Swift CSP-Assessor Exam Practice Test Instant Access

Question 1

A Treasury Management System (TMS) application is installed on the same machine as the customer connector (such as MQ server) connecting towards a Service Bureau Are these applications/systems in scope of CSCF?

AThe TMS application, the MQ server and hosting system are in the scope of the CSCF and must be placed in a secure zone

BThe TMS application, the MQ server and hosting system enters the scope of the CSCF advisory and should be placed in a secure zone

COnly the MO server application is in scope of the CSCF> The TMS application is considered as back-office

DThe TMS application is the highest risk and must be secured appropriately. The MQ server should be secured on a best effort basis

Answer : A

Question 2

Which of the following statements best describe valid implementations when implementing control 2.9 Transaction Business Controls? (Choose all that apply.)

AMultiple measures must be implemented by the Swift user to validate the flows of transactions are in the bounds of the normal expected business

BA customer designed implementation or a combination of different measures are deemed valid if they sufficiently mitigate the control risks

CReliance on a recent business assessment or regulator response confirming the effectiveness of the control (as an example CPMI's_ requirement) is especially poignant to this control

DAny solutions is acceptable so long as the CISO approves the implementation

Answer : A, B, C

Question 3

Select the correct statement(s) about the Swift Alliance Gateway. (Choose all that apply.)

AIt acts as the single window to SwiftNet messaging services by concentrating your traffic flows

BIt allows sharing of PKI profiles between application or individuals, through the use of virtual profiles

CIt allows the creation and/or modification of some Swift messages (depending on the types &/or formats)

DThe Alliance Gateway can only be accessed by a SWIFTNet user

Answer : A, B

Question 4

How are online SwiftNet Security Officers authenticated?

AVia their PKI certificate

BVia their swift.com account and secure code card

CVia their swift.com account

Answer : A

Question 5

Application Hardening basically applies the following principles. (Choose all that apply.)

ALeast Privileges

BAccess on a need to have

CReduced footprint for less potential vulnerabilities

DEnhanced Straight Through Processing

Answer : A, B, C

Question 6

Which encryption methods are used to secure the communications between the SNL host and HSM boxes?

ANTLS and SSH

BTelnet and SSL

CNTLS and Telnet

DMPLS and SSL

Answer : A

Question 7

The internet connectivity restriction control prevents having internet access on any CSCE m-scope components.

ATRUE

BFALSE

Answer : B

Swift Customer Security Programme Assessor Certification CSP-Assessor Exam Practice Test