Cyberattack Derails TfL: The Urgent Need...
Earlier this week a cyberattack on Transport for London (TfL) left its Oyster card and payment systems compromised, causing widespread...
Read MoreBuilding Societies are pivotal in the UK financial services sector, but face significant challenges in cyber security with cyber-attacks becoming more sophisticated all the time. As such, financial institutions are facing significant pressure to safeguard their customers and networks from cyber threats. SWIFT’s Customer Security Programme (CSP) is designed to ensure that financial institutions maintain the necessary controls to counter such threats. By accessing the BoE’s RTGS system through SWIFT, Building Societies are mandated to undergo an annual assessment using SWIFT’s Independent Assessment Framework and subsequently submit an independently audited attestation.
Our Building Society client was given an external auditor finding to implement a Privileged Access Management (PAM) solution. This solution would manage administrator accounts and how they are accessed, ensuring accountability and transparency in system alterations – now seen as an essential requirement for preventing threat actors gaining access to the “keys to the kingdom” administrator accounts. However, conventional PAM solutions available in the market were tailored for larger enterprises and came with substantial costs, rendering them financially unfeasible for smaller organisations like building societies.
Acknowledging the significance of securing a cost-effective yet robust PAM solution aligned with our client’s requirements, we undertook the task of sourcing an alternative product. Following extensive research and evaluation, we pinpointed a PAM solution that not only fulfilled the essential security criteria but also offered scalability tailored to accommodate the budgetary limitations of a building society.
Following the successful implementation, our client seamlessly integrated the PAM solution into their daily operations. With improved governance and monitoring of system administrator accounts, our client effectively met the security audit requirements mandated by external auditors, and strengthened their overall SWIFT CSP compliance.
This case study exemplifies our commitment to providing expert assistance to Building Societies facing challenges in meeting security requirements. By understanding our client’s unique needs and leveraging our expertise and resources, we were able to source a cost-effective PAM solution and facilitate its successful implementation, ultimately enhancing our client’s security posture and compliance efforts.
“We are fully aware that cyber security is one of the biggest challenges impacting Building Societies’ operational and financial resilience in 2024. We are determined to support Building Societies in navigating the complexities of cyber compliance to enable them to safeguard their financial operations against evolving cyber threats.” Geoff Poulter, Cyber Security Specialist.
If you’re facing similar challenges or require assistance with Swift CSP compliance, email us at info@ajollyconsulting.co.uk or call us on 020 7101 4861.
Earlier this week a cyberattack on Transport for London (TfL) left its Oyster card and payment systems compromised, causing widespread...
Read MoreThe United Kingdom has Europe's highest fraud call rate at 9.3%, with people frequently targeted by scammers posing as loved...
Read MoreWith the growing impact of AI across industries, robust governance has become essential. ISO/IEC 42001 is a newly established global...
Read More