Achieve infosec compliance without the headaches
Manage your risk and maintain compliance with ease
Evidence requests, questionnaires, penetration tests, all-in-one
Meet your auditor on day 1 and eliminate any surprises
Connect to the tools that matter most for your audit
See how our automated platform provides more than just readiness through clear roadmaps, transparent communication, and in-app audits
Get the recording icon-arrow
Stand out in a highly regulated industry
Minimize your risk while maximizing returns
Safeguard your data and close more deals
A bespoke solution for your unique business
Steve Heilenman | CIO, Benefix
Read More icon-arrow
Financial data security without the stress
Efficient SOC 2 compliance with no surprises
Enhance your security posture and build trust worldwide
Stay on top of data privacy regulations
Secure transactions,no matter your scale
Protect patient health data with confidence
Stand out in highly regulated industries
Many more standards including custom frameworks
Josh Horowitz | CTO, Stylo
Explore more success stories icon-arrow
Find out why the OrO Way is the best way to do compliance
See how we drive better outcomes through compliance
Go beyond readiness with unmatched expertise
Ensuring compliance is never a blocker to innovation
Join the team that's reimagining compliance
Let's make compliance easier—together
Your team of compliance experts is standing by. Meet your auditor on day 1 and get answers when you need them.
Get to know them icon-arrow
Catch up on the latest industry trends and expert insights
Attend the latest webinar or meet with us in person
Actionable tools for your compliance journey
Expert-curated resources for your compliance journey
A podcast for B2B CISOs
Customize and download your free information security policy and be well on your way to SOC 2 compliance.
Use our policy generator icon-arrow
Zach Rutz (he/him)
An accomplished IT assurance manager with expertise in IT auditing, enterprise and risk management, and a strong background in the insurance, healthcare, and professional services industries. As a Senior Manager of Infosec assurance, Zach focuses on making the HITRUST certification process more efficient and streamlined for our customers. Specifically, he provides valuable guidance on implementing HITRUST requirements, builds content to help customers become audit-ready, and develops our platform’s HITRUST capabilities alongside our product and engineering teams.
Zach brings a comprehensive background to his role including a degree in Information Technology & Operations and Supply Chain Management from Marquette University, and former experience managing HITRUST and SOC assurance with firms like Crowe and Baker Tilly.
8 years
HITRUST, SOC 2, HIPAA
Served as HITRUST methodology lead for a national practice and lead client implementations of HITRUST and SOC audits and assessments. Certified CSF Practitioner (CCSFP), Certified HITRUST Quality Professional (CHQP), and Certified Information Systems Auditor (CISA)
Marquette University
