. So I look forward to really beginning to really, really have some strategies on AI and machine learning in corporate IT. Well Sheila Jordan, it was great to see you. Hopefully we'll be three years to see you again. CIO of Symantec, I'm Jeff Frick. You're watching theCUBE from PagerDuty Summit in San Francisco. Thanks for watching. Thank you so much.