BigFix Compliance PCI Add-on provides additional reports to show a cumulative compliance
state of your endpoints based on the PCI DSS Milestones.
The PCI DSS Milestones reports are generated based on the Prioritized Approach for PCI
DSS document. The mapping was used in creating the checklists for the prioritized
approach.Figure 1. PCI DSS Milestone mapping
Each milestone has a corresponding checklist and is intended to provide a roadmap to address
risks in a prioritized order. Milestones enable merchants to demonstrate progress on compliance
process.
To view the list of checklists, click Reports > Checklists. There are 7 milestone checklists in total, including the milestone summary
checklist.
You can view more information about a checklist by clicking the checklist name from the Checklist
view.Figure 2. PCI DSS Milestone Checklist List
Milestones Summary Checklist Overview
To view the Milestones Summary checklist, click Reports > Checklists. Then, select PCIDSS_Milestones.
This view shows a summary of all six milestones in a graphic representation of compliance
history, computers by compliance quartile, and check results history with an overall compliance
percentage shown in the top left corner of the console.
From this view, you can:
View the list of checks by clicking on the number of checks available.
View the list of computers by clicking on the number of computers available.
View the list of checks and computers based on their compliance status.
To view an overview of a specific milestone checklist, click Reports > Checklists. Then, select a milestone: PCIDSS_Milestone_<number>.
The Overview presents a graphic representation of compliance history, computers by compliance
quartile, and check results history with an overall compliance percentage shown in the top left
corner of the console.
From this view, you can:
View the list of checks by clicking on the number of checks available.
View the list of computers by clicking on the number of computers available.
View the list of checks and computers based on their compliance status.
In this example, you can see the overview of the PCIDSS_Milestone_1 checklist.Figure 4. PCI DSS Milestone Checklist Overview
Checks List
You can view the available checks in a checklist in detail by drilling down to the checks. You
can do this by clicking the number of checks displayed on the Checklist Overview page.Figure 5. PCI DSS Milestone Checklist Overview - Checks Link
The Checks List report shows the list of checks in the given scope together with attributes of
each check and the overall, historical aggregate compliance results (the aggregate of all visible
computer’s pass and fail score) of each check.Figure 6. PCI DSS Milestone Check List
List of Computers
You can view the list of computers that are relevant to a specific milestone. To view this
report, click the number of computers displayed on the Checklist Overview page.Figure 7. PCI DSS Milestone Check Overview - Computers Link
This view lists all the computers that are applicable to a particular milestone checklist, in
this case, milestone 1.Figure 8. PCI DSS Milestone Check Overview - Computers Link
List of compliant checks and computers
You can configure the view according to what information you want to display by using the
Configure View option.Figure 9. Configure View Option
In this example, use Filters to specify that you want to view only the checks and computers that
compliant to PCI DSS milestone 1.Figure 10. Configure View Dialog
This view shows which computers and checks are in compliance with a particular milestone
checklist, in this case, milestone 1.Figure 11. Report configured to show compliance to a specific requirement
You can also configure the view to show computers and checks that are not in compliance with a
particular milestone checklist.
