C Certs Club
Home
Oracle SAP Microsoft Cisco CompTIA Fortinet Salesforce Nutanix Linux Foundation Amazon View All Vendors →
Login Register

Swift CSP-Assessor - Customer Security Programme Assessor Certification Certification Exam

Download Exam View Entire Exam
Page: 1 / 1
Question #1 (Topic: demo questions)

Can a Swift user choose to implement the security controls (example: logging and monitoring) in
systems which are not directly in scope of the CSCE?

\

A. True
B. False
Correct Answer: A
Explanation:
SWIFT Customer Security Programme (CSP) / CSCF-related documents, including:
  • Security Controls Policy
  • Security Controls Framework v2024
  • Independent Assessment Framework
  • Assessor Guidelines
  • Test Plan Guidelines
  • Outsourcing Agents Security Baseline
  • CSP Architecture Decision Tree
  • Mandatory and Advisory Control Templates

Question #2 (Topic: demo questions)

Swift user relies on a sFTP server to connect through an externally exposed connection with a
service provider or a group hub What architecture type is the Swift user? (Choose all that apply.)


A.
A1
B.
A2
C.
A3
D.
A4
Correct Answer: B, D
Explanation:

A SWIFT user that relies on an SFTP server to connect through an externally exposed connection with a service provider or a group hub is classified as both an A2 and A4 architecture type. It falls under A2 because the user connects to the SWIFT environment indirectly through an external service provider rather than operating the full SWIFT infrastructure independently. It also qualifies as A4 because the connection is established through a shared service arrangement, such as a service provider or group hub, where connectivity and related services are managed on behalf of the user. Since the organization depends on an externally exposed SFTP connection provided by another party and does not maintain a direct SWIFT interface itself, both architecture types apply. Therefore, A2 and A4 are the correct ch
Question #3 (Topic: demo questions)

Application Hardening basically applies the following principles. (Choose all that apply.)


A.
Least Privileges
B.
Access on a need to have
C.
Reduced footprint for less potential vulnerabilities
D.
Enhanced Straight Through Processing
Correct Answer: A, B, C
Explanation:
The correct answers are A. Least Privileges, B. Access on a Need-to-Have Basis, and C. Reduced Footprint for Less Potential Vulnerabilities.
Application Hardening is the process of securing applications by minimizing their attack surface and reducing security risks. It follows the principle of least privilege, which ensures that users, processes, and applications are granted only the minimum permissions required to perform their functions. It also enforces access on a need-to-have basis, meaning access rights are provided only when necessary for business or operational purposes. Another key principle is maintaining a reduced footprint, which involves disabling or removing unnecessary services, features, accounts, and software components to decrease the number of potential vulnerabilities that attackers could exploit. Enhanced Straight Through Processing (STP) is related to improving the efficiency of transaction processing and automation, not to application hardening or security strengthening. Therefore, A, B, and C are the correct answers.

Question #4 (Topic: demo questions)

Using the outsourcing agent diagram. Which components must be placed in a secure zone? (Choose
all that apply.)


A.
Component A
B.
Component B
C.
Component C
D.
Component D
Correct Answer: A, D
Explanation:

In the Outsourcing Agent architecture, components that handle sensitive SWIFT-related operations, process financial messages, store critical data, or provide access to the SWIFT environment must be placed within a secure zone. Component A is located where critical SWIFT processing or connectivity functions occur, making it essential to protect it from unauthorized access and cyber threats. Component D must also reside in the secure zone because it contains or manages sensitive SWIFT assets and communications that require the highest level of security controls. Components B and C do not directly perform these critical functions and therefore are not required to be placed in the secure zone. Consequently, A and D are the correct answers. ✅
Download Exam
Page: 1 / 1
Next Page