AWS releases PCI DSS Quick Start for Deploying PCI DSS In-Scope Workloads

Communications Team, Coalfire

In the next step to help customers adopt their platform for PCI, Amazon Web Services (AWS) has released their PCI DSS Quick Start program.  The PCI DSS Quick Start program is the next evolution of cloud providers developing tools for rapid deployment of standardized configurations to drive adoption in heavily regulated industries.  The Quick Start program was wholly developed by AWS field teams to help provide guidance on reference architectures, configuration and tools to rapidly deploy the guidance.

PCI DSS Quick Start for Deploying PCI DSS In-Scope Workloads

The Quick Start program includes critical elements that any organization would require to begin to deploy an environment to align with PCI DSS requirements.  This includes initial pre-requisite configurations of the platform to allow the deployment scripts complete without error.  The program also provides pre-defined scripts that can be deployed in whole or in part by organizations to leverage only elements of the accelerator that the organization feels are necessary.  The deployment scripts are also customizable to allow organizations to utilize the rapid deployment capabilities and take into account existing configuration and needs of the organization.  Finally, the scripts can be run from an organizationally-managed S3 bucket and saved for scripting and use with CloudFormation for ongoing deployment and management and scalability of the environment.
Coalfire performs the PCI validation for a variety of AWS services (VPC, S3, etc) that are included used in the Quick Start program at least annually.  Many of the services that are used by the Quick Start program are included in the PCI assessment, however, Coalfire has not performed any official PCI validation for the Quick Start configurations.  Organization that use the Quick Start program will still need to maintain the controls  required by the PCI DSS on an ongoing basis.

Communications Team


Communications Team — Coalfire

Recent Posts

Post Topics



Accounting Agency AICPA Assessment assessments ASV audit AWS AWS Certified Cloud Practitioner AWS Certs AWS Summit bitcoin Black Hat Black Hat 2017 blockchain Blueborne Breach BSides BSidesLV Burp BYOD California Consumer Privacy Act careers CCPA Chertoff CISO cloud CMMC CoalfireOne Compliance Covid-19 credit cards C-Store Culture Cyber cyber attacks Cyber Engineering cyber incident Cyber Risk cyber threats cyberchrime cyberinsurance cybersecurity danger Dangers Data DDoS DevOps DevSecOps DFARS DFARS 7012 diacap diarmf Digital Forensics DoD DRG DSS e-banking Education encryption engineering ePHI Equifax Europe EU-US Privacy Shield federal FedRAMP financial services FISMA Foglight forensics Gartner Report GDPR Google Cloud NEXT '18 government GRC hack hacker hacking Halloween Health Healthcare heartbleed Higher Education HIMSS HIPAA HITECH HITRUST HITRUST CSF Horror Incident Response interview IoT ISO IT JAB JSON keylogging Kubernetes Vulnerability labs LAN law firms leadership legal legislation merchant mobile NESA News NH-ISAC NIST NIST 800-171 NIST SP 800-171 NotPetya NRF NYCCR O365 OCR of P2PE PA DSS PA-DSS password passwords Payments PCI PCI DSS penetration Penetration Testing pentesting Petya/NotPetya PHI Phishing Phising policy POODLE PowerShell Presidential Executive Order Privacy program Ransomware Retail Risk RSA RSA 2019 Safe Harbor Scanning Scans scary security security. SOC SOC 2 social social engineering Spectre Splunk Spooky Spraying Attack SSAE State Stories Story test Testing theft Virtualization Visa vulnerability Vulnerability management web Wifi women XSS