System and Organization Controls (SOC) Reports

System and Organization Controls (SOC) Reports

Your Internal Controls in the Spotlight

The world of SOC reports can be a place of confusion, technical terminology and stringent requirements. It is also an area of growing importance as service organizations struggle to meet the growing need from customers for assurance regarding the security, confidentiality and privacy of the information processed by their systems.

From payroll, billing and credit processing companies to insurance and medical claims processor, hosted data centers, cloud computing providers, SaaS providers and internet retailers, organizations are facing increased pressure to provide evidence of adequate controls and safeguards when they host or process data belonging to their customers. In fact, many are even finding that obtaining a SOC report is quickly becoming a contractual requirement for doing business.

Whether you are in the market for a SOC 1 report, which has replaced the SAS 70 standard for reporting on controls over financial reporting, or a SOC 2 or SOC 3 report to demonstrate the strength of your non-financial controls to management, suppliers, business partners and customers, you can count on MFA for audit and reporting solutions that deliver exceptional value.

MFA: The Clear Choice for Your SOC Reporting Needs

  • Unparalleled internal controls expertise
  • Deep operational and business process knowledge
  • Solid audit and assurance track record
  • Responsive, value-driven, hands-on approach
  • Efficient, effective engagement resulting in more than just a report
  • The ideal combination of expertise, service and price

An Unparalleled Track Record with Proven Expertise

MFA’s deep audit and assurance knowledge, along with our solid SAS 70 track record, extensive SOX work and IT and internal controls consulting expertise demonstrate the strength and range of our SOC reporting solutions. The exceptional knowledge base and vast experience amassed over the years puts us in the unique position of being a single source for regulatory, technical and operational guidance. When you partner with MFA, you gain access to the input of truly seasoned professionals.

With MFA, It’s More Than Just a Report

At MFA, it’s more than just delivering a SOC report. As part of our comprehensive SOC reporting process, we also strive to identify the root cause of systemic breakdowns and offer our recommendations for practical, pragmatic solutions to improve an organization’s internal controls and operating efficiencies.

The resulting deliverables allow our clients to confidently demonstrate that their infrastructure, applications and processes are appropriately designed and operating effectively, paving the way for them to build trust with their customers.

A Reputation for Quality and Value

We not only provide high quality output but our quality standards also extend to the communication, relationships and knowledge that feed the process. We prioritize a responsive, value-driven, hands-on approach that allows us to thoroughly comprehend the intricacies of the client business and allows us to build two-way communication that facilitates an effective, comprehensive SOC reporting engagement.



Michelle Kupka Audit Partner (978) 557-5342
Michelle Mackey Partner – Performance & Controls Practice (978) 569-2909


Contact Us

Help Us Build You A Better Web Experience

Click Here