Alphabet's Google collects a mountain of data on its users, and its algorithms often know what you want before you do.
And it's the job of the company's vice president of security and privacy engineering, Gerhard Eschelbeck, to defend the information users share with it — from family photos to personal emails — against an increasingly sophisticated, determined and well-funded army of hackers.
"We all have to assume that we are under attack," said Eschelbeck. "What really matters is how we can react, respond and take action based on what we see on our networks."
What keeps him awake at night? Among other things, potential vulnerabilities along Google's vast supply chain.
Any number of the many companies whose products interact with Google's could have weak points that expose the tech giant to an attack that it cannot control. It's a lesson that Target and Home Depot, among others, know well.
Google builds a lot of its own products — like its data centers — from the ground up. But like any large company, it also relies on other players in its supply chain to deliver products — from Chromebooks to Android apps — and because of that there is the potential for risk.
"You can't and shouldn't eliminate your supply chain," Eschelbeck said. "[But] It is something we all should be very concerned about."
A second worry is the fact that small- and medium-sized businesses don't always have the resources to improve their own security. At least some of the answer lies in the cloud, which will give those companies access to security tools they themselves could not build or acquire, he said.