CAMS Certified Anti-Money Laundering Specialist (the 6th edition) Questions and Answers

 According to the Egmont Group of Financial Intelligence Units, which is a global network of FIUs that promotes information exchange and cooperation, FIUs making requests to another FIU should disclose the reason and purpose for the request, andprovide feedback on how the information was used12. These actions are intended to enhance mutual trust, transparency, and accountability between FIUs, and to facilitate the effective use of financial intelligence and information for combating money laundering, terrorist financing, and other financial crimes12. FIUs making requests should also respect the confidentiality and data protection requirements of the FIU receiving the request, and avoid imposing unreasonable or unduly restrictive conditions12.

FIUs making requests should not send the same request to all FIUs, as this would be inefficient, unnecessary, and potentially harmful. FIUs should only send requests to FIUs that are relevant and competent to provide the information they need, based on the nature and scope of the case12. Sending the same request to all FIUs could overload the system, create duplication, and compromise the security and confidentiality of the information12. FIUs making requests should also make best efforts to provide complete andfactual information, but this is not an action they should take when submitting a request, but rather when responding to a request from another FIU12.

Egmont Group of Financial Intelligence Units Operational Guidance for FIU Activities and the Exchange of Information

Principles for Information Exchange Between Financial Intelligence Units

https://www.bis.org/publ/bcbs85.pdf - page 12

Banks should gather sufficient information about their respondent banks to understand fully the nature of the respondent’s business. Factors to consider include: information about the respondent bank’s management, major business activities, where they are located and its money-laundering prevention and detection efforts; the purpose of the account; the identity of any third party entities that will use the correspondent banking services; and the condition of bank regulation and supervision in the respondent’s country. Banks should only establish correspondent relationships with foreign banks that are effectively supervised by the relevant authorities. For their part, respondent banks should have effective customer acceptance and KYC policies.

The activities that could be considered a potential spear phishing scam are:

A courier delivers a duplicate invoice to a business that contains updated payment details of an existing supplier. This could be a way of diverting funds to a fraudulent account by impersonating a legitimate vendor and exploiting the trust relationship between the business and the supplier1.

Payroll receives an external email from an employee looking to update their bank account information. This could be a way of stealing money from the employee or the employer by pretending to be the employee and requesting a change in the payment method or destination2.

An employee receives an email that asks to download an attachment, but the attachment is a malware. This could be a way of infecting the employee’s computer or network with malicious software that could compromise sensitive data, disrupt operations, or demand ransom3.

The other options are not necessarily spear phishing scams, although they may be other types of fraud or deception. For example:

An employee receives a phone call requesting that money be sent to assist someone in trouble. This could be a vishing scam, which is a form of voice phishing that uses phone calls to solicit personal or financial information or to request money transfers4.

A business sends its employees an email warning that email passwords must be changed to prevent cyber-fraud. This could be a legitimate security measure, or it could be a phishing scam, which is a form of email phishing that targets a broad audience and tries to trick them into revealing their credentials or clicking on malicious links.

Members of a religious organization receive a donation request by email claiming to be from their leader. This could be a genuine appeal, or it could be a social engineering scam, which is aform of manipulation that exploits the human factor and relies on the victim’s emotions, trust, or sympathy.

The first Financial Action Task Force (FATF) initiative was the 40 Recommendations on Money Laundering, which were issued in April 1990, less than a year after the FATF was established by the G7 summit in Paris in 1989. The 40 Recommendations aimed to provide a comprehensive plan of action to fight money laundering by setting out the principles and measures for effective legal, regulatory, and operational frameworks at the national and international levels. The 40 Recommendations have been revised and updated several times since then, most recently in 2022, to reflect the evolving trends and techniques of money laundering and to include the issues of terrorist financing and the financing of proliferation of weapons of mass destruction.

