<html><body><p><b>IBM BigFix Compliance </b><p><b>Security Configuration Management (SCM)</b><p><br>The IBM BigFix Compliance team has updated the content for various Payment Card Industry Data Security Standard (PCI DSS) DSS checklists. See details below:<br> <br><b>Updated sites:</b><ul><ul><table border="1"><tr valign="top"><td width="244"><div align="center"><b><font face="Arial">Site Name</font></b></div></td><td width="106"><div align="center"><b><font face="Arial">Site Version</font></b></div></td></tr>
<tr valign="top"><td width="244"><font face="Arial">PCI DSS Checklist for MS IIS</font></td><td width="106"><div align="center"><font face="Arial">3</font></div></td></tr>
<tr valign="top"><td width="244"><font face="Arial">PCI DSS Checklist for MS SQL 2008</font></td><td width="106"><div align="center"><font face="Arial">4</font></div></td></tr>
<tr valign="top"><td width="244"><font face="Arial">PCI DSS Checklist for MS SQL 2012 </font></td><td width="106"><div align="center"><font face="Arial">5</font></div></td></tr>
<tr valign="top"><td width="244"><font face="Arial">PCI DSS Checklist for Windows 7</font></td><td width="106"><div align="center"><font face="Arial">3</font></div></td></tr>
<tr valign="top"><td width="244"><font face="Arial">PCI DSS Checklist for Windows 2008</font></td><td width="106"><div align="center"><font face="Arial">3</font></div></td></tr>
<tr valign="top"><td width="244"><font face="Arial">PCI DSS Checklist for Windows 2012</font></td><td width="106"><div align="center"><font face="Arial">4</font></div></td></tr></table></ul>
<ul> *Site versions provided for air-gap customers.</ul></ul><br><br><b>Changelist:</b><ul><font face="Symbol">· </font>Updated content to have a parameterized setting to enable customization for compliance evaluation.<br><font face="Symbol">· </font>Updated content to include requirements from the PCI DSS Requirements and Security Assessment Procedures v3.1.<br><font face="Symbol">· </font>Fixed Fixlets and analyses mismatched links.<br><font face="Symbol">· </font>Updated Fixlets with sufficient descriptions. <br><font face="Symbol">· </font>Updated source ID format for better tracking. </ul><br><b>Actions to take:</b><ul><font face="Symbol">· </font>If you have already subscribed to any of the sites above, no further action needs to be taken. The changes will be gathered automatically. <br><font face="Symbol">· </font>If you have not subscribed to any of the sites above, you can use the License Overview dashboard to enable and gather the sites. Note that you must be entitled to the new content and you are using IBM BigFix version 9.0 and later. <br><font face="Symbol">· </font>If you were involved in the Early Access Program for PCI DSS Security and Compliance, unsubscribe from the beta sites to avoid any conflicting issues with the production sites. If you do not unsubscribe from the beta sites, the content in the production sites will fail.<br><font face="Symbol">· </font>If you are currently licensed for the IBM BigFix Compliance, the BigFix SCMv3 solution module, the BigFix SCVM solution pack, or the BigFix SLM+SCVM solution bundle, contact your IBM sales representative on how to get access to the PCI DSS content.<br></ul><b>Documentation resources: </b><br>For information about using the PCI DSS Checklists, see the User's Guide located here: <a href="https://www.ibm.com/developerworks/community/wikis/home?lang=en#!/wiki/Tivoli%20Endpoint%20Manager/page/Using%20PCI%20DSS%20Checklists">https://www.ibm.com/developerworks/community/wikis/home?lang=en#!/wiki/Tivoli%20Endpoint%20Manager/page/Using%20PCI%20DSS%20Checklists</a><b> </b><br><br>We hope you find this latest release of SCM content useful and effective. Thank you!<br> <br><i> -- The IBM BigFix Compliance team</i><BR>
</body></html>