Customer Security Programme (CSP)

Similar documents
SWIFT Response to the Committee on Payments and Market Infrastructures discussion note:

How to meet SWIFT s operational requirements in 2018

SWIFT Customer Security Controls Framework and self-attestation via The KYC Registry Security Attestation Application FAQ

Strengthening your fraud and cyber-crime protection controls. March 2017

SWIFT Customer Security Program

CSDs and Securities Market Infrastructures

Consultancy for Trade and Supply Chain Finance Track Criteria

SWIFT Customer Security Programme

Preempting Cyber Fraud: SWIFT Threat Indicator Sharing Tool. Cyber Security 3.0 Better Together August 18, 2017

The road to SWIFT 2020 in Russia and CIS

Annual Review 2016 Annual Review 016 swif t.com

Secure Access & SWIFT Customer Security Controls Framework

Key Findings from the Global State of Information Security Survey 2017 Indonesian Insights

INFORMATION SECURITY. One line heading. > One line subheading. A briefing on the information security controls at Computershare

Standards Release 2017 (SR 2017): Frequently Asked Questions related to the SWIFT global payment innovation (gpi) service

ASSESSMENT LAYERED SECURITY

If you are having difficulties viewing this please click here. Home Ordering & Support myswift August 2017

Cybersecurity and the Board of Directors

Securing Privileged Access and the SWIFT Customer Security Controls Framework (CSCF)

SR 2018 Business Highlights

CYBER RESILIENCE & INCIDENT RESPONSE

SR 2019 Business Highlights

On Audit of FOREX Transactions

CyberEdge. End-to-End Cyber Risk Management Solutions

Cybersecurity A Regulatory Perspective Sara Nielsen IT Manager Federal Reserve Bank of Kansas City

SWIFT Certified Applications RTGS. Technical validation Guide Version 1.1

SFC strengthens internet trading regulatory controls

Activities of the Second Quarter 2018

the SWIFT Customer Security

Standing Together for Financial Industry Resilience Quantum Dawn 3 After-Action Report. November 19, 2015

Best Practices. Usage Guideline Editor. Standards. For MyStandards

Commonwealth Cyber Declaration

SWIFT SERVICES. Enabling the global exchange of electronic financial messages. Delivering value. Enabling success. Integrated Services

GLobal Action on CYbercrime (GLACY) Assessing the Threat of Cybercrime in Mauritius

Standing Together for Financial Industry Resilience Quantum Dawn IV after-action report June 2018

Evolution of Cyber Security. Nasser Kettani Chief Technology Officer Microsoft, Middle East and Africa

Collateral Management

Digital Health Cyber Security Centre

Service Description MA-CUG. Solutions. For SWIFT for Corporates

10 KEY WAYS THE FINANCIAL SERVICES INDUSTRY CAN COMBAT CYBER THREATS

Security In A Box. Modular Security Services Offering - BFSI. A new concept to Security Services Delivery.

Authentication and Fraud Detection Buyer s Guide

RSA Solution Brief. Managing Risk Within Advanced Security Operations. RSA Solution Brief

Preface Entity Identifiers Directory Publication BIC Usage...7

Operations Guide - ADVANCE INFORMATION

Info Paper ISO for Financial Institutions

GDPR Update and ENISA guidelines

TECHLAW AUSTRALIA. Update on cyber security and data protection. Thursday, 22 June Thursday, 22 June

SWIFT Overview. Association of International Bank Auditors. Amanda De Castro, Sales Services James Wills, Banking Initiatives, Standards

Information Security Specialist. IPS effectiveness

Cyber Risks in the Boardroom Conference

Information Security Controls Policy

IPS with isensor sees, identifies and blocks more malicious traffic than other IPS solutions

Electronic payments in the Netherlands

Protecting Against Modern Attacks. Protection Against Modern Attack Vectors

DHS Cybersecurity. Election Infrastructure as Critical Infrastructure. June 2017

Caribbean Cyber Security: Not Only Government s Responsibility

Gujarat Forensic Sciences University

Building your ISO implementation roadmap

UNCLASSIFIED. National and Cyber Security Branch. Presentation for Gridseccon. Quebec City, October 18-21

