Automate, customize, codify and run PCI DSS Compliance with CloudQuery Policies.
CloudQuery policies gives you a powerful way to automate, customize, codify, and run your cloud security & compliance continuously with HCL and SQL. In this blog we will show you how to run our open-source AWS PCI DSS (Payment Card Industry Data Security Standard) compliance policy. Official PCI DSS Guide is available here.
CloudQuery AWS PCI DSS Policy contains more than 40 checks and is available on GitHub.
The policy is split into sections (services) as sub-policies so you can run either the whole policy, sub-policy or even a one specific check. The query itself is defined in a separate file so we can re-use it in other policies (such as CIS or other custom ones).
Running this is as simple as ensuring your database has the latest cloud asset configuration with the fetch command and then executing each of pre-made queries with the policy run command.
Following is a quick start to run the policy. Otherwise checkout full details on our docs.
You can also output the results into a JSON and pass them to downstream processing for automated monitoring and alerting.
Do you have a policy that you want to codify or you’ve been running it with python or bash scripts? You are welcome to try out codifying it with CloudQuery Policies. Feel free to drop on discord or github to get any help and we will share your policy on CloudQuery Hub.
Subscribe for monthly updatesOpen-source, product updates, blog-posts, news and more