Christopher J. Sutton Iii
About Christopher J. Sutton Iii
Christopher J. Sutton III is a cybersecurity professional currently serving as the Cybersecurity Program Office (CPO) at the U.S. Securities and Exchange Commission. He has held various significant roles in cybersecurity, including Chief Information Security Officer at the Export-Import Bank of the United States and has extensive experience with multiple government agencies.
Current Role at U.S. Securities and Exchange Commission
Christopher J. Sutton III currently serves in the Cybersecurity Program Office (CPO) at the U.S. Securities and Exchange Commission. He has held this position since 2024, contributing to the agency's cybersecurity initiatives in Washington, DC. His role involves overseeing cybersecurity measures and ensuring compliance with federal regulations.
Previous Experience at Export-Import Bank of the United States
From 2021 to 2024, Sutton worked at the Export-Import Bank of the United States as the Chief Information Security Officer (CISO) and Chief Privacy Officer (CPO). In this capacity, he was responsible for managing the bank's information security and privacy policies, ensuring the protection of sensitive data.
Background in Cybersecurity and Information Security
Sutton has extensive experience in cybersecurity and information security. He worked at the National Security Agency as a Supervisory IT Specialist from 2011 to 2012. His career includes significant roles at the Cybersecurity and Infrastructure Security Agency and the U.S. Department of Justice, where he focused on cybersecurity policy and operations.
Education and Academic Background
Christopher J. Sutton III studied at Murray State University, where he earned a Bachelor of Science degree in Political Science and Computer Information Systems. His educational background provides a foundation for his career in cybersecurity and information technology.
Achievements in Cybersecurity Operations
Sutton has co-built or overseen the establishment of two national security operations centers, US-CERT and NCCIC, as well as two enterprise security operations centers for Navy Federal Credit Union and the Washington, D.C. Government. He has also led the creation of multiple enterprise IT programs, enhancing cybersecurity capabilities across various organizations.