Map components to multiple certifications

Repost from certifications repo,

Is there a way to use the same component file to track compliance with two certifications that use different marking taxonomies (e.g PCI and FISMA or SOC2 and FISMA)? If so, can someone share an example. Not sure if this is the right place so I'll ask in another repo.