website logo
HomeGithubSlack
⌘K
Overview
Quick Start
Supported Services
Running CloudGraph in EKS
Compliance
Rules Engine
AWS
Querying AWS Data
AWS Policy Packs
Billing Data
Services
Azure
Querying Azure Data
Azure Policy Packs
Services
GCP
Querying GCP Data
GCP Policy Packs
Services
K8s
Querying Kubernetes Data
Services
Docs powered by archbee 
4min

PCI Data Security Standard V 3.2.1 for GCP

Policy Pack based on the PCI DSS version 3.2.1 benchmark provided by the Payment Card Industry Data Security Standard (PCI DSS).

First Steps

  1. Install Cloud Graph CLI.
  2. Set up the GCP Provider for CG with the cg init gcp command.
  3. Add Policy Pack for GCP PCI DSS benchmark using cg policy add gcp-pci-dss-3.2.1 command.
  4. Execute the ruleset using the scan command cg scan gcp.
  5. Query the findings using the different options:

Querying findings by provider:

GraphQL
|
query {
  querygcpFindings {
    PCIFindings {
      id
      resourceId
      result
      rule {
        id
        severity
        title
        description
        audit
        rationale
        remediation
        references
      }
    }
  }
}


Querying findings by specific benchmark:

GraphQL
|
query {
  querygcpPCIFindings {
    id
    resourceId
    result
    rule {
      id
      severity
      title
      description
      audit
      rationale
      remediation
      references
    }
  }
}


Querying findings by resource:

GraphQL
|
query {
  querygcpProject {
    id
    PCIFindings {
      id
      resourceId
      result
      rule {
        id
        severity
        title
        description
        audit
        rationale
        remediation
        references
      }
    }
  }
}


Available Ruleset

Please see the PCI README for a table of available rules.

Updated 03 Mar 2023
Did this page help you?
Yes
No
UP NEXT
NIST 800-53 Rev. 4 for GCP
Docs powered by archbee 
TABLE OF CONTENTS
First Steps
Available Ruleset