swift csp-assessor practice test

Swift Customer Security Programme Assessor Certification

Last exam update: Nov 18 ,2025
Page 1 out of 4. Viewing questions 1-15 out of 57

Question 1

A Swift user relies on a sFTP server to connect through an externally exposed connection with a
service provider or a group hub What architecture type is the Swift user? (Choose all that apply.)

  • A. A1
  • B. A2
  • C. A3
  • D. A4
Mark Question:
Answer:

B, D

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 2

Application Hardening basically applies the following principles. (Choose all that apply.)

  • A. Least Privileges
  • B. Access on a need to have
  • C. Reduced footprint for less potential vulnerabilities
  • D. Enhanced Straight Through Processing
Mark Question:
Answer:

A, B, C

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 3

Using the outsourcing agent diagram. Which components must be placed in a secure zone? (Choose
all that apply.)


  • A. Component A
  • B. Component B
  • C. Component C
  • D. Component D
Mark Question:
Answer:

A, D

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 4

In the illustration, identify which components are in scope of the CSCF? (Choose all that apply.)


  • A. Components A, B, K
  • B. Components J, K, I
  • C. Components F, G, H
  • D. Components C, E, M
Mark Question:
Answer:

D

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 5

Can a Swift user choose to implement the security controls (example: logging and monitoring) in
systems which are not directly in scope of the CSCE?

  • A. Yes
  • B. No
Mark Question:
Answer:

A

User Votes:
A
50%
B
50%
Discussions
vote your answer:
A
B
0 / 1000

Question 6

Select the correct statement(s) about the Swift Alliance Gateway. (Choose all that apply.)

  • A. It acts as the single window to SwiftNet messaging services by concentrating your traffic flows
  • B. It allows sharing of PKI profiles between application or individuals, through the use of virtual profiles
  • C. It allows the creation and/or modification of some Swift messages (depending on the types &/or formats)
  • D. The Alliance Gateway can only be accessed by a SWIFTNet user
Mark Question:
Answer:

A, B

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 7

The internet connectivity restriction control prevents having internet access on any CSCE m-scope
components.

  • A. TRUE
  • B. FALSE
Mark Question:
Answer:

B

User Votes:
A
50%
B
50%
Discussions
vote your answer:
A
B
0 / 1000

Question 8

Select the correct statement(s).

  • A. The public and private keys of a Swift certificate are stored on the Hardware Security Module
  • B. The certificate stored on the Swift Hardware Security Module is used during the decryption operation of a message
  • C. The decryption operation uses the encryption private key of the receiver
  • D. To verify the signature the SwiftNetLink uses the signing private key of the receiver
Mark Question:
Answer:

A, C

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 9

The Swift HSM boxes:

  • A. Are located at the network partner premises and managed by Swift
  • B. Are located at the Swift user premises and managed by Swift
  • C. Are located at the Swift user premises and managed by the Swift user
  • D. Are located at the network partner premises and managed by Swift the network partner
Mark Question:
Answer:

C

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 10

What type of control effectiveness needs to be validated for an independent assessment?

  • A. Effectiveness is never validated only the control design
  • B. An independent assessment is a point in time review with possible reviews of older evidence as appropriate
  • C. Operational effectiveness needs to be validated
  • D. None of the above
Mark Question:
Answer:

C

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 11

How are online SwiftNet Security Officers authenticated?

  • A. Via their PKI certificate
  • B. Via their swift.com account and secure code card
  • C. Via their swift.com account
Mark Question:
Answer:

A

User Votes:
A
50%
B
50%
C
50%
Discussions
vote your answer:
A
B
C
0 / 1000

Question 12

Select the correct statement about Alliance Gateway.

  • A. It is used to exchange messages over the Swift network
  • B. It is used to create messages to send over the Swift network
Mark Question:
Answer:

A

User Votes:
A
50%
B
50%
Discussions
vote your answer:
A
B
0 / 1000

Question 13

When hesitant on the applicability of a CSCF control to a particular component? What steps should
you take? (Choose all that apply.)

  • A. Call your Swift contact
  • B. Check appendix F of the CSCF
  • C. Check carefully the Introduction section of the CSCF
  • D. Open a case with Swift support via the case manager on swift com if further information or solution cannot be found in the documentation
Mark Question:
Answer:

A, B, C, D

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 14

The cluster of VPN boxes is also called managed-customer premises equipment (M-CPE).

  • A. TRUE
  • B. FALSE
Mark Question:
Answer:

A

User Votes:
A
50%
B
50%
Discussions
vote your answer:
A
B
0 / 1000

Question 15

The Swift user would like to perform their CSP assessment in May for the CSCF version that will only
be active as from July the same year. Is it allowed?

  • A. No, an assessment can only be done on the active version of the CSCF
  • B. Yes, the assessment on a particular version can start before the actual activation date
Mark Question:
Answer:

A

User Votes:
A
50%
B
50%
Discussions
vote your answer:
A
B
0 / 1000
To page 2