Swift CSP-Assessor Exam - Topic 2 Question 27 Discussion

Actual exam question for Swift's CSP-Assessor exam

Question #: 27
Topic #: 2

A Treasury Management System (TMS) application is installed on the same machine as the customer connector (such as MQ server) connecting towards a Service Bureau Are these applications/systems in scope of CSCF?

AThe TMS application, the MQ server and hosting system are in the scope of the CSCF and must be placed in a secure zone

BThe TMS application, the MQ server and hosting system enters the scope of the CSCF advisory and should be placed in a secure zone

COnly the MO server application is in scope of the CSCF> The TMS application is considered as back-office

DThe TMS application is the highest risk and must be secured appropriately. The MQ server should be secured on a best effort basis

Show Suggested Answer

Suggested Answer: A

by Coletta at Jan 05, 2026, 05:16 AM

Limited Time Offer

25%

Off

Get Premium CSP-Assessor Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Pura

3 days ago

Haha, "MO server"? I think they meant "MQ server." Gotta love those typos in exam questions.

upvoted 0 times

...

Louvenia

8 days ago

Option B seems like the most reasonable approach here. The advisory should be followed to ensure proper security measures.

upvoted 0 times

...

Charlesetta

13 days ago

The TMS application, MQ server, and hosting system are definitely in scope of the CSCF. Securing them is crucial.

upvoted 0 times

...

Allene

18 days ago

D seems a bit off to me; I thought all high-risk applications needed to be secured properly, not just on a best effort basis.

upvoted 0 times

...

Joesph

23 days ago

I practiced a similar question where only certain applications were in scope, so C might be tempting, but I feel like it doesn't cover everything.

upvoted 0 times

...

Monte

29 days ago

I'm not entirely sure, but I think B could be a possibility since it mentions advisory, which seems relevant.

upvoted 0 times

...

Rozella

1 month ago

I remember discussing how all components interacting with sensitive data should be in scope, so I think A might be correct.

upvoted 0 times

...

Veronika

1 month ago

This is a tricky one, but I think I can work through it. I'll start by making sure I understand the relationships between the different components, then I'll evaluate each option against the CSCF guidelines.

upvoted 0 times

...

Natalya

1 month ago

I'm feeling pretty confident about this one. The question is clearly asking about the scope of the CSCF, so I'll need to carefully evaluate each option and determine which one best aligns with the CSCF requirements.

upvoted 0 times

...

Loise

2 months ago

Okay, I think I've got a handle on this. The key is to identify which systems are directly involved in the customer connection and data flow. Those would be the ones in scope for the CSCF.

upvoted 0 times

...

Jamika

2 months ago

Hmm, I'm a bit confused by the different systems and applications mentioned. I'll need to make sure I understand the relationships between them before deciding which ones are in scope.

upvoted 0 times

...

James

2 months ago

This question seems a bit tricky. I'll need to carefully read through the details and think about the different components involved.

upvoted 0 times

...