SOC Reporting

FustCharles will work with you every step of the way on your System and Organization Controls (SOC) Reporting journey, from a SOC controls readiness assessment, to a SOC Type 1 and SOC Type 2 report.

SOC 1 

SOC 1 Reports are important tools used to demonstrate the design and operating effectiveness of an organization's internal control environment over financial reporting. Business partners are increasingly requesting SOC 1 Reports from companies in order to provide assurance over their control environment.

SOC 2 

SOC 2 Reports meet the growing demand for assurance from organizations that store, process, or transmit customer data. In many cases, businesses may request a SOC 2 report as part of their vendor management and due diligence process before engaging in business with a new organization. A SOC 2 can provide an independent report over controls at an organization relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy.

Other Attestation Reports Available

In addition to SOC 1 and SOC 2 reports, FustCharles can also provide other custom attestation reports tailored to your specific needs. FustCharles can help organizations and your stakeholders gain insight over operational and IT control environments and drive efficiencies while reducing compliance costs due to time spent on audits and vendor / third party questionnaires. Our proactive approach helps address risks across the organization saving you time, resources, and money.

Meet our Leader

Jeffrey R. Ritchie, CPA - Principal



Jeff Ritchie is a risk and controls specialist with over 11 years of experience helping both public and private organizations assess and manage their risk landscapes. Jeff’s expertise across both operational and IT control environments allows him to provide a unique perspective and insight to clients, which is tailored to their specific risks. This allows organizations to make better decisions and provides a comprehensive and streamlined way to identify and manage their risks.

Jeff has extensive experience in System and Organization Controls reporting (SOC 1 and SOC 2), enterprise risk management, internal control transformation projects, SOX 404 compliance, IT control assessments, process improvement and control readiness assessments.

Jeff is a CPA licensed in New York and is a member of the American Institute of Certified Public Accountants (AICPA). He obtained his B.S. and M.S. in Accounting from Siena College and resides in Syracuse.

Contact Jeff for a discussion on how we can help your organization.


(315) 928-7445

All Risk and IT Assurance Services

SOC Reporting (SOC 1, SOC 2 and more)


Sarbanes Oxley (SOX 404)