I need to understand the SWIFT mandatory security controls and architecture for an RFP. I understand there is 16 mandatory controls?
Is this what you're looking for or do you need something more detailed?
@AlecTrevelyanThank you very much, if you have any more detailed to get my teeth into would be appreciated. If you cannot, I fully understand. This is a good starting point.
I don't have a login but they have quite a few docs that might be of assistance that are publicly available:
@AlecTrevelyanThank you once again, managed to obtain a login to the first tier, need to get associated with a friendly bank to get to the next level. This gives me an awesome start on a tricky road.
Once again many thanks indeed.
I saw this on LinkedIn and thought about this thread - it's an infographic of hacks involving the SWIFT system:
This is dated 2016 and it says it will be continuously updated so I did a quick search but wasn't able to find a newer version (I can't believe there haven't been any more since then), but it could be helpful for you to frame your RFP response.
There's Compliance package available for the Eramba GRC system. You can use the spreadsheet, provided in the eramba documentation, or use the community or enterprise version of the platform to work out the documentation and policies for the standard.