SWIFT Security Attestation Is your organisation equipped to meet the 31 December 2024 compliance deadline? BackgroundSWIFT has revised counterparty requirements to include an independent assessment as part of the annual counterparty attestation process.A SWIFT attestation is an assessment that ensures organisations meet satisfactory compliance levels against the SWIFT Customer Security Controls Framework (CSCF) as part of the mandated Customer Security Program (CSP), founded on industry accepted principles (PCI-DSS, ISO27001 and NIST)All counterparties must attest before the expiry date of the current control's version, confirming full compliance with the mandatory security controls no later than 31 December each year.The independent assessment can be performed internally by qualified (e.g., QSA, CISSP, CISA, etc.) internal individuals and/or external SWIFT CSP Certified Assessor(s). Download Steps to complianceProtiviti’s Certified Assessors and SWIFT professionals can help your organisation address the SWIFT independent assessment with our experience in working with various SWIFT counterparties locally and internationally. Protiviti can assist you in steps 1, 2 and 3 of the following key steps towards SWIFT CSP controls compliance. How Protiviti can help Secure Your Environment Perform an independent or joint assessment in step 3 of the lifecycle. To analyse current control environments to determine if controls satisfy SWIFT CSP requirements and allow customers to submit their Know Your Customer – Self Attestation (KYC-SA). Strategy and implementation Assist SWIFT counterparties with remediation of identified gaps in mandatory controls or implementing best practice advisory CSP controls within their SWIFT environment and strategic transitions. Independent or co-source assessment Perform the independent assessment leveraging an outsourced or co-sourced delivery model. Leadership Ghislaine Entwisle Ghislaine is a managing director and leader in technology consulting and business performance improvement. She has over 20 years of applied experience across strategy, transformation, and delivery, guiding CIOs, CFOs, CDOs and CISOs in transformational initiatives that ... Learn More Tim Speelman Tim is a director with a track record of developing and implementing strategic plans that align with the demands and gaps of global and local enterprises. Before joining Protiviti, Tim was a regional CISO responsible for APAC within a large recruitment company with core ... Learn More Featured insights BLOGS Year one insights: SEC cybersecurity incident management disclosure rules CFOs should school CISOs on materiality evaluations and reporting to the board, while CISOs can help finance chiefs better understand recovery costs, remediation efforts, single versus aggregate breaches and the nature of compromised data. Partnering... WHITEPAPER Navigating sanctions compliance through the transition to ISO 20022 The International Organisation for Standardisation’s (ISO) new global messaging standard, ISO 20022, is set to be adopted by payment processing organisations globally by 2025. FLASH REPORT NIST Releases Version 2.0 of Its Cybersecurity Framework (CSF): What This Means for Your Organisation On February 26, 2024, The National Institute of Standards and Technology (NIST) released version 2.0 of its updated and widely used Cybersecurity Framework (CSF). This latest edition of the CSF is designed for all audiences, industry sectors and... PODCAST Emerging tech and the future of payments with Swift’s Head of Oceania, Suresh Rajalingam In this VISION by Protiviti interview, Protiviti Director Ruby Chen and Protiviti Senior Director Rupesh Mahto sit down with Swift’s Suresh Rajalingam, who heads up the Oceania region and a team covering 20 countries across the region. Rajalingam is... BLOGS ISO 27002 Is Changing: What You Need To Do ISO 27002 contains details of controls required to be certified under the ISO 27001 standard. With the ever changing security threat landscape and the need to protect information assets, the International Organisation for Standardisation (ISO) has... Button Button
