While the PCI SSC has no authorized authority to compel compliance, It's really a requirement for almost any company that processes credit rating or debit card transactions. There are 2 types of SOC 2 attestation reports. A sort I report assesses a company’s cybersecurity controls at an individual level in https://www.nathanlabsadvisory.com/blog/nathan/everything-you-need-to-know-about-aramco-cybersecurity-certification-in-saudi-arabia/
