Enquiry Form

Blogs

Security & SWIFT

Updated On : October 2016  |  by Umashankar Kanchi (Head: SWIFT Business Division, Nelito)

"Security" is one term everybody realizes the importance of most, when it is breached. With more and more security breaches being reported in the financial markets' space, it appears that the awareness towards tighter security has become more pertinent and prominent than ever before. Well, this statement is likely to be true even in future. As the technology is improving convenience, speed and functionalities, equally and parallely new ways of breaching the security are evolving. Isn't it the fight for the one-upmanship between benign & malign elements, always on?

With the world swinging towards faster payments, it has also increased the risk of parting with the money with wrong hands, even faster. The problem assumes more serious note with huge investments seem flowing from institutions and allegedly by some state sponsors too. The conspiracy acts are of truly international in their spread – creation of fictitious accounts for nefarious credits, sustained network intrusions and eaves- dropping of the identified institutions, understanding the internal processes (possibly by way of insider or disgruntled ex-employee involvement), conversion of the booty into crypto currencies or through unorganized / unregulated markets and last but not least attempts to erase the evidences!

While security breaches are not new to the financial world, with the electronic settlements of funds becoming more so efficient, even the trusted names in that space like SWIFT had to shout their perspective of the problem and the steps that are being embarked upon to bring back the point that "S" (as in SWIFT) stands for Safety & Security.  With the responsibility of securely transmitting huge treasury and other payment messages (besides other business messages) on SWIFT (Society for Worldwide Interbank Financial Telecommunications), it is imperative that SWIFT continues to carry the image that it had stood for over the years. While SWIFT has categorically issued statements that its network and Core messaging services have not been compromised, it goes without saying that security can never be seen in isolation. As announced in this year's Sibos event at Geneva, SWIFT is coming out with a 'Customer Security Program' to extend the security and compliance requirements & control points more into the customer environments. Subject to SWIFT board's approval this program is expected to be operative shortly (watch for this space for more information in the coming months).

In order to ensure that the financial ecosystem is safe, it is not sufficient to secure the respective environments but it is equally important to have reasonable security hygiene ensured at the counterparts too. It may be quite common to shoot and thwart a missile in the air but it is very difficult to stop a fully validated real-time customer payment message, once released from the sender. In the recent events where the local systems have been breached, because of the better controls and checks at the Nostro providers' end, deeper damage could be averted and in some cases even completely foiled. These kinds of filters may become as USPs and prove competitive advantages towards deciding correspondent banking relationships.

While no systems can claim to be foolproof and future proof all the times, here are few basic ways of dealing with security threats:

  • Due diligence during onboarding process – This may translate Background Verification Checks for employees and individuals to limiting the business exposure with the correspondents only to the extent business requires. There should be a periodic validation mechanism.
  • Basic security hygiene – password protection and timely changing, giving access to only those required and to the extent required, securing systems with latest security updates.
  • Sharing of information – Dissemination of Potential security breach attempts internally, to regulators, related government agencies and other stakeholders & the relevant staff getting updated with the trends.
  • Systems & Process upgrades – Timely reconciliation, backups and periodic audits.

As somebody very correctly said – you are as secure as your weakest link.

Read More

Also Read

CLIENT SPEAK

  • CBS

    “The Bank is associated with M/S Nelito since 2002. M/S Nelito Systems Ltd has been our CBS vendor since 2009. The Products, quality of service offered by them are excellent. They have a very good support team and are trained enough for handling any type of situation.”

    D K Kandpal | Vice President (IT)

    Nainital Bank
  • MIS ADF

    “Good & Co-operative.”

    Ronniee Gupta | DGM

    UCO Bank
  • CBS

    “We appreciate your local team who continuously supported & assisted our team to meet the goal.”

    Nagendra Nath Sinha | Principal Secretary IT

    Government of Jharkhand, Ranchi
  • CBS

    Knowledge and service provided to the bank is beyond expectation. And we would definitely engage and recommend solution to others .

    Rachelle F. Rivas | IT Project Manager (Senior Manager)

    Bank of the Philippine Islands (BPI)
  • CBS

    • As Vendor strict adherence to process & procedures
    • Risk Mitigants in Place
    • Flexible to customer requirements

    Dinesh Negi | VP (Clg)

    DCB Bank Ltd
  • Custom Application Development testimonial

    Bank has implemented CBS of Nelito Ltd in the year 2008-09 in phase manner. Also integrated RTGS/NEFT, CTS, MMS etc which help us in smooth automation of banking operation.

    K.T. Wadia | CEO

    The Sutex Co-op bank Ltd
  • CBS

    Experience during development of Rating Engine Module has been good in the context of commitment to meet timelines & lot of hard work has been put by Nelito's team.

    Ashuthsoh Satsangi | VP-Operations

    SMERA
  • CBS

    Everything was successfully implemented and tested. The implementation was professionally done in a very efficient and co operative manner. Migration was very smooth.

    Frithjof Ramb | Vice President

    SBI- Frankfurt, Germany
  • CBS

    Nelito and its team has always been supportive and efficient in achieving the tasks set up by the Dept. Appls developed by the software Engrs for the Public Health Dept have proved to be excellent among the top competitors and have been acclaimed for its effective service delivery to the end user at the grass root level which is the the foremost object of any Govt organization. Many thanks for the sincere efforts.

    Sanjay Kamlakar | Under Secretary to GoM

    Govt of Maharashtra