[2025年04月最新リリース]CSP-Assessor問題集でCustomer Security Programme (CSP)認証 [Q19-Q40]

Share

[2025年04月最新リリース]CSP-Assessor問題集でCustomer Security Programme (CSP)認証

最新の完璧なCSP-Assessor問題集問題と解答で100%パスさせます

質問 # 19
Which statement(s) is/are correct about the LSO/RSO accounts on a Swift Alliance Access? (Choose all that apply.)

  • A. Their PKI certificates are stored either on a HSM Token or on a HSM-box
  • B. They are the business profiles that can sign the Swift financial transactions
  • C. They are local Security Officers
  • D. They are responsible for the configuration and management of the security functions of the server

正解:A、C、D


質問 # 20
Is the control 2. 11 "RMA Business Controls" only about the process of validating the defined counterparty relationships?

  • A. No
  • B. Yes

正解:A


質問 # 21
Alliance Lite2 only supports the sending and receiving of FIN messages.

  • A. TRUE
  • B. FALSE

正解:B


質問 # 22
Application Hardening basically applies the following principles. (Choose all that apply.)

  • A. Access on a need to have
  • B. Least Privileges
  • C. Reduced footprint for less potential vulnerabilities
  • D. Enhanced Straight Through Processing

正解:A、B、C


質問 # 23
Which authentication methods are possible on the Alliance Interfaces? (Choose all that apply.)

  • A. Radius One-time password
  • B. Password
  • C. Password and TOTP
  • D. LDAP Authentication

正解:A、B、C、D


質問 # 24
What is expected regarding Token Management when (physical or software-based) tokens are used? (Choose all that apply.)

  • A. Similar to user accounts, individual assignment and ownership for accurate traceability and revocation in case of potential tampering, loss or in case of user role change
  • B. All tokens must be stored in a safe when not used
  • C. Individuals must not share their tokens. Tokens must remain under the control and supervision of its owner
  • D. Have in place a strict token assignment process. This avoids the need to perform g a regular review of assigned tokens

正解:A、C


質問 # 25
In the illustration, identify which components are in scope of the CSCF? (Choose all that apply.)

  • A. Components C, E, M
  • B. Components F, G, H
  • C. Components A, B, K
  • D. Components J, K, I

正解:A


質問 # 26
When hesitant on the applicability of a CSCF control to a particular component? What steps should you take? (Choose all that apply.)

  • A. Call your Swift contact
  • B. Check appendix F of the CSCF
  • C. Check carefully the Introduction section of the CSCF
  • D. Open a case with Swift support via the case manager on swift com if further information or solution cannot be found in the documentation

正解:A、B、C、D


質問 # 27
The objective of the Customer Environment Protection control is to separate the user's Swift infrastructure which restricts malicious access from the external world and from the General IT environment of the Swift user.

  • A. FALSE
  • B. TRUE

正解:B


質問 # 28
What type of control effectiveness needs to be validated for an independent assessment?

  • A. Operational effectiveness needs to be validated
  • B. None of the above
  • C. An independent assessment is a point in time review with possible reviews of older evidence as appropriate
  • D. Effectiveness is never validated only the control design

正解:A


質問 # 29
Using the outsourcing agent diagram. Which components must be placed in a secure zone? (Choose all that apply.)

  • A. Component D
  • B. Component B
  • C. Component C
  • D. Component A

正解:A、D


質問 # 30
Select the correct statement(s).

  • A. The public and private keys of a Swift certificate are stored on the Hardware Security Module
  • B. The certificate stored on the Swift Hardware Security Module is used during the decryption operation of a message
  • C. The decryption operation uses the encryption private key of the receiver
  • D. To verify the signature the SwiftNetLink uses the signing private key of the receiver

正解:A、C


質問 # 31
Which of the following infrastructures has the smallest Swift footprint?

  • A. Full stack of products includinq IPLA
  • B. Alliance Lite2
  • C. Alliance Remote Gateway
  • D. Full stack of products up to the Messaging Interface

正解:B


質問 # 32
Which user roles are available in Alliance Cloud by default. (Choose all that apply.)

  • A. Role and Operator management
  • B. Message Management
  • C. Message Security Administrator
  • D. Administrator

正解:D


質問 # 33

  • A. Option C
  • B. Option B
  • C. 1. Customer Connector
    2. Customer Connector
    3. Customer Connector
    4. Customer Connector
  • D. Option D
  • E. 1. Customer Connector
    2. Bridging Server (Middleware Server)
    3. Customer Connector
    4. Customer Connector
  • F. 1. Customer Connector
    2. Bridging Server (Middleware Server)
    3. Customer Connector
    4. Bridging Server (Middleware Server)
  • G. Option A
  • H. 1. Bridging Server (Middleware Server)
    2. Bridging Server (Middleware Server)
    3. Bridging Server (Middleware Server)
    4. Bridging Server (Middleware Server)

正解:F、G


質問 # 34
In an entity having a small infrastructure and only 2 operators, the HR manager explains in a short interview how the security training is implemented providing one example. Would it be acceptable?

  • A. No. more evidence are required
  • B. Yes. it's a risk based testing approach this can be enough in this case

正解:B


質問 # 35
Can a Swift user choose to implement the security controls (example: logging and monitoring) in systems which are not directly in scope of the CSCE?

  • A. Yes
  • B. No

正解:A


質問 # 36
A Swift user can only exchange FIN messages via the Swift network.

  • A. TRUE
  • B. FALSE

正解:B


質問 # 37
What are the conditions required to permit reliance on the compliance conclusion of a control assessed in the previous year? (Choose all that apply.)

  • A. The control compliance conclusion must have already been relied on the past two years
  • B. The control-design and implementation are the same
  • C. The previous assessment was performed on the (correct) CSCF version of the previous year
  • D. The control definition has not changed

正解:B、C、D


質問 # 38
Must Swift users submit a copy of their final assessment report to Swift?

  • A. Yes, all documents produced from the assessment must be provided proactively to Swift
  • B. Yes, a copy of (only) the assessment report must be provided to Swift, no other documents
  • C. No, it is not required to provide Swift with any documents by default. However, Swift can request a copy of the Assessment completion letter
  • D. Yes, in cases where a customer performs an Independent assessment rather than an audit then a copy of the assessment report must be provided. However, it is not required for the Swift user to provide any forms when an Internal/External Audit is performed

正解:C


質問 # 39
The Swift user has an sFTP server to push files to an outsourcing agent hosting the Swift users own Communication interface. What is their architecture type?

  • A. A3
  • B. A4
  • C. A1
  • D. B

正解:D


質問 # 40
......

最新のCSP-Assessor試験問題集でSwift試験トレーニング:https://jp.fast2test.com/CSP-Assessor-premium-file.html


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어