Contrary to a lot of compliance laws, SOC compliance is typically not obligatory to function in a very specified industry like PCI DSS compliance is for processing payment card info. In general, corporations have to have a SOC audit when their clients ask for one. Formally attest your compliance. An https://www.nathanlabsadvisory.com/nerc-cip-compliance.html
