Not like lots of compliance regulations, SOC compliance is often not required to work in a very specified business like PCI DSS compliance is for processing payment card details. Generally speaking, companies need a SOC audit when their clients request a person. The difference between the different types of SOC https://www.nathanlabsadvisory.com/open-source-scanning-oss.html
