SSAE 16/SOC 1 Report

Ryan Sharkey’s Risk Advisory Services group offers expertise in Service Organization Control (SOC) 1 Reporting that examines the financial reporting controls applicable to control objectives defined by the client.

Report Audience

  • Auditors of the entity’s financial statements
  • Management of the user entry
  • Management of the service organization

Report Content

  • Written assertion by management of service organization
  • Description of service organization’s system
  • Type 2 report includes description of the CPA’s tests of controls and results
  • Independent Service Auditors’ opinion on fairness of presentation of the description, suitability of design and, in a Type 2 report, the operating effectiveness of controls
  • Complementary user entity controls and how they interact with related controls at the service organization

RyanSharkey Approach

Our approach to SOC reporting projects includes:

  • Assessment of weaknesses and vulnerabilities
  • Planning: Scope, roles and expectations
  • Documentation and definition of objectives
  • Design and execution of testing (includes Type 1 and Type 2 reports)
  • Reporting

Read about our full approach to SOC Reporting here.

Know that you need a SOC Report? Click here to request a quote.

For more information on SOC Reporting or to contact a member of RyanSharkey’s Risk Advisory Services team, please fill out the form on this page. A member of our team will contact you.