Not like several compliance laws, SOC compliance is typically not required to work inside of a given business like PCI DSS compliance is for processing payment card details. Generally speaking, companies have to have a SOC audit when their consumers request a person. SOC two is actually a security framework https://www.nathanlabsadvisory.com/blog/nathan/get-certified-cybersecurity-consulting-in-saudi-arabia/