Navigating Early SOC 2 Requirements in the Sales Cycle

Anyone else running into SOC 2 requirements earlier in the sales cycle? I’ve talked to a few SaaS founders lately who said enterprise buyers are now asking for compliance proof way sooner than before — sometimes even pre-funding. Curious how other GTM teams are handling that. Are you waiting until Series A to get SOC 2 ready, or tackling it earlier?