John Verry
Lead Managing Director
John Verry
As Pivot Point Security’s Managing Partner and CEO John Verry guides organizations on the path to becoming provably secure and compliant.
Over the past 21 years, he has led hundreds of security engagements across diverse industries, including government, legal, telecommunications, critical infrastructure, finance, and transportation. A popular speaker and recognized thought leader, John offers insight for both business and technical audiences. He is an ISO 27001 Certified Lead Auditor, Certified Third Party Risk Management Professional, and Certified Information Systems Auditor. John holds a Bachelor’s Degree in Engineering from Stevens Institute of Technology and is the host of The Virtual CISO Podcast, Pivot Point Security’s Security Awareness Education platform. A family man and foodie with a penchant for pop culture references,
John deftly mixes wit and wisdom while sharing his deep knowledge of cyber security.
Rich Rebetti
Director Of Operations
Richard Rebetti
Richard Rebetti has been Pivot Point Security’s Chief Operating Officer and Integrator since 2018. Rich is responsible for executing the organization’s strategic plan, budgets, and holding the PPS internal teams accountable for achieving clients’ Information Security (Cybersecurity) and Compliance requirements.
Throughout his lengthy career in C-Suite roles within the technology and telecommunication industries, he has developed a record of team building and operations enhancement in start-up, turnaround, and mature business settings. Rich has a Bachelor’s degree in Finance with an Advanced Professional Certificate in Accounting from St. John’s University and a Master’s degree in Management from the City University of New York Baruch College.
He enjoys traveling with his family and exploring the city with his wife and two dogs.
Carla Higginbotham
Sales Director
Carla Higginbotham
Carla, Director of Sales, has been with Pivot Point Security since 2012, and is responsible for the Sales and business development teams at the company.
Prior to joining the PPS, Carla worked her way up at the McGraw Hill Companies, starting in customer service, client success, new business and finally inside sales. Other work history includes Vetstreet. She holds a Bachelor in English Literature from Rider University.
She lives at home, in the forest, with her wonderful husband and daughter, and you can often find her reading a book with a bag of Cheetos on her lap.
Peggy Leary
HR Director
Peggy Leary
Peggy Leary, HR Director, joined Pivot Point Security in October 2020. She is responsible for developing and executing PPS’s people strategies with a strong emphasis on talent acquisition and management.
Before joining PPS, she was the HR and Finance Manager for a nonprofit organization as well as Vice President and Senior HR Business Partner for Bank of New York Mellon, where she spent 13 years supporting Compliance, Sales, and Information Technology business units. Earlier in her career, she focused on technical recruiting for various financial institutions in the NY/NJ area. She holds a Bachelor’s degree in Accounting from Rider University.
Peggy lives in Naples, Florida, with her husband and daughter. They enjoy spending time with family and friends, love the beach, and exploring Florida’s state parks.
Tiffany Garcia
Managing Director
Tiffany Garcia
Tiffany is a Managing Director in the national CBIZ Risk & Advisory Services practice and is based in Austin, Texas. She has over 20 years of experience providing information technology (IT) and cybersecurity audit and consulting services to clients. Prior to working for CBIZ, Tiffany served clients while working for KPMG. She brings extensive IT and cybersecurity knowledge and expertise across multiple sectors and various industries, including state and local government, healthcare, education, utilities, banking, manufacturing, telecommunications, and nonprofit organizations.
Tiffany has spent most of her career focusing on IT, cybersecurity, risk management, and strategic planning, while primarily helping organizations balance business objectives and operations with IT and security risks and requirements, including compliance with best practices, security frameworks, state and federal laws, and industry regulations. She has also successfully executed many outsourced and co-sourced engagements for internal audit divisions of large organizations. Mrs. Garcia has abundant knowledge and experience with the HIPAA Privacy, Breach Notification and Security Rules, as well as other criteria such as FISCAM, COBIT, NIST SP 800-53, NIST Cybersecurity Framework (CSF), CIS Controls, PCI, ISO 27001/27002, HITRUST, System and Organization Controls (SOC) 2, and CJIS requirements. She also has in-depth experience in conducting and leading IT audits and consulting engagements under IIA, AICPA and Government Auditing Standards.
