PCI Data Security Standard V 3.2.1 for AWS

Policy Pack based on the PCI DSS version 3.2.1 benchmark provided by the Payment Card Industry Data Security Standard (PCI DSS).

First Steps

  1. Install Cloud Graph CLI.
  2. Set up the AWS Provider for CG with the cg init aws command.
  3. Add Policy Pack for AWS PCI DSS benchmark using cg policy add aws-pci-dss-3.2.1 command.
  4. Execute the ruleset using the scan command cg scan aws.
  5. Query the findings using the different options:

Querying findings by provider:


Querying findings by specific benchmark:


Querying findings by resource:


Available Ruleset

Please see the PCI README for a table of available rules.