The other options are not the first FATF initiative, but they are related to the FATF’s work and mandate. The Report on Non-Cooperative Countries and Territories (NCCTs) was launched in 2000 to identify and monitor the jurisdictions that did not comply with the FATF standards and posed a risk to the international financial system. The Report on Money Laundering Typologies was first published in 1996 and has been updated annually to provide an analysis of the methods, techniques, and trends of money launderingand to assist the FATF members and observers in developing effective countermeasures. The Special Recommendations on Terrorist Financing were issued in October 2001, following the September 11 attacks, to complement the 40 Recommendations and to address the specific challenges of combating the financing of terrorism and terrorist acts.

History of the FATF, 1

Financial Action Task Force - Wikipedia, 2

Financial Action Task Force (FATF): What it is, How it Works - Investopedia, 3

The FINANCIAL ACTION TASK FORCE (FATF) - INSIGHTSIAS, 4

it describes a reason why trusts established in certain offshore jurisdictions make good vehicles to layer money, which is names of the settlor and beneficiaries are not publicly available. This means that the true owners and controllers of the funds or assets held by the trust are hidden from the public and the authorities, and can only be accessed by the trustee or the protector, who may be complicit or unaware of the money laundering scheme. This creates a high level of anonymity and secrecy for the money launderers, who can use the trust to move, disguise, or conceal the origin and destination of their illicit funds.

The other options are not necessarily reasons why trusts established in certain offshore jurisdictions make good vehicles to layer money, although they may have some advantages or disadvantages depending on the circumstances and the risk profile of the customers and countries involved. Option B describes a possible motive for setting up a trust in an offshore jurisdiction, which is to minimize taxes, but this does not imply that the trust is used to layer money, as there may be legitimate tax planning or optimization purposes. Option C describes a possible challenge or obstacle for setting up a trust in an offshore jurisdiction, which is offshore jurisdictions are unfamiliar with trust, but this does not imply that the trust is used to layer money, as there may be other legal or financial vehicles available in those jurisdictions. Option D describes a possible characteristic or feature of a trust, which is trusts may hold assets of significant size, but this does not imply that the trust is used to layer money, as there may be valid reasons or sources for the large assets.

ACAMS CAMS Certification Video Training Course - 6th Edition1

Exam CAMS: Certified Anti-Money Laundering Specialist (the 6th edition)2

ACAMS CAMS Study Guide - 6th Edition, Chapter 4, pages 86-87

https://www.acams.org/wp-content/uploads/2019/09/ACAMS-CAMS-Study-Guide-6th-Edition-Chapter-4.pdf

 it describes the organization that a national Financial Intelligence Unit (FIU) should consider becoming a member of, which is the Egmont Group. The Egmont Group is an international network of FIUs that was established in 1995 to facilitate the exchange of financial intelligence and information among its members, and to promote cooperation and coordination in the fight against money laundering and terrorist financing. The Egmont Group currently has 166 member FIUs from different jurisdictions, and provides them with various benefits, such as access to secure communication channels, bestpractices, training, and technical assistance. The Egmont Group also works closely with other international organizations, such as the Financial Action Task Force (FATF), the United Nations, and the World Bank, to enhance the global anti-money laundering and counter-terrorist financing (AML/CTF) framework.

The other options are not necessarily organizations that a national FIU should consider becoming a member of, although they may have some relevance or influence on the AML/CTF field. Option B describes the Wolfsberg Group, which is an association of 13 global banks that was formed in 2000 to develop standards and guidance for the financial industry on AML/CTF and other financial crime issues. The Wolfsberg Group is not an organization for FIUs, but rather for financial institutions. Option C describes the Financial Action Task Force (FATF), which is an inter-governmental body that was established in 1989 to set the international standards and recommendations for AML/CTF and to monitor the compliance and effectiveness of its members and other jurisdictions. The FATF is not an organization for FIUs, but rather for governments and policy-makers. Option D describes the Basel Committee, which is a forum of central bank governors and heads of banking supervision authorities from 28 jurisdictions that was established in 1974 to enhance the quality and consistency of banking supervision and regulation. The Basel Committee is not an organization for FIUs, but rather for banking regulators and supervisors.

