Configuring Security Hub for PCI DSS v4

Question

Hi everyone,

I'm currently working on the PCI DSS certification and I'm facing a challenge. While I've found the PCI DSS v3.2.1 standard in Security Hub, my auditors are requiring compliance with the latest version, PCI DSS v4.

Does anyone have experience with configuring Security Hub to meet the requirements of PCI DSS v4? Any guidance or best practices would be greatly appreciated.

Thanks in advance!

Praveen Muppala · Answer

Hi Mdcravero,

Currently, AWS Security Hub does not include direct coverage for PCI DSS v4.0. However, AWS provides an alternate solution through **AWS Config Conformance Packs**, which can help implement operational best practices for PCI DSS v4.0, including global resource types. You can find more details here:  
[Operational Best Practices for PCI DSS v4.0 with AWS Config](https://docs.aws.amazon.com/config/latest/developerguide/operational-best-practices-for-pci-dss-v4-including-global-resource-types.html)

I also recommend reviewing this informative blog post:  
[PCI DSS v4.0 on AWS Compliance Guide Now Available](https://aws.amazon.com/blogs/security/pci-dss-v4-0-on-aws-compliance-guide-now-available/)

Additionally, **AWS Audit Manager** offers a prebuilt framework tailored to support PCI DSS v4.0, streamlining the compliance process. More details can be found here:  
[AWS Audit Manager PCI DSS v4.0 Framework](https://docs.aws.amazon.com/audit-manager/latest/userguide/pci-v4.html)

Configuring Security Hub for PCI DSS v4

Add your answer

Relevant content