Welcome
Payment Card Industry (PCI) Add-on User Guide
The BigFix PCI DSS Add-On is a premium component that provides security configuration checklists that are based the Payment Card Industry Data Security Standard (PCI DSS). These compliance checks are designed to help ensure continuous compliance at every endpoint in your organization.
Overview
HCL BigFix Compliance PCI Add-on is a new chargeable component that provides security configuration checklists that are based on the Payment Card Industry Data Security Standard (PCI DSS). These compliance checks are designed to help ensure continuous compliance at every endpoint in your organization.
What's new in PCI DSS content update release
HCL BigFix Compliance PCI Add-on provides additional support and enhancement in the recent update.
PCI DSS 4.0.1
On June 11, 2024, PCI Security Standards Council (PCI SSC) released PCI Data Security Standard (PCI DSS) version 4.0.1. The PCI DSS is a global standard that establishes a baseline of technical and operational standards for protecting account data. The PCI DSS version 4.0.1 supersedes PCI DSS version 4.0 effective January 1, 2025, to address emerging threats and technologies better and provide innovative ways to mitigate new security risks.

BigFix Documentation Homepage
BigFix AEX
Welcome to the BigFix AEX (Advanced Endpoint Management) documentation.
Runbook AI (Add-on)
The Runbook AI (Add-on) is designed for both BigFix Runbook AI administrators and end users who are working towards the resolution of IT support tickets. Its primary purpose is to help BigFix administrators to easily monitor the health of their servers and initiate well-informed recovery actions with specialized Runbooks AI.
CISA Known Exploited Vulnerabilities (KEV): Overview
The Known Exploited Vulnerabilities (KEV) Content Pack is available as an add-on for BigFix. It is a collection of BigFix Fixlets that is derived from extensive research of the CISA KEV catalog, NVD, and Vendor Advisories. This KEV Content Pack provides BigFix operators with the ability to quickly identify endpoints with vulnerabilities that are high-risk and time-sensitive given that they are known to have been exploited or are actively being exploited.
Payment Card Industry (PCI) Add-on User Guide
The BigFix PCI DSS Add-On is a premium component that provides security configuration checklists that are based the Payment Card Industry Data Security Standard (PCI DSS). These compliance checks are designed to help ensure continuous compliance at every endpoint in your organization.
- Overview
  HCL BigFix Compliance PCI Add-on is a new chargeable component that provides security configuration checklists that are based on the Payment Card Industry Data Security Standard (PCI DSS). These compliance checks are designed to help ensure continuous compliance at every endpoint in your organization.
  - PCI DSS overview
    HCL BigFix Compliance PCI Add-on provides checklists for PCI compliance. The Payment Card Industry Data Security Standard (PCI DSS) is a baseline of technical and organizational requirements that are related to the Payment Card Industry.
  - What's new in PCI DSS content update release
    HCL BigFix Compliance PCI Add-on provides additional support and enhancement in the recent update.
    - PCI DSS 4.0.1
      On June 11, 2024, PCI Security Standards Council (PCI SSC) released PCI Data Security Standard (PCI DSS) version 4.0.1. The PCI DSS is a global standard that establishes a baseline of technical and operational standards for protecting account data. The PCI DSS version 4.0.1 supersedes PCI DSS version 4.0 effective January 1, 2025, to address emerging threats and technologies better and provide innovative ways to mitigate new security risks.
  - PCI DSS checklists
    SCM is organized through checklists that assess and manage the endpoint and server configurations. Each compliance checklist is distributed by BigFix as an external Fixlet site.
  - PCI DSS policies
    BigFix Compliance Analytics V2.0.9 releases a new policy reporting capability, which provides an aggregated view of compliance from a PCI DSS Requirement or PCI DSS Milestone report perspective.
  - Key users
    Learn how users use the PCI DSS checklists for their role.
- Setup
  Complete configuration steps to access the PCI DSS checklists and checks and ensure accurate relevance evaluation on the endpoints.
- Using checks and checklists
  The check Fixlets in Configuration Management checklists assess an endpoint against a configuration standard. Many check Fixlets have a corresponding analysis, sometimes referred to as measured values, that report the value of the element that the check Fixlet evaluates.
- Understanding the results in BigFix Compliance Analytics
  Use BigFix Compliance Analytics (formerly known as Security and Compliance Analytics or SCA) to navigate and explore security configuration check results.
- Resources
  You can find more information about Security Configuration Management and PCI DSS in the following resources.
RHEL ESU Add-On User's Guide
BigFix content supporting Red Hat's Extended Update Support (EUS) and Extended LifeCycle Support (ELS) patching program is available as an add-on to the BigFix Patch, BigFix Lifecycle, and BigFix Compliance products.
Service Graph Connector Integration
The Service Graph Connector is available as an add-on for integrating BigFix Inventory with your CMDB. The connector is designed to support common use cases and requires additional customizations to meet your specific business process requirements. Successful implementation of the connector requires thorough assessment and due diligence, and could involve modifications to input fields or the implementation of specialized reconciliation processes to align with your internal workflows.
Windows ESU Patch Add-On User's Guide
BigFix content supporting the Extended Support Updates (ESU) patching program from Microsoft® is available as an add-on to BigFix Patch, BigFix Lifecycle and BigFix Compliance.
BigFix Patch Workbench Add-On
This topic provides an overview of BigFix Patch Workbench, an automated solution that streamlines patch deployment, reduces tool fragmentation, integrates with ServiceNow, and enhances compliance and productivity across ITSM processes.
Add-ons guides in PDF format
Below is a comprehensive list of links to the Add-ons user guides available in PDF format, designed to assist users in navigating and utilizing the software effectively:

PCI DSS 4.0.1

On June 11, 2024, PCI Security Standards Council (PCI SSC) released PCI Data Security Standard (PCI DSS) version 4.0.1. The PCI DSS is a global standard that establishes a baseline of technical and operational standards for protecting account data. The PCI DSS version 4.0.1 supersedes PCI DSS version 4.0 effective January 1, 2025, to address emerging threats and technologies better and provide innovative ways to mitigate new security risks.

To get more details on PCI DSS version 4.0.1 which is the next generation of the standard, refer to Resource Hub.

BigFix released PCS DSS V4.0.1 for different platforms.

The main highlights of the PCI DSS version 4.0.1 checklist includes:: Increased number of Fixlets are now included in the standard.; Increased number of sub-requirements and milestones.; Increased remediation count.

Note: Starting December 31, 2024, PCI DSS version 4.0 will no longer be supported, and PCI DSS version 4.0.1 will be the only active version of the standard. However, PCI DSS version 4.0 will still be valid for two more years, until it is discontinued on December 31, 2024. During this time, organizations need to understand the changes in PCI DSS version 4.0.1 and implement any necessary updates.

To learn more about the latest release of PCI DSS version 4.0.1, see Release announcement PCI Add-on.