ACAMS CAMS Certification Video Training Course - 6th Edition1

Exam CAMS: Certified Anti-Money Laundering Specialist (the 6th edition)2

ACAMS CAMS Study Guide - 6th Edition, Chapter 5, pages 108-109

https://www.acams.org/wp-content/uploads/2019/09/ACAMS-CAMS-Study-Guide-6th-Edition-Chapter-5.pdf

According to the Certified Anti-Money Laundering Specialist (CAMS) Sixth Edition manual, elements that can trigger a review of the existing relationship during the opening of a new account include recent adverse media on the client (page 60) and incoming transfers from high-risk jurisdictions (page 61). The other elements listed, such as regular checks on the flow of funds, a false positive result for name screening, and an estimated total income decrease, are not triggers for a review.

 A U.S. bank must block or reject an international funds transfer when there is an OFAC designated party to the transaction, regardless of the beneficiary or the correspondent bank. This is because the U.S. bank is prohibited from dealing with any person or entity that is on the Specially Designated Nationals and Blocked Persons List (SDN List) or subject to any other OFAC sanctions program1. The SDN List includes individuals, groups, and entities, such as terrorists and narcotics traffickers, that are designated under programs that are not country-specific2. The U.S. bank must also report any blocked or rejected transactions to OFAC within 10 business days3.

 1: FFIEC BSA/AML Office of Foreign Assets Control - Office of Foreign … 2: Specially Designated Nationals And Blocked Persons List (SDN) Human … 3: [Reporting Blocked Transactions | Office of Foreign Assets Control]

When a high volume of incoming wire transfers generates an alert about a client and the funds are immediately debited by cash withdrawals and outgoing wire transfers, the first information that should be reviewed to investigate this alert/case is the customer’s account activity. This is because the account activity can reveal the origin, destination, purpose, frequency, and amount of the wire transfers, as well as any unusual or inconsistent patterns that may indicate money laundering or fraud. The account activity can also help to compare the wire transfers with the customer’s profile, risk rating, expected behavior, and source of funds. Reviewing the account activity can help to determine if the alert is a false positive or a true positive, and if further investigation or reporting is required.

A large cash deposit is a red flag for money laundering when it is inconsistent with the customer’s profile, behavior, or business activity. A customer who has never conducted a transaction in cash before may be trying to avoid detection or conceal the source of the funds. A customer who transacts in segments smaller than the reporting thresholds at various times during the day may be engaging in structuring or smurfing, which are techniques to evade currency transaction reporting requirements. A customer who follows a large cash deposit with an immediate wire transfer to an offshore secrecy haven may be attempting to layer or move the funds to a jurisdiction with weak anti-money laundering controls or high confidentiality. These scenarios indicate a high risk of money laundering and warrant further investigation and reporting.

A customer who operates a cash-based business may have a legitimate reason to make a large cash deposit, depending on the nature and scale of the business. However, this does not mean that the customer is exempt from scrutiny or monitoring, as cash-based businesses are also vulnerable to money laundering abuse. The bank should verify the source and purpose of the funds, and compare the deposit with the customer’s expected activity and turnover.

CAMS Certification Package - 6th Edition, Chapter 4: Conducting and Supporting the Investigation Process, pp. 97-98.

Warning signs of money laundering | The Law Society, Section: Cash deposits and withdrawals.

 The best option for the compliance officer is to follow the financial institution’s established STR reporting policy, which should include procedures for reporting suspicious activity involving senior management or board members. This would ensure that the compliance officer acts in accordance with the bank’s internal controls and governance, and avoids any potential conflicts of interest or breaches of confidentiality. The other options are not advisable because they could either compromise the integrity of the STR filing, expose the compliance officer to legal or reputational risks, or alert the subject of the investigation.

