As Opposed to a lot of compliance rules, SOC compliance is usually not necessary to operate in a supplied sector like PCI DSS compliance is for processing payment card information. Usually, corporations require a SOC audit when their clients ask for one. ) as well as the requested accommodation(s): Audio/Visible/Other. https://www.nathanlabsadvisory.com/nydfs-cybersecurity-risk-assessment.html