Ensuring a secure supply chain for Google in Asia Pacific

Securing the integrity of its(hardware) supply chain is and will continue to remain a critical focus for Google. Acting as Google’s trusted security partner, NTT helped to assess and uplift the security of their APAC-based manufacturing partners. With improved governance and oversight, Google is able to maintain the integrity of product build processes and more importantly, improve protections for their products and users.

Client profile

Google LLC is an American multinational technology company focusing on online advertising, search engine technology, cloud computing, computer software, quantum computing, e-commerce, artificial intelligence, and consumer electronics. It has been referred to as "the most powerful company in the world” and one of the world's most valuable brands due to its market dominance, data collection, and technological advantages in the area of artificial intelligence.


Addressing supply chain cyber risk

As one of the world’s largest technology and manufacturing companies, Google is subject to a high level of internal and external cyberthreats to its supply chain, given their brand value and global presence. Google needed to strengthen their overall cybersecurity posture and independent assurance on the cybersecurity stature of its contract manufacturers across the Asia Pacific region. These challenges align with the findings from NTT’s Global Threat Intelligence Report 2022, where we see a higher adversarial focus across critical infrastructure, manufacturing and supply chains.


Working with a trusted advisor

In Phase 1, the NTT Singapore team supported Google in enhancing its supply chain security framework.

In Phase 2, we proposed to leverage their framework to assess the cybersecurity capabilities and compliance of its contract manufacturers based in APAC.

These partners manufacture Google’s consumer hardware devices including but not limited to Pixel, Wearables (Fitbit and Pixel Buds), and Home/Entertainment (Nest).

As the security and privacy assurance of these devices is a top concern for Google, NTT proposed assessing security controls and recommending best practices across several domains such as secure manufacturing, code security, anti-counterfeit, secure station certification and incident response.


Enhanced cybersecurity and cyber resilience

With NTT as a trusted cybersecurity advisor:

  • There is enhanced security visibility over global emerging cyber threats, resulting in better threat analysis and faster responses to potential threats.
  • Google can concentrate on their core business with the NTT team conducting the Independent 3rd Party assessment of Google CM Compliance.
  • There are streamlined security standards, with an improved CM assessment criteria and an enhanced supply chain security framework.
  • Google is looking at not just assessing but also uplifting the overall security posture of its partners through a well-defined program.

Speak to an expert

We see an interconnected world where technology has the power to bring together people, data and things. For businesses, connection matters now more than ever, and we strive to help you continue to operate and adapt the way you work. Let us know how we can help you do great things.

Speak to our experts
Man carrying his tablet while talking on a mobile phone