ACAMS Study Guide for the CAMS Certification Examination, 6th Edition, Chapter 4, page 1401

ACAMS CAMS Certification Video Training Course, Module 4, Lesson 22

ACAMS CAMS Certification Practice Exam, Question 843

 According to the Anti-Money Laundering Specialist (the 6th edition) resources, one of the challenges of online financial technologies is the difficulty of verifying the identity and legitimacy of the customers and counterparties. This creates opportunities for money launderers and other criminals to exploit the anonymity and speed of online transactions to move and conceal illicit funds. The other options are not directly related to the money laundering risk posed by online financial technologies.

ACAMS Study Guide for the Certified Anti-Money Laundering Specialist (the 6th edition), Chapter 5: Risk-Based Approach, page 133.

ACAMS Study Guide for the Certified Anti-Money Laundering Specialist (the 6th edition), Chapter 7: Money Laundering Risks and Methods, page 203.

According to the Certified Anti-Money Laundering Specialist (CAMS) Sixth Edition manual, the AML compliance officer should inform senior leadership and the board of the investigation (page 124) and monitor the progress of the investigation by keeping clear records (page 127). Additionally, the AML compliance officer should provide all information to the FIU as soon as possible to avoid delays (page 126).

According to the CAMS Manual, when a financial institution is being investigated by the financial intelligence unit (FIU), the AML compliance officer should inform senior leadership and the board of the investigation and monitor the progress of the investigation by keeping clear records. The manual states:

"The AML compliance officer should inform senior leadership and the board of any investigations and then monitor the progress of the investigation by keeping clear records of what has been requested and submitted, deadlines and extensions granted, and any findings or reports received. This will allow the financial institution to respond effectively and efficiently to the investigation and take appropriate action if necessary." (CAMS Manual, Section 7.4.1 - Financial Intelligence Units, p. 366)

Money laundering and terrorist financing are both forms of financial crime that involve the movement of illicit funds. However, they differ in the source and purpose of the funds. Money laundering is the process of disguising the origin, ownership, or destination of funds that are derived from illegal activities, such as drug trafficking, fraud, or tax evasion. Terrorist financing is the provision or collection of funds, by legitimate or illegitimate means, for the purpose of carrying out terrorist acts. Therefore, the anti-money laundering specialist should consider the following factors in developing a compliance program:

Related practices are used to conceal the nature of the funds. Both money launderers and terrorist financiers use similar methods to hide the true identity, source, or destination of the funds, such as using shell companies, front organizations, complex transactions, cash couriers, or cryptoassets. A compliance program should include measures to identify and verify the customers, beneficial owners, and counterparties involved in the transactions, as well as to monitor and report any suspicious or unusual activities.

Similar techniques are used to move funds. Both money launderers and terrorist financiers use the same stages of placement, layering, and integration to move funds through the financial system. Placement is the introduction of illicit funds into the legitimate financial system, such as by depositing cash, purchasing assets, or transferring funds electronically. Layering is the separation of the funds from their source, such as by using multiple accounts, jurisdictions, or intermediaries. Integration is the re-entry of the funds into the legitimate economy, such as by investing in businesses, real estate, or securities. A compliance program should include measures to detect and prevent the movement of illicit funds through the financial system, such as by applying risk-based due diligence, record-keeping, and transaction limits.

CAMS Certification Package - 6th Edition | ACAMS

CAMS Certifications: How to Get CAMS Certified | ACAMS

ACAMS CAMS Certification Video Training Course - Exam-Labs

Exam CAMS: Certified Anti-Money Laundering Specialist (the6th edition)

According to the 6th edition Certified Anti-Money Laundering Specialist Study Guide, when the compliance department receives an internal referral that appears to indicate terrorist financing, the first step in the investigation process should be to gather background and transaction information. This includes obtaining customer identification and verifying customer data, obtaining additional information about the customer and the transaction, and reviewing the transaction activity. This information will help to determine if the referral is accurate and if further action is needed.

