CSP-Assessor試験無料問題集（118題）「Swift Customer Security Programme Assessor Certification 認定」

出題：1

What does the CSCF expect in terms of Database Integrity? (Select the two correct answers that apply)
*Swift Customer Security Controls Policy
*Swift Customer Security Controls Framework v2025
*Independent Assessment Framework
*Independent Assessment Process for Assessors Guidelines
*Independent Assessment Framework - High-Level Test Plan Guidelines
*Outsourcing Agents - Security Requirements Baseline v2025
*CSP Architecture Type - Decision tree
*CSP_controls_matrix_and_high_test_plan_2025
*Assessment template for Mandatory controls
*Assessment template for Advisory controls

A. Nothing is further expected when the messaging interface or connector integrates/embeds an integrity check functionality at each SWIFT transaction record level

B. Alerts generated from performed integrity checks are captured and analyzed for appropriate treatment

C. When a database is used by a messaging interface or connector, the related hosted database and its supporting system is expected to be protected as a SWIFT-related component, the identified exceptions alerted and followed-up

正解：B,C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

The messaging operator in Alliance Lite2... (Select the two correct answers that apply)
*Connectivity
*Generic
*Products Cloud
*Products OnPrem
*Security

A. Can approve messages

B. Can create and modify messages

C. Can approve the Customer Security Officer change requests

D. Can assign RBAC roles to RMA operators and messaging operators

正解：A,B 解答を投票する

出題：3

When hesitant on the applicability of a CSCF control to a particular component? What steps should you take?
(Choose all that apply.)

A. Check carefully the Introduction section of the CSCF

B. Check appendix F of the CSCF

C. Open a case with Swift support via the case manager on swift com if further information or solution cannot be found in the documentation

D. Call your Swift contact

正解：A,B,C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

What are the possible impacts for a SWIFT user to be non-compliant to CSP? (Select the two correct answers that apply)
*Swift Customer Security Controls Policy
*Swift Customer Security Controls Framework v2025
*Independent Assessment Framework
*Independent Assessment Process for Assessors Guidelines
*Independent Assessment Framework - High-Level Test Plan Guidelines
*Outsourcing Agents - Security Requirements Baseline v2025
*CSP Architecture Type - Decision tree
*CSP_controls_matrix_and_high_test_plan_2025
*Assessment template for Mandatory controls
*Assessment template for Advisory controls
*CSCF Assessment Completion Letter
*Swift_CSP_Assessment_Report_Template

A. To be delisted from the BIC directory

B. To be reported to their supervisors (if applicable)

C. To be seen as non-compliant to their counterparts in KYC-SA

D. To be contacted by SWIFT to provide the CSP assessment report and detailed information about the reason of non-compliance

正解：C,D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

Using the outsourcing agent diagram. Which components must be placed in a secure zone? (Choose all that apply.)

A. Component A

B. Component D

C. Component C

D. Component B

正解：A,B,C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

The SWIFT user has a local communication interface as their main channel to SWIFT. For contingency, the SWIFT user also has a connector as a backup channel. What is the architecture type for this SWIFT user?
(Select the correct answer)
*Swift Customer Security Controls Policy
*Swift Customer Security Controls Framework v2025
*Independent Assessment Framework
*Independent Assessment Process for Assessors Guidelines
*Independent Assessment Framework - High-Level Test Plan Guidelines
*Outsourcing Agents - Security Requirements Baseline v2025
*CSP Architecture Type - Decision tree
*CSP_controls_matrix_and_high_test_plan_2025
*Assessment template for Mandatory controls
*Assessment template for Advisory controls
*CSCF Assessment Completion Letter
*Swift CSP Assessment Report Template

A. A2

B. A4

C. A3

D. A1

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

A Swift user has remediated an exception reported by the assessor. What are their obligations before updating and submitting an attestation reflecting the new compliance level?

A. The exception must be re-assessed by the same independent assessor that raised the exception

B. The first line of defense can confirm their level of compliance using a self-assessment approach

C. None, if the remediation has been completed, a new attestation can be submitted reflecting the compliance of the control

D. The exception must be re-assessed by an independent assessor. The assessor can be different to the one who initially raised the exception

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：8

Must Swift users submit a copy of their final assessment report to Swift?

A. Yes, all documents produced from the assessment must be provided proactively to Swift

B. Yes, a copy of (only) the assessment report must be provided to Swift, no other documents

C. No, it is not required to provide Swift with any documents by default. However, Swift can request a copy of the Assessment completion letter

D. Yes, in cases where a customer performs an Independent assessment rather than an audit then a copy of the assessment report must be provided. However, it is not required for the Swift user to provide any forms when an Internal/External Audit is performed

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

There are open exceptions leading to multiple CSP controls being non-compliant. How should the SWIFT user proceed? (Select the correct answer)
*Swift Customer Security Controls Policy
*Swift Customer Security Controls Framework v2025
*Independent Assessment Framework
*Independent Assessment Process for Assessors Guidelines
*Independent Assessment Framework - High-Level Test Plan Guidelines
*Outsourcing Agents - Security Requirements Baseline v2025
*CSP Architecture Type - Decision tree
*CSP_controls_matrix_and_high_test_plan_2025
*Assessment template for Mandatory controls
*Assessment template for Advisory controls
*CSCF Assessment Completion Letter
*Swift_CSP_Assessment_Report_Template

A. The SWIFT user may remediate the exceptions and then re-submit an attestation reflecting the new compliance status, but only after compliance validation by the same independent assessor

B. The attestation cannot be submitted before all exceptions are resolved

C. The SWIFT user may remediate the exceptions and re-submit an updated attestation reflecting the new compliance status but only after compliance validation by an independent assessor

D. The user must remediate all the exceptions within 3 months before submitting the CSP attestation in KYC-SA

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

Select the components a SwiftNet Link (SNL) may communicate with. (Choose all that apply.)

A. The Graphical User Interface

B. The HSM device

C. The VPN boxes

D. The messaging interface (such as Alliance Access)

正解：B,C,D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

CSP-Assessor試験無料問題集「Swift Customer Security Programme Assessor Certification 認定」