BigFix Compliance PCI Add-on: New PCI DSS Checklist for Windows 2016 (PCI v4.0), published 2023-06-08

Product:
BigFix Compliance PCI Add-on

Title:
PCI DSS Checklist for Windows 2016 (PCI v4.0)

Category:
PCI DSS Checklist

Security Benchmark:
Payment Card Industry Data Security Standard v4.0

Published Sites:
PCI DSS Checklist for Windows 2016 (PCI v4.0), site version 3.
PCI DSS Reporting, version 18.
(The site version is provided for air-gap customers.)

Details:

  • The BigFix Compliance PCI Add-on team is pleased to announce the availability of the new checklist for BigFix Compliance PCI Add-on: PCI DSS Checklist for Windows 2016 (PCI v4.0).
  • This new checklist is based on the guidance provided by the Payment Card Industry Data Security Standard (PCI DSS) v4.0 and contains security configuration checks that evaluate the security settings of your Windows Server 2016 endpoints according to the PCI DSS standard.
  • As with most of the existing PCI DSS contents in the BigFix Compliance PCI Add-on library, this checklist includes checks with:
    • Corresponding analyses properties to report actual values.
    • Standardized titles, descriptions, and measured values for enhanced readability and consistency.
    • The ability to ensure correctness of compliance data.
    • Some of the checks allow you to use the parameterized setting to enable customization for compliance evaluation.
    • Most of the checks also support remediation that allows BigFix operators to efficiently remediate a non-compliance issue with a single action.
    • List of checks whose rules are not automatically assessed:
      1. ID: 159050 Title: Ensure PCI DSS Requirement 3 requirements are being operated (Rule not automatically assessed).
      2. ID: 159051 Title: Ensure PCI DSS Requirement 9 requirements are being operated (Rule not automatically assessed).
      3. ID: 159052 Title: Ensure PCI DSS Requirement 11 requirements are being operated (Rule not automatically assessed).
      4. ID: 159053 Title: Ensure PCI DSS Requirement 12 requirements are being operated (Rule not automatically assessed).
  • The following PCI DSS Policies are refreshed with the latest content from the PCI DSS Checklist for Windows 2016 (PCI v4.0) site:
    • PCI DSS Checklists
    • PCI DSS Milestones View
    • PCI DSS Requirements View

Actions to take:

  • Use the License Overview dashboard from the BES Support site to enable and gather the said site. Note that you must be entitled to the new content, and you are using BigFix version 9.5 and later.
  • Create a custom site for the PCI DSS Checklist for Windows 2016 (PCI v4.0) site to display the Windows Server 2016 results in the PCI DSS Policy Reports.
  • If you were involved in the Beta / Early Access Program for BigFix Compliance PCI Add-on, unsubscribe from the beta sites to avoid any conflicting issues with the production sites. If you do not unsubscribe from the beta sites, the content in the production sites will fail.

More information:
To know more about the BigFix Compliance PCI DSS checklists, please see the following resources:

We hope you find this latest release of SCM content useful and effective. Thank you!

– The BigFix Compliance PCI Add-on team

This topic was automatically closed after 30 days. New replies are no longer allowed.