Broker-dealers cannot have correspondent accounts with a foreign bank that does not have a physical presence in any country. The USA PATRIOT Act has an extraterritorial effect in that it prohibits broker-dealers from having correspondent accounts with foreign banks that do not have a physical presence in any country. This rule is designed to help prevent money laundering and terrorist financing by making it more difficult for funds to be moved to or through jurisdictions with less stringent anti-money laundering laws.

Thethird line of defense (internal audit)providesindependent oversightof an institution’sAML/CFT compliance framework.

Option B (Correct):The internal audit function should report to the board’s audit committeeto maintainindependence and objectivity.

Option A (Incorrect):While frequent audits are essential, AML audits should be risk-based rather than mandated at a strict 12-month interval.

Option C (Incorrect):Internal audit must assess remediation plansto ensure they adequatelyaddress AML deficiencies.

Option D (Incorrect):The third line of defense should not be involved in daily AML operationstoavoid conflicts of interest.

Three Lines of Defense in AML Risk Management:

A screenshot of a computer Description automatically generated

Best Practices for AML Audit Function:

Ensure complete independence from AML operations.

Conduct risk-based audits tailored to emerging threats.

Report audit findings to the board for effective oversight.

The company regularly understating the value of goods exported is an indicator of possible money laundering because it may suggest that the company is involved in trade-based money laundering (TBML), which is the process of disguising the proceeds of crime and moving value through the use of trade transactions in an attempt to legitimise their illicit origins or finance their activities. One of the common TBML techniques is over-invoicing or under-invoicing, which involves manipulating the price, quantity or quality of goods or services in order to transfer value between the importer and exporter. By understating the value of goods exported, the company may be transferring funds to a foreign counterpart who is either a co-conspirator or a third-party money launderer, who will then pay the company the difference in cash or through other means. This way, the company can avoid currency reporting requirements, evade taxes, conceal the source and destination of funds, and integrate the illicit proceeds into the formal economy.

ACAMS Study Guide for the CAMS Certification Examination, 6th Edition, Chapter 2:Money Laundering Risks and Methods, page 381

Trade-Based Money Laundering: Trends and Developments, FATF-Egmont Group, December 2020, page 282

Trade-Based Money Laundering and Terrorist Financing, Global Investigations Review, September 20233

According to the ACAMS study guide, one of the best practices for dealing with law enforcement inquiries is to verify the identity and authority of the law enforcement officer before providing any information (p. 224). This is to ensure that the inquiry is legitimate and not a phishing attempt or a breach of confidentiality. The compliance officer should also document the inquiry and the information provided, and consult with legal counsel if necessary. The other options are not appropriate, as they may either violate the law, compromise the investigation, or create unnecessary work.

ACAMS. (2020). Study Guide for the Certification Examination for Anti-Money Laundering Specialists (6th ed.). Miami, FL: ACAMS.

What Is An AML Officer1

Bank Secrecy Act/Anti-Money Laundering: Requests by Law Enforcement for Financial Institutions to Maintain Accounts 2

Institutions that violate anti-money laundering laws may face various risks and consequences, such as legal, regulatory, reputational, and operational risks. As demonstrated by the 2012 HSBC settlement with United States authorities, two of the most significant risks are:

Forfeiture of assets. This means that the institution may have to surrender some or all of its assets that are related to the money laundering activities or violations. For example, HSBC agreed to forfeit $1.256 billion as part of its deferred prosecution agreement with the US Department of Justice1.

Civil money penalties. This means that the institution may have to pay fines or penalties to the government or other regulatory agencies for violating the anti-money laundering laws or regulations. For example, HSBC agreed to pay $665 million in civil money penalties to various US regulators, including the Office of Foreign Assets Control, the Federal Reserve Board, and the Office of the Comptroller of the Currency1.

