BigFix Compliance PCI Add-on provides additional reports to show a cumulative compliance
state of your endpoints based on the PCI DSS Requirements.
The PCI DSS Requirements reports are generated based on the Requirements and Security
Assessment Procedures document. Each requirement has a corresponding
checklist.
Note: PCI DSS requirements 3, 9, 11, and 12, which are process-oriented in
nature, are not covered in BigFix Compliance.
These reports contain checklists that are mapped from the PCI DSS requirements and
sub-requirements as seen in the following figure. The mapping was used in creating the checklists
for the requirements perspective. Figure 1. PCI DSS Requirement mapping
Each requirement has a corresponding checklist. To view the list of checklists, which represent
the PCI DSS requirements, click Reports > Checklists. You can view more information about a checklist by clicking the checklist name from
the Checklist view.Figure 2. PCI DSS Requirement Checklist List
Checklist Overview
To view an overview of a specific requirement checklist, click Reports > Checklists. Then, select a requirement checklist:
PCIDSS_Requirement_<number>.
The Overview presents a graphic representation of compliance history, computers by compliance
quartile, and check results history with an overall compliance percentage shown in the top left
corner of the console.
From this view, you can:
View the list of checks by clicking on the number of checks available.
View the list of computers by clicking on the number of computers available.
View the list of checks and computers based on their compliance status.
Checks List
You can view the available checks in a checklist in detail by drilling down to the checks. You
can do this by clicking the number of checks displayed on the Checklist Overview page.Figure 3. PCI DSS Requirement Checklist Overview - Checks Link
This view shows a list of all checks, each in its cumulative state, for a requirement checklist.
In the following figure, the cumulative state for each check for requirement 10 is displayed.Figure 4. PCI DSS Requirement Check List
Check Overview
You can drill down to a specific check to view an overview of the cumulative check result. To do
this, you can either click on a check name from the check list (as shown in the previous screenshot)
or click Reports > Checks and select the cumulative check or click any check in the list.
This view shows a graphic representation of compliance history and check results history for a
particular check, in this case, requirement 10.2.Figure 5. PCI DSS Requirement Check Overview
List of Computers
You can view the list of computers that are relevant to a specific requirement. To view this
report, click the number of computers displayed on the Checklist Overview page.Figure 6. PCI DSS Requirement Check Overview - Computers Link
This view shows a list of all computers with additional information, such as operating system. It
also shows the corresponding compliance status for each computer.Figure 7. PCI DSS Requirement Check Overview - Computers Link
List of compliant checks and computers
You can configure the view according to the information that you want to display by using the
Configure View option.Figure 8. Configure View Option
In this example, use Filters to specify that you want to view only the checks and computers that
compliant to PCI DSS requirement 10.Figure 9. Configure View Dialog
This view shows which computers and checks are in compliance with a particular requirement
checklist, in this case, requirement 10.Figure 10. Report configured to show compliance to a specific requirement
You can also configure the view to show computers and checks that are not in compliance with a
particular requirement checklist.
