Home
Payment Card Industry (PCI) Add-on User Guide
BigFix Compliance PCI Add-on is a new chargeable component that provides security configuration checklists that are based the Payment Card Industry Data Security Standard (PCI DSS). These compliance checks are designed to help ensure continuous compliance at every endpoint in your organization.
Overview
HCL BigFix Compliance PCI Add-on is a new chargeable component that provides security configuration checklists that are based on the Payment Card Industry Data Security Standard (PCI DSS). These compliance checks are designed to help ensure continuous compliance at every endpoint in your organization.

Payment Card Industry (PCI) Add-on User Guide
BigFix Compliance PCI Add-on is a new chargeable component that provides security configuration checklists that are based the Payment Card Industry Data Security Standard (PCI DSS). These compliance checks are designed to help ensure continuous compliance at every endpoint in your organization.
- Overview
  HCL BigFix Compliance PCI Add-on is a new chargeable component that provides security configuration checklists that are based on the Payment Card Industry Data Security Standard (PCI DSS). These compliance checks are designed to help ensure continuous compliance at every endpoint in your organization.
  - PCI DSS overview
    HCL BigFix Compliance PCI Add-on provides checklists for PCI compliance. The Payment Card Industry Data Security Standard (PCI DSS) is a baseline of technical and organizational requirements that are related to the Payment Card Industry.
  - What's new in PCI DSS content update release
    HCL BigFix Compliance PCI Add-on provides additional support and enhancement in the recent update.
  - PCI DSS checklists
    SCM is organized through checklists that assess and manage the endpoint and server configurations. Each compliance checklist is distributed by BigFix as an external Fixlet site.
  - PCI DSS policies
    BigFix Compliance Analytics V2.0.9 releases a new policy reporting capability, which provides an aggregated view of compliance from a PCI DSS Requirement or PCI DSS Milestone report perspective.
  - Key users
    Learn how users use the PCI DSS checklists for their role.
- Setup
  Complete configuration steps to access the PCI DSS checklists and checks and ensure accurate relevance evaluation on the endpoints.
- Using checks and checklists
  The check Fixlets in Configuration Management checklists assess an endpoint against a configuration standard. Many check Fixlets have a corresponding analysis, sometimes referred to as measured values, that report the value of the element that the check Fixlet evaluates.
- Understanding the results in BigFix Compliance Analytics
  Use BigFix Compliance Analytics (formerly known as Security and Compliance Analytics or SCA) to navigate and explore security configuration check results.
- Resources
  You can find more information about Security Configuration Management and PCI DSS in the following resources.

Overview

HCL BigFix Compliance PCI Add-on is a new chargeable component that provides security configuration checklists that are based on the Payment Card Industry Data Security Standard (PCI DSS). These compliance checks are designed to help ensure continuous compliance at every endpoint in your organization.

This PCI component uses the Security Configuration Management (SCM), which is a module under BigFix Compliance. SCM provides a comprehensive library of technical controls to detect and enforce security configurations for endpoints and servers in your organization. By using BigFix Compliance, you have instant visibility into the configurations of systems within a globally distributed infrastructure.

SCM includes a web interface, BigFix Compliance Analytics (formerly known as Security and Compliance Analytics, or SCA), which summarizes and analyzes large data streams and shows the health of your IT assets. BigFix Compliance Analytics provides report views and tools for managing the vulnerability that is found by the BigFix Compliance checks. These compliance reporting tools and views help you to identify configuration issues, which consequently enforce constant policy compliance.

These technical controls and reporting tools are based on industry best practices and standards for endpoints and server security configuration.