The other two options, C and D, are not as common or relevant to the 2012 HSBC settlement. Loss of bank charter/license may occur in extreme cases where the institution is deemed unfit to operate or poses a serious threat to the financial system. Imprisonment of bank employees may occur if the employees are found guilty of criminal charges, such as fraud, conspiracy, or wilful violation of anti-money laundering laws. However, these outcomes are usually reserved for individuals, not institutions, and depend on the specific facts and circumstances of each case.

1: HSBC announces settlements with authorities, 2012, https://www.hsbc.com/-/files/hsbc/investors/stock-exchange-announcements/2012/december/2012-12-11-hsbc-announces-settlements-with-authorities.pdf

2: Settlement Agreement between the U.S. Department of the Treasury’s Office of Foreign Assets Control and HSBC Holdings plc, 2012, https://ofac.treasury.gov/recent-actions/20121211_33

3: HSBC settles on record US fee, 2012, https://www.dw.com/en/hsbc-settles-in-us-money-laundering-probe/a-16443391

4: HSBC pays record $1.9bn fine to settle US money-laundering accusations, 2012, https://www.theguardian.com/business/2012/dec/11/hsbc-bank-us-money-laundering

5: HSBC to pay $1.9bn in US money laundering penalties, 2012, https://www.bbc.com/news/business-20673466

According to the risk-based approach, financial institutions should apply enhanced due diligence and ongoing monitoring to higher-risk clients, and take appropriate measures to mitigate the risks of money laundering and terrorist financing. If the client exceeds the criteria of an acceptable risk model created by the institution, the institution shouldcommunicate the issues to the client and request remedial actions, such as providing additional information, documentation, or evidence of compliance. If the client does not cooperate or comply with the institution’s requirements, the institution should consider terminating the relationship with the client, as the risk may outweigh the benefits of continuing the business relationship.

ACAMS CAMS Certification Package - 6th Edition, Chapter 2: Risk Assessments, pp. 51-521

ACAMS CAMS Certification Package - 6th Edition, Chapter 4: Customer Due Diligence, pp. 97-981

ACAMS CAMS Certification Video Training Course, Module 2: Risk Assessments, Lesson 2.3: Risk-Based Approach2

ACAMS CAMS Certification Video Training Course, Module 4: Customer Due Diligence, Lesson 4.3: Enhanced Due Diligence

A subpoena is a legal order that requires a person or an entity to produce documents, information, or testimony related to a legal matter. A financial intelligence unit (FIU) is a specialized unit within a financial institution that is responsible for detecting, analyzing, and reporting suspicious activities and transactions. When a bank receives a subpoena regarding one of its clients, the FIU should review the subpoena and perform a transaction review to determine if there is any evidence of money laundering, terrorist financing, fraud, or other criminal activity involving the client. The FIU should also respond fully to the subpoena by providing the requested information and documents, unless there is a valid reason to object or seek a protective order. The FIU should not adjust the client’s risk score, file a SAR, or close the client’s account based solely on the receipt of the subpoena, as these actions may be premature, inappropriate, or illegal. Adjusting the client’s risk score may require further investigation and due diligence. Filing a SAR may be unnecessary or misleading if the subpoena does not indicate any suspicious activity. Closing the client’s account may violate the bank’s contractual obligations, customer service standards, or anti-discrimination laws. Moreover, these actions may alert the client or the subject of the investigation to the existence of the subpoena, which may interfere with the legal process or jeopardize the safety of the bank or its employees.

MSBs arevulnerable to financial crimedue to theircash-intensive natureandremittance services.

Option D (Correct):Hesitation to provide beneficiary detailssuggestsanonymity concerns, a common money laundering tactic.

Option E (Correct):Usingmultiple accounts under different namesis aknown structuring techniquetoevade detection.

Option A (Incorrect):Exchanging foreign currency is normal, though higher-risk transactions require monitoring.

Option B (Incorrect):Cash deposits are expectedin MSBs but needadditional risk factorsto be considered suspicious.

Option C (Incorrect):Frequent small transfersmay be normal forremittance businesses.

