In contrast to several compliance regulations, SOC compliance is typically not required to operate in a offered sector like PCI DSS compliance is for processing payment card info. Generally speaking, companies have to have a SOC audit when their buyers ask for one. SOC 2 is undoubtedly an auditing course https://www.nathanlabsadvisory.com/blog/author/admin/page/2/