Vulnerabilities / Threats
12/20/2012
10:58 AM
50%
50%

BestBuy.Com Chief Leaves For Symantec

Former Starbucks CIO and 2011 InformationWeek Chief of The Year Stephen Gillett heads to Silicon Valley.

After less than nine months on the job as head of Best Buy's online operation, Stephen Gillett has left the struggling retailer to take a senior position at Symantec, which is in the midst of its own reorganization as it tries to adapt to changes in the security software market.

Symantec named Gillett executive VP and COO on Wednesday. His responsibilities will include oversight of the company's IT, marketing, and communications operations. "Stephen is the perfect fit for the direction we are taking Symantec," said Steve Bennett, Symantec chairman and CEO, in a statement. "He has been deeply involved in the transformation of a number of high-profile companies at the executive level and is highly respected in the CIO community worldwide."

Gillett has been on Symantec's board since January, and will relinquish that position. He is a former CIO of Starbucks, and was named InformationWeek's Chief of The Year for 2011.

[ Where is Symantec headed next? Read Symantec Security Has Become Forgotten Child, Critics Say. ]

His departure from Best Buy was unexpected and seen as somewhat of a surprise, given that he was brought in as recently as March to bolster and add credibility to Best Buy's e-commerce efforts. Best Buy has been struggling to convert visits to its website into sales. It's also challenged by the fact that consumers are increasingly using its stores to check out the latest gadgets, while making actual purchases online at discounters like Amazon.

Gillett's departure marks the latest high-level exit at Best Buy. CEO Brian Dunn left in April after allegations of an inappropriate relationship with a female employee. He was replaced by former Vivendi Universal Games CEO Hubert Joly. Joly recently brought in his own team of senior executives, a fact that some observers believe contributed to Gillett's departure.

"I will miss the wonderful teams at Best Buy," Gillett tweeted on Wednesday. "Our time together was short, but our friendships and experiences lifelong. Thank you."

Gillett will have his work cut out at Symantec. The company's stock was downgraded earlier this month by Standpoint Research, amid concerns about increased competition. Microsoft is beefing up free security software for Windows PCs, as well as enterprise offerings like EndPoint. Symantec is expected to unveil a new strategic plan in January.

"Great companies are defined by their market position, customer base, brand awareness, the quality of their products and by the type of industry they're involved in," said Gillett, in a statement. "Symantec is strong in all of these areas. I look forward to working with everyone at Symantec to help the company achieve its full potential." Gillett did not immediately respond to a request for further comment.

Tech spending is looking up, but IT must focus more on customers and less on internal systems. Also in the new, all-digital Outlook 2013 issue of InformationWeek: Five painless rules for encryption. (Free registration required.)

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading, January 2015
To find and fix exploits aimed directly at your business, stop waiting for alerts and become a proactive hunter.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-7402
Published: 2014-12-17
Multiple unspecified vulnerabilities in request.c in c-icap 0.2.x allow remote attackers to cause a denial of service (crash) via a crafted ICAP request.

CVE-2014-5437
Published: 2014-12-17
Multiple cross-site request forgery (CSRF) vulnerabilities in ARRIS Touchstone TG862G/CT Telephony Gateway with firmware 7.6.59S.CT and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) enable remote management via a request to remote_management.php,...

CVE-2014-5438
Published: 2014-12-17
Cross-site scripting (XSS) vulnerability in ARRIS Touchstone TG862G/CT Telephony Gateway with firmware 7.6.59S.CT and earlier allows remote authenticated users to inject arbitrary web script or HTML via the computer_name parameter to connected_devices_computers_edit.php.

CVE-2014-7170
Published: 2014-12-17
Race condition in Puppet Server 0.2.0 allows local users to obtain sensitive information by accessing it in between package installation or upgrade and the start of the service.

CVE-2014-7285
Published: 2014-12-17
The management console on the Symantec Web Gateway (SWG) appliance before 5.2.2 allows remote authenticated users to execute arbitrary OS commands by injecting command strings into unspecified PHP scripts.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Join us Wednesday, Dec. 17 at 1 p.m. Eastern Time to hear what employers are really looking for in a chief information security officer -- it may not be what you think.