Corporate-to-Bank Guidelines

Management Frameworks

Global Security Consulting Services, compliancy and risk asessment services

External Supplier Control Obligations. Cyber Security

GEORGIA CYBERSECURITY WORKFORCE ACADEMY. NASCIO 2018 State IT Recognition Awards

locuz.com SOC Services

ISRAEL NATIONAL CYBER SECURITY STRATEGY IN BRIEF

Cybersecurity Guidance for Small Firms Thursday, November 8 9:00 a.m. 10:00 a.m.

Building an Effective Threat Intelligence Capability. Haider Pasha, CISSP, C EH Director, Security Strategy Emerging Markets Office of the CTO

Emerging Issues: Cybersecurity. Directors College 2015

SWIFT 7.2 & Customer Security. Providing choice, flexibility & control.

Action Fraud & the NFIB. DS Martina MCGRILLEN

ASX ReferencePoint ISO Intra-Day Corporate Actions. SWIFT Readiness Guide

EBAM for Corporates. SWIFT Certified Application. Label Criteria 2018

Launch of the Cybersecurity Fortification Initiative by the HKMA at Cyber Security Summit 2016

FTA 2017 SEATTLE. Cybersecurity and the State Tax Threat Environment. Copyright FireEye, Inc. All rights reserved.

Protecting organisations from the ever evolving Cyber Threat

Security-as-a-Service: The Future of Security Management

General Information for Service Bureau

TAN Jenny Partner PwC Singapore

Cyber Security. February 13, 2018 (webinar) February 15, 2018 (in-person)

Security and Compliance for Office 365

Workday s Robust Privacy Program

User Guide. Bankers World Online

Cyber Security Technologies

SECURITY & PRIVACY DOCUMENTATION

CYBER SECURITY AND THE PENSIONS INDUSTRY Karen Tasker 1 February 2018

SOC 3 for Security and Availability

RTGS Application. SWIFT Certified Application. Label Criteria 2018

Recommendations for Small and Medium Enterprises. Event Date Location

Chain 365 Cyber Threat Intelligence Enterprise & Cyber Security. August 2017

ISACA GEEK WEEK SECURITY MANAGEMENT TO ENTERPRISE RISK MANAGEMENT USING THE ISO FRAMEWORK AUGUST 19, 2015

RSA NetWitness Suite Respond in Minutes, Not Months

RSA INCIDENT RESPONSE SERVICES

ASX - AU - Austraclear SWIFT Messaging - V1 - DRAFT_900_Confirmation of Debit (Response to inward MT103/MT202 Message)

Cybersecurity and Nonprofit

This Online Gaming Company Didn t Want to Roll the Dice on Security That s Why it Worked with BlackBerry

Donor Countries Security. Date

RSA INCIDENT RESPONSE SERVICES

BHConsulting. Your trusted cybersecurity partner

Transcription:

Customer Security Programme (CSP) ACSDA General Assembly Overview Thomas Trépanier April - 2017

Legal Notices: COPYRIGHT SWIFT 2017 - All rights reserved. You may copy this document within your organisation. Any such copy must include these legal notices. CONFIDENTIALITY This document contains SWIFT or third-party confidential information. Do not disclose this document, in whole or in part, outside your organisation without the prior written consent of SWIFT. TRADEMARKS SWIFT is the trade name of S.W.I.F.T. SCRL. The SWIFT logo is a registered trademark of SWIFT. DISCLAIMER The information provided in this document is for information purposes only, AS IS and without representation or warranty of any type. The user of such information is solely responsible for any decision or action taken based upon this document. SWIFT disclaims all responsibility and liability in connection with use of this document. 2

