SOC Reporting

Demonstrate your commitment to governance

As your company grows and matures, the need to demonstrate governance over internal operations becomes necessary and oftentimes a market differentiator. Performing an SSAE 18 audit and producing a System and Organization Controls (SOC) report provides those vital assurances. Not only are regulatory requirements increasing in complexity, but many of your clients may require validation that your organization has effective controls and safeguards in place for the systems that can impact their data.

Calvetti Ferguson skillfully provides SOC (Type 1 and Type 2) readiness and examination services. We see SOC examinations as a collaborative process, and work with our clients throughout the examination to help ensure there are “no surprises”. Whether you’re looking to embark upon completing a SOC examination for the first time, or if you’re looking for more from your current SOC examiner, our team is ready to help.

SOC 1 reports are prepared in accordance with SSAE 18. They are specifically intended to assist your clients in evaluating the effect of the internal controls at your organization on their financial reporting. A SOC 1 examination allows you to demonstrate to your clients that your internal controls are fairly presented, have been properly designed and have operated effectively throughout the period under review. These reports are intended to be used by management, your clients and their auditors.

SOC 2 reports are prepared for service organizations providing services to their clients for which a detailed understanding and assurance around internal controls at the organization is necessary. A SOC 2 examination allows you to provide information to your clients around internal controls which may be relevant to security, availability, processing integrity, confidentiality and privacy. These reports are intended to be used for vendor due diligence, organizational oversight, corporate governance / risk management and regulatory oversight.

Our IT risk team has helped many organizations with their SOC reporting including:

  • Technology service providers
  • Bank trust departments
  • Claims processing centers
  • Data centers & cloud computing
  • Facilities management providers
  • Investment management firms
  • Managed service providers
  • Financial services companies
  • Payroll providers
  • SaaS/IaaS providers
  • Transportation and logistics companies

Contact Us

Calvetti Ferguson works with middle-market companies, private equity firms, and high-net-worth individuals across the country. Regardless of the complexity of the compliance, assurance, advisory, or accounting need, our team is ready to help you. Please complete the form below, and we will follow up with you shortly.