SWIFT Core Security Standards and Requirements

This document outlines the core security standards released by SWIFT, which apply to all SWIFT members. The standards are based on three objectives and eight principles, supported by 16 mandatory and 11 advisory controls. Starting from Q2 2017, members are required to provide detailed self-attestation against the mandatory controls, with enforcement beginning in January 2018. The document details various security measures, including security updates, system hardening, malware protection, software integrity checks, cyber incident response planning, security training, vulnerability scanning, intrusion detection, and penetration testing. Each section specifies the requirements and mentions Kaspersky Lab solutions that can assist in meeting these standards. The document emphasizes the importance of maintaining security protocols and conducting regular assessments to ensure compliance with the established controls.