The global provider of secure financial messaging services

40 years serving the global financial community 1980: First Asian countries connect to SWIFT 1986: SWIFT launches value-added services 1987: SWIFT launches securities services 2001: SWIFTNet goes live 2004: ISO 20022 introduction 2008: SWIFT launches Alliance Lite 2009: SWIFT launches Innotribe 70s 80s 90s 00s 10s 1973: Swift is born 1976: First operating centre opens 1977: SWIFT goes live first message sent 1979: North America connects to SWIFT 2012: SWIFT launches Sanctions Screening and Testing 2013: SWIFT opens operating centre in Switzerland and corporate services centre in Kuala Lumpur 2014: SWIFT s KYC Registry goes live 1992: Interbank File Transfer goes live 1994: Customer support centre opens in Hong Kong 1997: SWIFT technology centre opens in the United States

SWIFT in figures 27.5 million FIN messages peak day (2015) 6.1+ billion FIN messages per year (2015) 11,000+ SWIFT users 200+ 8.8% Increase in FIN traffic (2015) Countries and territories

SWIFT users Banks Fund Managers Central Counterparties Clearing & Settlement Systems Corporates Broker-Dealers ICSDs Central Banks Global Custodians CSDs Stock Exchanges Depositories Trade Repositories

SWIFT 2020 strategic priorities Messaging Many-to-Many Market Infrastructures Integration & Interfaces Shared Services Grow and strengthen core many-tomany financial messaging, connectivity and closely adjacent products and services Build our Financial Crime Compliance portfolio to meet the full spectrum of related challenges Expand and deepen offerings for Market Infrastructures

SWIFT 2020 strategic priorities Messaging Integration & Interfaces Cyber Security Shared Services

Why is it important? Cyber challenges are here to stay

Cyber Security - Need for Action Generic Wire Fraud Cyber Crime 27% Institutions experienced direct wire payment fraud in 2014 1 Gangs Are professionals and run their activities like a business. The larger the potential return the more they will invest in their fraudulent activities Wire payments are the most direct way to move high values out of a bank 93% increase Wire payment fraud between 2013 and 2014 1 3 rd most frequent Fraud area in US after cheque and card fraud 1 Note 1: US Payments Fraud and Control Survey, Association of Finance Professionals, 2015 10

Risk Risk Cyber Security - Need for Action Generic Wire Fraud Least Fraud Threat Bank Customers Bank Channels Sending Bank Interface Interface Receiving Bank Bank Channels Bank Customers SWIFT IP Network Back Office SWIFT Interface / Connectivity SWIFT Interface / Connectivity Back Office Insider fraud occurs where malware or social engineering is used to inject wire payments directly into the network In most cases, fraudsters aim to defeat outof-band controls that would highlight their activity to the customer / institution Most incidents of wire fraud are associated with account compromise, malware or social engineering 11

CSP Modus Operandi Step 1 Step 2 Step 3 Step 4 Attackers Attackers Attackers compromise obtain valid submit Attackers hide customer's operator fraudulent the evidence environment credentials messages Attackers are well-organised and sophisticated Common starting point has been a security breach in a customer s local environment In all cases, the SWIFT s network and core messaging services have not been compromised

CSP Framework Customer Security Programme While all SWIFT customers are individually responsible for the security of their own environments, a concerted, industry-wide effort is required to strengthen end-point security In 2016, SWIFT announced its Customer Security Programme that supports customers in reinforcing the security of their SWIFT-related infrastructure CSP focuses on mutually reinforcing strategic initiatives, and related enablers 13

CSP You > Helping customers to secure and protect their local environments 1. Security Controls Framework 2. Customer Security Attestation Process 3. Specific interface and third party security guidance documents 4. Reinforcement of SWIFT tools

CSP You > SWIFT Tools SWIFT Tools Further strengthen security requirements for interfaces, tools and software (including those from third-parties) to better protect local environments and continue efforts to harden SWIFT-provided products Actions to Date Release 7.1.14 Release 7.1.20 and 7.0.70 with stronger default password management, enhanced integrity checking and in-built 2FA for Alliance Access clients who do not have existing 2FA implementations Started bilateral engagement with vendors on thirdparty certification for interface providers Release 7.0.50 for Alliance Gateway and SWIFTNet Link introducing enhanced integrity monitoring capabilities SAG/SNL 7.0.50 and SAA 7.1.21 Lite2 Autoclient Q1 2017 February Security Update (SAA 7.1.21, SAG/SNL 7.0.51) covering the complete product portfolio Forward planning AMH 3.6 Q2 2017 Access 7.2 Q2 2017 Focus on enforcement of mandatory updates 15

