We have put together all the information you need to answer your questions about SOC Reporting, including what they are, what they do, and what it takes to get them done. We also help you figure out where to start when choosing a partner to help issue your report.

Maloney + Novotny SOC and HITRUST Audit and Reporting Practice

Maloney + Novotny is a firm of certified public accountants (CPA’s) and business advisors whose business is based on four core values:

  • Commitment
  • Integrity
  • Teamwork
  • The Will to Win

This results in unparalleled service and dedication to our clients. For more than 85 years, Maloney + Novotny has been helping our clients achieve success by providing attest, tax and advisory services, while building relationships that last.

Maloney + Novotny has significant experience in performing SOC audits and working with businesses preparing for their first SOC audit. We perform SOC audits for

  • Managed Service Providers
  • Data Centers and Cloud Service Providers
  • Managed Care Organizations
  • Bank Outsourced Services Providers
  • Third Party Administrators
  • Data Base Mail/Fulfillment Firms

Maloney+Novotny is also well versed in working with SOC clients who provide third party services to regulated industries including banks and other financial institutions, as well as to the healthcare services industry. Our experience dates to the original SAS70 standard which was later rewritten to accommodate the need for SOC 2 audits. We maintain continuing education specifically designated for SOC engagements, including attending the AICPA's annual SOC School.

Maloney + Novotny has several team members who work with our SOC audit practice which is led by Steve Thomas.  These team members spend the majority of their professional time on SOC and internal control audit engagements and, specifically engagements involving Information Technology controls. Team member certifications include CPA, CISA and CISSP.

The SOC Audit Team at Maloney+Novotny is ready to initiate your SOC or HITRUST report project. We offer an intial no charge, no obligation consultation so that we can assess your needs and determine how best to proceed with your audit and report preparation. To get started, call Dale Dresch at (216) 344-5296 or email him at ddresch@maloneynovotny.com.


Steve Thomas - CPA, CVA, CISA | Shareholder

Steve joined Maloney + Novotny LLC in 1992, becoming a shareholder in the Canton office in 2000. With over 30 years of experience, Steve has a diversified business background including significant experience in providing audit, review, business advisory and tax services.  He also serves companies in the commercial & industrial area, including manufacturers, distributors, contractors, employee benefit plans, healthcare organizations, and real estate companies.  Prior to joining Maloney + Novotny, Steve worked for KPMG.

Steve is the shareholder-in-charge of the firm’s Canton office and is a Certified Valuation Analyst.  He has developed the firm’s service organization audit practice. He is in compliance with CPE requirements of Governmental Accounting Standards.

A 1982 Magna cum laude graduate of The University of Akron, Steve is a member of the Ohio Society of Certified Public Accountants, the American Institute of Certified Public Accountants, and the Canton Chamber of Commerce. He is past President of the Canton Chapter of the Institute of Management Accountants.

Steve is an active member of the North Canton Chapter of Rotary International and the Canton Chamber of Commerce and works with Habitat for Humanity.  He has served on the Grand Parade Committee for the Pro Football Hall of Fame Festivities in Canton, as Safety Director for North Canton Little League, and as a fund raiser for a wide variety of community projects, including Akron Children’s Hospital.

Thomas J. Aumiller - CPA | Director, Information Technology

Tom Aumiller has spent over 30 years in public accounting focused on providing information technology services to entrepreneurial businesses.

Tom   has   assisted   in   the   assessment, design  and   implementation   of information systems for a wide variety of organizations.  The clients he has advised operate in numerous industries and include professional service, health care, higher education, distribution and manufacturing.

His experience includes working with clients on a variety of complex issues, including:

  • System and Organization Control reviews;
  • Internal control evaluation and design;
  • Information security assessments and IT General Controls reviews;
  • Technology-based business process improvement;
  • Business continuity planning and disaster recovery development;
  • and Selection and implementation of information

Tom is a member of The American Institute of Certified Public Accountants and its Information Technology Section, in addition to The Ohio Society of Certified Public Accountants and its Technology Section.

Dale Dresch - Director, IT Services

Dale joined Maloney + Novotny LLC in 2016 as an IT Audit Manager. He brings more than 15 years’ experience in infrastructure design, systems administration, and cybersecurity, over 10 of which were spent in the public sector designing and implementing systems for the federal government. Dale’s recent experience in the private sector focused on cyber and application security for the healthcare and legal industries.

Dale has extensive experience in systems design and process implementation, disaster recovery and contingency planning, network architecture, vulnerability and patch management, and risk mitigation.

Dale graduated from Baldwin Wallace College in 2001 with a bachelor's degree in Computer Science and a master’s in Business Administration in 2004.  He has maintained a Project Management Professional certification for the past 13 years with the Project Management Institute.  He is a member of the International Information System Security Certification Consortium (ISC2) and holds a current CISSP certification as well as a CISA certification with ISACA.   Dale is also a certified HITRUST Practitioner (CCSFP).

Adam Ries - CCSFP | IT Audit Manager

Adam joined Maloney + Novotny LLC in 2020 as an IT Audit Manager. He brings more than 18 years of experience in system and process design and implementation, with the last five years focused on control and policy development and IT auditing.

Prior to joining M+N, Adam coordinated SOC1/SOC2 engagements, DRBCP planning and exercises, and provided support for SOX IT controls for national providers of healthcare and management services for workers' compensation and group health, auto and general liability, insurance, and financial data services.

Adam advises clients in a variety of industries including software development, professional services, health care, higher education, distribution, and manufacturing. He provides guidance and subject matter expertise to IT and business teams on information security, risk management  and auditable controls.

Adam helps closely held and middle market clients with a variety of IT assurance projects, including developing audit objectives, performing risk and security assessments, and internal control reviews. Adam has a deep understanding of audit program planning, including analysis of business requirements, relevant technologies, and associated risks.

Adam is a certified HITRUST Practitioner (CCSFP) and has experience with SSAE trust principals, PCI, and HIPAA.

Matthew J. Ramsey - CPA, CISA | Senior Manager

Matthew joined Maloney + Novotny LLC in 2003 and currently serves as a Senior Audit Manager in the Canton office.  Matthew has a diversified background working with clients in a variety of industries, including; manufacturing, third party claims administration, healthcare organizations, employee benefit plans, colleges, retail, real estate and governmental entities (single audits).

Matthew has experience in providing a variety of accounting and attest services, including audit planning and testing compilations and reviews employee benefit audits, business advisory, System and Organization Control Audits, and single audits.  He is a Certified Information System Auditor (CISA).

Matthew graduated from Mount Union in 2003 with a Bachelor of Arts degree in Business Administration with an emphasis in Accounting and minor in Information Systems.  He graduated from Akron with an MBA with a concentration in Accounting in August of 2007.  He became a CPA in June 2006, and a CISA in May of 2015.

Matthew is a member of ISACA, the American Institute of CPA’s and Ohio Society of CPA’s and ISACA. He also serves as a den leader in Cub Scouts. He is a member of Ystark! and has worked as a volunteer for the Akron Zoo, Vintage Canton, The Pro Football Hall of Fame and OHSAA State Football Finals Host Committee, Coaches Hospitality.