Tiffany is also a speaker for various conferences and professional organizations and serves on the CBIZ Women’s Advantage (CWA) Executive Board and co-chairs the CWA Professional Development Committee.
Jeremy Price
Managing Director
Jeremy Price
Jeremy is a Managing Director with CBIZ Inc. (NYSE CBZ) and is based in Tulsa, Oklahoma. He has over 25 years of IT experience, focusing on Infrastructure Technologies and Business Management. Currently, Jeremy co-leads CBIZ’s Risk and Advisory Services National Cybersecurity Practice. Jeremy has an extensive background in cybersecurity, data privacy, infrastructure technologies, change management, risk management, strategic planning, project management, business continuity and disaster recovery.
Since joining CBIZ, Jeremy has functioned as an information and operations technology subject matter expert and project lead on numerous engagements. He has performed compliance and IT consulting for various industries, including Aerospace, Banking, Construction, Energy, Healthcare, Higher Education, Insurance, Manufacturing, and nonprofit organizations and foundations. These engagements have included many Cybersecurity reviews and consulting engagements, as well as regulatory compliance audits such as CMMC, GLBA, ITAR, FDICIA, HIPAA, MTSA, Sarbanes-Oxley and TSA. Jeremy presented “Auditing for HIPAA Compliance” at the 2017 North America ISACA CACS conference in Las Vegas and regularly presents on cybersecurity and data privacy at other conferences and associations. Additionally, Jeremy co-authored and was awarded the 2020 Ted Keys Honorable Mention for “The Hidden Risk of the Cloud” which was published in the Institute of Internal Auditors magazine in December 2019.
Jeremy has volunteered with numerous Tulsa nonprofits, including the United Way, American Heart Association, and he is a past President of the Board of Directors for Clarehouse. Jeremy is also a Leadership Tulsa Flagship graduate.
Jeremy attended the University of Tulsa and currently sits on the University’s School of Cybersecurity Advisory Board. He is a Certified Information Systems Auditor (CISA), Certified Data Privacy Solutions Engineer (CDPSE), a Cybersecurity Maturity Model Certification Registered Practitioner (CMMC-RP), a Microsoft Certified Systems Engineer (MCSE), and an Associate Business Continuity Professional (ABCP). He is also a member of the Institute of Internal Auditors (IIA), Information Systems Audit and Controls Association (ISACA), International Association of Privacy Professionals (IAPP), Disaster Recovery Institute International (DRII), and InfraGard.
Rich Stever
GRC Practice Lead
Rich Stever
Richard Stever has been with Pivot Point Security since 2012. Rich has been the GRC Practice Lead for the last 5 years and is responsible for developing the strategic direction of the GRC Practice to ensure clients success. Rich has over 25 years of enterprise security experience; specialization in network and application penetration testing, security event management, risk assessment, policy development, security architecture, and controls auditing. Rich has been leading projects across a wide variety of environments and verticals providing support and implementation of ISO 27001 for 100+ certifications, SOC 2, attestations, HIPAA, HITRUST, incident response and business continuity.
Rich has a bachelor’s degree in Management Information Systems from Bloomsburg University of Pennsylvania. He lives in New Jersey with his wife and three kids. He enjoys coaching and playing (still) soccer, traveling and spending time with his family at the beach.
Mike Gargiullo
SA Practice Lead
Michael Gargiullo
Michael is the Security Assessment Practice Leader, performing penetration tests against networks, applications, and IoT devices, across physical and cloud environments with Pivot Point Security since 2004.
With a wide breadth of experience across a wide range of industries, Mike has helped hundreds of companies understand their current security posture and assisted them in formulating a remediation plan and overall security roadmap. Mike is passionate about information security, learning how things work, and sharing his knowledge with others. He holds a bachelor’s degree in Computer and Information systems security from Western Governors University and is an active member of the OWASP ASVS project and a CREST Americas Counsel member.
Mike’s wife is a saint who puts up with his hoarder like tendencies when it comes to old cars, tools of all types, and random electronic parts he may need one day. He likes to camp with his family in the woods, near a lake or river when he’s not working or in the garage tinkering.
