PCI DSS specifies twelve high-level requirements for compliance, organized into six logically related groups called control objectives.
See for yourself how Puppet helps with PCI compliance with:
This checklist will help you quickly apply PCI policies across all systems and enforce them over time.