Skip to main content

Chris Sullo Promoted to Principal in Focal Point's Cyber Security Practice

Tampa, FL – January 25, 2017 – Focal Point Data Risk, LLC (Focal Point), a data risk management firm, today announced the promotion of Chris Sullo to Principal in the firm’s Cyber Security practice. Chris has been with Focal Point for more than eight years and has been leading its penetration testing team since 2016.

“Chris embodies the qualities we value at Focal Point: professionalism, a cool-under-pressure demeanor, technical expertise, and a dedication to client service. His team consistently performs at an extraordinarily high level, delivering technical security assessments that our clients routinely rate as world class,” said Andrew Cannata, Principal of Focal Point’s Cyber Security practice. “We couldn’t be more excited for Chris and look forward to his leadership in 2018.”

In this role, Sullo will lead Focal Point’s Attack and Penetration Testing team, responsible for client engagement, revenue generation, and service innovation. He joins the leadership team of the company’s Cyber Security practice alongside Christie Verscharen, who leads Focal Point’s PCI and Risk Advisory services team, and Andrew Cannata, who maintains overall leadership of the Cyber Security practice.

Sullo joined Focal Point’s Attack and Penetration Testing team in 2009, and quickly rose to the position of Director in the Cyber Security practice. In 2016, he assumed leadership of the penetration testing team, overseeing all client engagements and practice methodologies. Over the past two years, he has led his team through a period of expansion, scaling to meet increased demand for Focal Point’s penetration testing, social engineering, and vulnerability scanning services.

Sullo has more than 22 years of experience in the information security field and is the author of “Nikto,” the popular open source web server security assessment tool. He is co-founder of Richmond's RVAsec security conference and is a former board member and development leader of the Open Source Vulnerability Database (OSVDB) project.

Follow Focal Point Data Risk

About Focal Point Data Risk, LLC

Focal Point Data Risk is a risk management firm delivering a unified approach to addressing data risk through a unique combination of service offerings. Focal Point brings together industry-leading expertise in cyber security, identity governance and access management, data privacy, analytics, internal audit, and cyber training services – giving clients everything they need to plan and develop effective risk and security programs. By integrating these services, Focal Point provides the resources necessary for protecting and using data across entire organizations. Visit for more information.

contact Focal Point

tweets by @FocalPointDR

Loading Tweets...