Just like the other post, I'll remind you again that you need to tell management to get their act together and stop storing SSNs in clear text. You will never pass a good audit and, if your system is compromised, it may cost the company so much money protecting the individuals that have been violated that it'll drive the company out of business.
And, guess what? It's people like you that will end up paying the price for the company's failure to protect the SSNs and the other PII that you have stored in plain text. It will be a career changing event for you and you won't like your new career.
I'm not saying this to be mean or condescending. It's a real problem for you, the company you work for, and all of your customers. At least encrypt the SSNs with at least a single long salt or better.