PAYMENT SYSTEMS SECURITY
SWIFT CSP Assessment
Independent assessment to meet SWIFT CSP Compliance
Trusted by global institutions and governments
Independent and Objective
WICS is an independent and objective 3rd party assessor who can meet CSP requirements
CSCF v.2023 & Custom checklist
Run a cybersecurity assessment against the most recent version of the CSCF framework with a custom-built and comprehensive WICS checklist for security.
Technical Services
Protect SWIFT infrastructure (Servers, Operator PCs, middleware) by running vulnerability assessments which are required for CSP compliance.
ABOUT SWIFT SECURITY REVIEW
SWIFT Security Review (CSP Review)
Remote & Global Services
Cyber attacks on global financial institutions continue to pose a threat. As a result of a number of targeted breaches in recent years, SWIFT has issued mandatory customer security controls to establish a security baseline for the entire industry.
Our SWIFT CSP Security Assessment is a comprehensive risk assessment and policy review which provides assurance of the highest level of cybersecurity posture for banks, financial institutions, and users of the SWIFT / similar payment systems. The service can be used to provide attestation to SWIFT’s mandatory CSP guidelines.
WICS has helped provide attestation for governments, commercial entities, and International Development and Financial Institutions worldwide. We have developed a unique ‘Payment System Review’ framework with 300+ security controls based on the latest SWIFT CSP framework and our own industry experiences.
WICS was an investigator for the largest cyber heist in history at the Central Bank of Bangladesh in 2016. Find out more HERE
WHY CHOOSE US
Why choose WICS?
Trust and Experience
- WICS was incident responder to the world’s largest cyber heist at the Central Bank of Bangladesh 2016.
- Cost-effective service using onsite/offshore delivery model
- Certified cybersecurity engineers (CISSP, CEH, OSCP, CHFI)
- Proven project experience, with clients including United Nations & Central Banks.
- Direct involvement with real-world SWIFT cyber-attacks
- Unreleased cyber-threat intelligence, including malware strings used in SWIFT attacks
- Receive industry benchmarks for your organization
- Value-added technical services including VAPT and OS hardening
ABOUT SWIFT CSP
Our SWIFT CSP Security Assessment
All financial institutions using the SWIFT platform are required by SWIFT to provide attestation to security guidelines set forth in the customer security controls framework (CSCF).
WICS review is an anchor for customers to provide attestation to SWIFT for their cybersecurity posture. All users must comply by end of December with CSCF guidelines. Starting from 2021, all users must utilize a 3rd party (independent) assessment.
WICS: SWIFT CSP Overview:
- Scope Review: Our review starts with a comprehensive review of the elements in scope. WICS management will work with your organization or Internal Audit team to determine relevant infrastructure in scope, architecture type, and value-added services requested.
- Architecture Review: WICS project director will review policy and architecture documents and meet with key stakeholders to perform a risk-based assessment of your organization’s SWIFT environment.
- CSP Checklist Assessment: WICS certified engineers will perform a compliance and gap assessment of security controls against our custom detailed checklist, which meets SWIFT CSP attestation requirements.
- Technical Testing (Vulnerability Assessments on SWIFT infrastructure): WICS value-added services include vulnerability assessments and penetration testing on SWIFT-facing infrastructure. Detailed technical vulnerability reports and remediation reports will be produced.
- Executive Report & Remediation Roadmap: WICS project director will produce a high-level report detailing the findings of the SWIFT assessment and provide technical and advisory (board level) remediation plans. WICS project director will deliver a final management presentation and summarize key strategic decisions to consider.
WHY CHOOSE US
7+ Years of SWIFT CSP Expertise
Our consultants have been on the frontlines of real SWIFT cyber attacks including the historic $101 million cyber attack at the Central Bank of Bangladesh.
Trusted Company
SWIFT CSP Services trusted by the United Nations, Global Organizations and Central Banks
Expertise
Experienced cyber consultants with CSP curriculum and cyber (ISO 270001, CISSP) certifications
Technical Support Services
WICS incorporates technical security assessments on your SWIFT infrastructure to detect vulnerabilities that can be leveraged by hackers.
24/7 Support
Remote Services work around the clock to deliver projects remotely (or onsite) with 100% client satisfaction.
What we offer
Our Services
Security Testing Services (VAPT)
Security Operation Center (SOC)
Governance, Risk & Compliance
Ensure compliance and best-practice protections in cybersecurity by aligning to industry standards such as NIST, ISO, PCI-DSS and SWIFT.
Incident Response
IT Helpdesk Support
We provide 24×7 IT Helpdesk solutions to help organizations boost productivity and reduce downtime with our efficient and reliable IT helpdesk solutions.
Cyber Training and Awareness
Support a culture of cybersecurity awareness and safety at your organization through targeted training and assessments.