Blog
Treasury 4.x - Trends for Insurers
The productivity and performance of the treasury function within insurance companies have undergone a transformative evolution, driven by the emergence of what is now termed Treasury 4.x.
Find out moreWe are excited to announce that Zanders has been listed on the Swift Customer Security Programme (CSP) Assessment Providers directory*.
The CSP helps reinforce the controls protecting participants from cyberattack and ensures their effectivity and that they adhere to the current Swift security requirements.
*Swift does not certify, warrant, endorse or recommend any service provider listed in its directory and Swift customers are not required to use providers listed in the directory.
A new attestation must be submitted at least once a year between July and December, and also any time a change in architecture or compliance status occurs. Customer attestation and independent assessment of the CSCF v2023 version is now open and valid until 31 December 2023. July 2023 also marks the release of Swifts CSCF v2024 for early consultation, which is valid until 31 December 2024.
Swift introduced the Customer Security Programme to promote cybersecurity amongst its customers with the core component of the CSP being the Customer Security Controls Framework (CSCF). Independent assessment has been introduced as a prerequisite for attestation to enhance the integrity, consistency, and accuracy of attestations. Each year, Swift releases an updated version of the CSCF that needs to be attested to with support of an independent assessment.
The Attestation is a declaration of compliance with the Swift Customer Security Controls Policy and is submitted via the Swift KYC-SA tool. Dependent on the Swift Architecture used, the number of controls to be implemented vary; of which certain are mandatory, and others advisory.
Further details on the Swift CSCF can be found on their website:
Do you have arrangements in place to complete the independent assessment required to support the attestation?
Zanders has experience with and can support the completion of an independent external assessment of your compliance to the Swift Customer Security Control Framework that can then be used to fully complete and sign-off the Swift attestation for this year.
With an extensive track record of designing and deploying bank integrations, our intricate knowledge of treasury systems across both IT architecture as well as business processes positions us well to be a trusted independent assessor. We draw on past projects and assessments to ask the right questions during the assessment phase, aligning our customers with the framework provided by Swift.
The Swift attestation can also form part of a wider initiative to further optimise your banking landscape, whether that be increasing the use of Swift within your organisation, bank rationalization or improving your existing processes. The availability of your published attestation and its possible consultation with counterparties (upon request) helps equally in performing day-to-day risk management.
Planning
We start with rigorous planning of the assessment project, developing a scope of work and planning resources accordingly. Our team of experts will work with clients to formulate an Impact Assessment based on the most recent version of the Swift Customer Security Controls Framework.
Architecture Classification
A key part of our support will be working with the client to formulate a comprehensive overview of the system architecture and identify the applicable controls dictated by the CSCF.
Perform Assessment
Using our wide-ranging experience, we will test the individual controls against specific scenarios designed to root out any weaknesses and document evidence of their compliance or where they can be improved.
Independent Assessment Report
Based on the evidence collected, we will prepare an Independent Assessment report which includes status of the compliance against individual controls, baselining them against the CSCF and recommendations for improvement areas within the system architecture.
Post Assessment Activities
Once completed, the Independent Assessment report will support you with the submission of the Attestation in line with the requirements of the CSCF version in force, which is required annually by Swift. In tandem, Zanders can deliver a plan for implementation of the recommendations within the report to ensure compliance with current and future years’ attestations. Swift expects controls compliance annually, together with the submission of the attestation by 31 December at the latest, in order to avoid being reported to your supervisor. Non-compliant status is visible to your counterparties.
We are thrilled to offer a Swift CSP Independent Assessment service and look forward to supporting our clients with their attestations, continuing their commitment to protecting the integrity of the Swift network, and in doing so supporting their businesses too. If you are interested in learning more about our services, please contact us directly.
The productivity and performance of the treasury function within insurance companies have undergone a transformative evolution, driven by the emergence of what is now termed Treasury 4.x.
Find out moreIn the second instalment of the Zanders series on the DRM model, the Risk Management Strategy (“RMS”) and the DRM process are introduced and with it the new concepts that the IASB have
Find out moreIn January 2022, the OECD incorporated Chapter X to the latest edition of their Transfer Pricing Guidelines, a pivotal step in regulating financial transactions globally. This addition
Find out moreIn the first half of 2024, European treasurers are confronted with a new item on their agenda: the updated EMIR Refit. The new EMIR reporting rules will be implemented in the EU on the
Find out moreOur technology partnerships are core, foundational elements of our risk and treasury transformations at Zanders. For us to guide our clients through their digitalization journeys and keep
Find out moreIn large organizations, the tendency is to select large scale ERP systems to support as much of the organization's business processes within this system. This is a goal that is driven
Find out moreThe current standards for hedge accounting present significant challenges for financial institutions engaged in dynamically hedging their portfolios. The corresponding type of hedging
Find out moreEconomic instability, a pandemic, geopolitical turbulence, rising urgency to get to net zero – a continuousstream of demands and disruption have pushed businesses to their limits in recent
Find out moreThe European Committee (EC) has approved the regulatory technical standards (RTS) that include the specification of the Net Interest Income (NII) Supervisory Outlier Test (SOT). The
Find out moreThe European Banking Authority (EBA) published its roadmap on the Banking Package, which implements the final Basel III reforms in the European Union. This roadmap develops over four phases,
Find out moreThis paper offers a straightforward analysis of the Basel Committee on Banking Supervision's standards on crypto asset exposures and their adoption by 2025. It critically assesses
Find out moreIn recent years, consumers’ and investors’ interest in sustainability has been growing. Since 2015, assets under management in ESG funds have nearly tripled, the outstanding value of
Find out moreModel risk from risk models has become a focal point of discussion between regulators and the banking industry. As financial institutions strive to enhance their model risk management
Find out moreWe touch upon the main difficulties experienced by financial institutions in the Netherlands based on a combination of project experience, results of a survey, main attention points from
Find out moreIn October 2023, the European Banking Authority (EBA) published a report[1] with recommendations for enhancements to the Pillar 1 prudential framework to reflect environmental and social
Find out moreLiquidity and funding risk While European banks generally have sufficient liquidity, there are potential challenges on the horizon. Recent events, including bank failures in the United
Find out moreBut what happens after implementation, when the project team has packed up and handed over the reins to the employees and support staff? The first months after a system implementation can
Find out moreIn this article, we explore this stablecoin payments trial, examine the advantages of digital currencies and how they could provide a matching solution to tackle the hurdles of international
Find out moreAdditionally, business partners are essential in SAP for recording information related to securities issues, such as shares and funds. The SAP Treasury Business Partner (BP) serves as a
Find out moreBut the adoption of ISO 20022 XML messaging goes beyond SWIFT’s adoption in the interbank financial messaging space – SWIFT are currently estimating that by 2025, 80% of the RTGS (real
Find out more