You: Secure and Protect
To support the industry, SWIFT is maintaining a core set of mandatory and advisory security controls. Those controls evolve over time with new and arising threats, the development of security-related regulations in major jurisdictions, developments in cybersecurity practice, new technology usage and feedback provided by the SWIFT community.
The mandatory and advisory security controls can be found in the SWIFT Customer Security Controls Framework (CSCF). Customers must log in with their swift.com credentials to access the document (Knowledge Centre > Security >Customer Security Programme > SWIFT Customer Security Controls Framework - Detailed Description).
To ensure adoption, and to complement the SWIFT Customer Security Controls Framework, SWIFT has published further details of the related attestation policy and process in the SWIFT Customer Security Controls Policy.
We regularly enhance the security features of our products to assist SWIFT users in addressing security concerns. Examples include, stronger default password management, enhanced integrity checking and built-in two-factor authentication (MFA).
Each of our security products as a roadmap for development and updates are combined with expert security guidance (see Tip 5020786). Our security updates allow you to maintain your systems at the highest levels of protection.