CSP You > Security Guidelines and Assurance Q2 2016 Q3 2016 Q4 2016 H1 2017 H2 2017 2018 Milestones Collateral V0 for Validation V1 Mandatory Alliance R7.2 Community Engagement Bilateral Consultation Validation Self Attestation Pilot Self Assessment Inspections Pilot Inspections 16

CSP Your Counterparts > Transaction Pattern Detection Prevent and Detect: two primary goals Enhance transaction controls: Investigate methods to enable community to prevent and detect fraudulent transactions and identify payment risks. Pre-transaction controls, in-flight detection and post-transaction checks. Improve market practice: Adoption of best practice to improve community response to cyber-incidents and fraud. Actions to Date Enhance transaction controls: Pre-transaction: Launch of global RMA campaign to promote use of existing tools as a first line of defence against unwanted or unexpected message flows Post-transaction: Daily Validation Reports launched which help customers identify possible security concerns in their daily transaction flows Market practice: Information paper on best practice related to statements and cancellations Next Steps Development of market practice for correspondent banking fraud and stopping/cancelling payments, with the SWIFT community Define an approach for RMA extensions Further exploration of In-flight payment controls 17

CSP Transaction Pattern Detection - DVR

CSP Your Counterparts > Daily Validation Report Activity Reports Aggregate Daily Activity Message type Currency Country Counterparties Daily volume total Daily value total Maximum value of single transactions Comparisons to daily volume and value averages Risk Reports Large or Unusual Message Flows Based on Ordered Lists Largest single transactions Largest aggregate transactions for counterparties New counterparty relationships 19

CSP Your Community > Intelligence Sharing Intelligence Sharing Deepen our cyber security forensics capabilities so that we can create unique intelligence on SWIFTrelated events and disseminate anonymised information to the community Actions to Date Established a Customer Security Intelligence (CSI) forensics team that has built a detailed inventory of malware, e.g. File Hashes / Indicators of Compromise / Modus Operandi / FAQs Contribution of intelligence to existing organisations, such as FS-ISAC and published anonymised threat intelligence to the community Launched Security Notification Service Engagement in industry forums and on a bilateral basis with customers, at CISO and COO level Building a comprehensive CISO network Next Steps Expand SWIFT s information sharing platforms and share best practice with the SWIFT community as well as the cyber intelligence community, e.g. ISACs/CERTs 20

CSP Your Community > Third-Party Providers Third-Party Providers Structural enhancement of customer security requires the extensive support of third-party providers, e.g. security software and hardware, consulting and training, implementation services, providers of fraud detection solutions, service bureaus and auditors Foster a secure ecosystem through partner programmes, organisation of industry events where such providers can engage with our customers, certification programmes and other measures Next Steps Extend third-party certification programmes to reflect security requirements Engage through industry events, Innotribe and SWIFT Institute, including Sibos

CSP Your Community > Customer Engagement and Communications General Actions for Customers You Secure your local environment Sign up to our Security Notification Service Stay up to date with SWIFT s latest security updates Get ready to adopt our mandatory security requirements Your Community Your Counterparts Inform SWIFT if you suspect that you have been compromised Provide contact details of your company s CISO for incident escalation Clean-up your RMA relationships Put in place fraud detection measures Engage with us on market practice

CSP Your Community > Customer Engagement and Communications Customer Security Programme www.swift.com/csp Security Notification Service https://www2.swift.co m/idm/myinfo/newslett ers.faces CISO Chief Information Security Officer: https://www.swift.com/ orderingsupport/customersecurity-programmecsp_/contact-us/cisoregistration 23

CSP Open Discussion? Questions and open discussion GTB-BPC meeting at Sibos 26 September 2016 24

www.swift.com 25

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback