What's new in PCI DSS content update release

HCL BigFix Compliance PCI Add-on provides additional support and enhancement in the recent update.

The provided content outlines recent updates and enhancements to various PCI DSS checklists for different platforms, including MS SQL, MS IIS, Red Hat Linux, Debian Linux, AIX, MacOS, Windows Workstation, and Windows Server.

  • PCI DSS Checklist for MS SQL 2019: Enhanced security, support for the Synchronize Custom Checks wizard, support for Always on Availability Groups (AAG), and applicable for SQL failover clusters.
  • PCI DSS Checklist for MS SQL 2022: Enhanced security, support for the Synchronize Custom Checks wizard, support for Always on Availability Groups (AAG), and applicable for SQL failover clusters.
  • PCI DSS Checklist for MS IIS 10: Enhanced security and implemented additional checks to improve coverage.
  • PCI DSS Checklist for Red Hat Linux (Consolidated): Merged multiple OS-specific checklists (RHEL 7, 8, and 9) into a single, unified checklist to reduce duplication and simplify maintenance, ensuring a more accurate reflection of the system state and compliance posture, and implementing new applicability Fixlets for version management.
  • PCI DSS Checklist for Debian Linux (Consolidated): Merged multiple OS-specific checklists (Debian 10, 11, and 12) into a single, unified checklist to reduce duplication and simplify maintenance, ensuring a more accurate reflection of the system state and compliance posture, and implementing new applicability Fixlets for version management.
  • PCI DSS Checklist for AIX 7.x: Merged multiple OS-specific checklists AIX 7.2 and 7.3 into a single, unified checklist to reduce duplication and simplify maintenance, introduced continuous compliance for 40% of checks using BigFix relevance, and implemented new applicability Fixlets for relevance-based checks.
  • PCI DSS Checklist for MacOS (Consolidated): Merged multiple OS-specific checklists (macOS 13, 14, and 15) into a single, unified checklist to reduce duplication and simplify maintenance, ensuring a more accurate reflection of the system state and compliance posture, and implementing new applicability Fixlets for version management.
  • PCI DSS Checklist for Windows Workstation (Consolidated): Merged multiple OS-specific checklists (Windows 10 and 11) into a single, unified checklist to reduce duplication and simplify maintenance, ensuring a more accurate reflection of the system state and compliance posture, implementing new applicability Fixlets for version management, and adding support for pending restart, deploy, and run actions to improve overall compliance management.
  • PCI DSS Checklist for Windows Server (Consolidated): Merged multiple OS-specific checklists (Windows Server 2016, 2019, 2022, and 2025) into a single, unified checklist to reduce duplication and simplify maintenance, ensuring a more accurate reflection of the system state and compliance posture, implementing new applicability Fixlets for version management, and adding support for pending restart, deploy, and run actions to improve overall compliance management.

For a detailed list of releases, see the PCI DSS Checklists.

PCI DSS Policy Reporting

The new PCI DSS Policy reporting, which is available in BigFix Compliance Analytics V2.0.9, identifies the level of compliance for each system within an entire organization based on a specific PCI DSS requirement or PCI DSS milestone. It also provides a report which shows an aggregated view of compliance data across all PCI DSS checklists. To view the available policy reporting, see PCI DSS policies.
Note: BigFix Compliance PCI Add-on provides the PCI DSS Reporting site to allow you to use the Policy feature in BigFix Compliance Analytics V2.0.9. This site contains the metadata file required for creating the PCI DSS Requirements and Milestones based reports.
Important: You must complete a few other prerequisites before you can use the PCI DSS Policy reporting. For more information, see Setting up the PCI DSS Policy Reports for BigFix Compliance Analytics V2.0 and later.
The PCI DSS Policy reporting enables the following users to prepare and manage compliance for PCI DSS:
  • Compliance Managers can generate reports from a requirements perspective to prepare for the audit report in accordance with the guidelines provided by the PCI Security Standards Council.
  • Compliance Managers and organizations can use the milestone report views during early PCI DSS adoption to understand compliance posture and prioritize actions.
  • IT Managers can map the compliance data to specific computers and assign corresponding personnel to remediate non-compliant checks.

Support for PCI DSS v4.0.1 has been added as the next generation of this standard.