Services

Get expert help when you need it.

Expert Hours

We show you the best ways to use ZenGRC to ensure your program meets your company’s goals. We’ll minimize rework, make improvements and help you accomplish your goals.

Expert Managed Services

We manage your ZenGRC activities to support your Security, Compliance and Risk programs. This full service includes set-up, hands-on assistance and subject matter expertise to support your program goals.

GRC as a Service

We offer specialized services for your ZenGRC activities to manage your Privacy, FedRAMP, Compliance and Risk programs. These services include set-up and continuous expansion, improvements and maintenance.

Meet the GRC Expert Team

Get to know a few of our industry experts who will work directly with you.

Dave Schmoeller

Dave Schmoeller

Director of GRC Services

Dave Schmoeller

Director of GRC Services

Dave is Reciprocity’s Director of GRC and has 30 years of progressive experience across diverse industries.  His Global business experience includes leading customers to business value and achieving their goals, building teams, financial, operational and IT auditing, Sarbanes-Oxley (SOX) compliance, business process evaluation and improvement, ERP systems implementation and evaluation, and fraud investigation. 

Dave often serves as a guest speaker at national conferences on various auditing and fraud prevention topics and hosts webinars on various information security topics. 

Tricia Scherer

Tricia Scherer

GRC Expert

Tricia Scherer

GRC Expert

Tricia has over 15 years of IT Consulting and Governance, Risk and Compliance experience across a variety of industries including public sector, healthcare and banking.  Her strategic GRC approach is tailored to the needs of the business, addressing the most pressing risks.  She believes that instead of striving just for compliance, organizations need help with achieving more preventive and mature risk and security processes.  

Tricia has helped organizations develop comprehensive GRC programs, vendor risk assessments and security awareness training. Her skills include Cybersecurity, Data Privacy, IT internal audit and a multitude of regulatory frameworks.

Gerard Scheitlin

Gerard Scheitlin

GRC Business Partner

Gerard Scheitlin

GRC Business Partner

Gerard Scheitlin has 30 years of experience as an executive leader in industries including Healthcare, Information Technology, Automotive, Electronics and Distribution.  As the owner and founder of RISQ Management, a company specializing in product and organizational risk solutions, he is actively involved in publicizing how focusing on RISQ Management and Business Transformation organizations are able to achieve sustainable growth. 

Gerard is passionate about RISQ remediation and process improvement with a client-centered approach that focuses on prevention rather than reaction. He has 19 publications that cover a broad range of topics, focusing on his RISQ Model, and span multiple media platforms. Gerard serves as a guest speaker and a panelist at a number of nationally accredited symposiums as well as individual company summits. 

Maxine Henry

Maxine Henry, PhD

GRC Business Partner

Maxine Henry, PhD

GRC Business Partner

Maxine is the owner of Cyvient, LLC, which specializes in governance, risk and compliance, cybersecurity, data privacy and protection. She is responsible for aligning GRC and cyber risk management with business performance drivers, resources, IT audit capabilities and internal controls to transform technology solutions. 

Maxine has a deep understanding of GDPR, EU Data Protection Act, ISO 27000, Series /31000/ 22301, ITIL, PCI DSS, COBIT, COSO, NIST, FedRAMP, FISMA, HIPAA/HITRUST, SSAE SOC 2, Sarbanes Oxley and Privacy Shield. This knowledge has led to the development of innovative approaches to managing GRC, operational, tactical and strategic plans that enhance organizational opportunities to reduce risk and lower technology costs.

Patsy Cunningham

Patsy Cunningham

GRC Expert

Patsy Cunningham

GRC Expert

Patsy has over 20 years of corporate governance, enterprise risk management and effective corporate compliance.  She drives organizations to identify, remediate, monitor, exploit and manage enterprise risks. She coordinates the utilization of people, process and technology to improve GRC effectiveness in key areas such as financial regulatory compliance, data privacy, third-party risk management and information technology risk and compliance.

Patsy has a special interest in data privacy and assisting companies that want to ensure they are compliant with the latest privacy rules and regulations.  She keeps up to date with the many standard frameworks (ISO, NIST, CoBit) in the industry.

Learn how we can fit into your business.

Schedule a demo to learn how we can help guide your organization to confidence in infosec risk and compliance.

Help us get to know you.

Get a demo