Law enforcement should obtain documentation from an institution when suspicious activity was identified by either requesting copies of the relevant documents from the accountable institution or acquiring a search warrant to obtain the documents. These are the legal and proper ways to access the supporting documentation that the institution is required to maintain for five years after filing a suspicious activity report (SAR). The institution must provide the documentation upon request by FinCEN or an appropriate law enforcement or supervisory agency, and should verify the identity and authority of the requestor. Law enforcement can also obtain a search warrant from a court if they have probable cause to believe that the documents contain evidence of a crime.

Suspicious Activity Report Supporting Documentation

Answers to Frequently Asked Questions Regarding Suspicious Activity Reporting and Other Anti-Money Laundering Considerations, Question 1.

Obtaining Documentation from an Institution: Law Enforcement Procedures

The Office of Foreign Assets Control (OFAC) is the U.S. Treasury Department’s agency that administers and enforces economic sanctions programs against countries, groups, and individualsthat pose a threat to the national security, foreign policy, or economy of the U.S. OFAC’s requirements have an extraterritorial reach because they apply not only to U.S. persons (citizens, permanent residents, entities, and those physically present in the U.S.), but also to any person or entity that engages in a transaction that has a connection to the U.S., such as using the U.S. financial system, U.S. goods, or U.S. persons. This means that intermediaries of a transaction with a U.S. nexus, such as foreign banks, brokers, or agents, are required to comply with OFAC’s regulations and may face penalties for violating them. OFAC’s jurisdiction does not depend on the registration or incorporation of an entity in the U.S., nor does it extend to foreign financial intelligence units, unless they are involved in a transaction with a U.S. nexus.

According to the CAMS study guide, chapter 1, page 91, placement is the first stage of money laundering, where the illicit funds are introduced into the financial system. Thisstage involves the highest risk of detection, as the money launderers may use various methods to avoid suspicion, such as structuring, commingling, or using cash-intensive businesses. Placement is followed by layering and integration, which are the second and third stages of money laundering, where the illicit funds are moved and disguised through multiple transactions and entities, and then integrated into the legitimate economy as seemingly legal assets.

The other options are not the financial stages of money laundering, although they may be related to some aspects or techniques of money laundering. Option A, integration, is the final stage of money laundering, not the first. Option B, structuring, is a method of placement, not a stage of money laundering. Structuring, also known as smurfing, is the practice of breaking down large amounts of cash into smaller deposits or transactions to avoid reporting thresholds or scrutiny. Option C, off shoring, is a term that refers to the relocation of assets or activities to another jurisdiction, usually for tax or regulatory advantages. Off shoring may be used by money launderers to exploit the differences or loopholes between jurisdictions, but it is not a stage of money laundering.

1: ACAMS CAMS Study Guide - 6th Edition, Chapter 1, page 9: https://www.acams.org/wp-content/uploads/2019/09/ACAMS-CAMS-Study-Guide-6th-Edition-Chapter-1.pdf

 Submitting the concern anonymously to the bank’s internal Compliance Hotline is the most appropriate action that a bank CEO’s assistant should take when the bank CEO expenses large sums of money to a charitable organization run by the bank CEO’s direct family member. This is because this action would allow the assistant to report a potential case of fraud, conflict of interest, or misuse of funds without fear of retaliation or reprisal from the bank CEO. The Compliance Hotline is a confidential and secure channel for employees to raise any concerns or suspicions about unethical or illegal activities within the bank. The Compliance Hotline would then forward the concern to the relevant authorities or departments for further investigation and action.

= The main references for this question are the following sources:

The document titled “Anti-Fraud Policy” published by the World Bank Group. You can access it by clicking here. This document states that "The World Bank Group has established a Compliance Hotline to receive reports of suspected fraud or corruption in World Bank Group-financed projects or activities, or in the World Bank Group’s corporate procurement or administrative activities. The Compliance Hotline is available to all staff and external parties, such ascontractors, consultants, beneficiaries of World Bank Group-financed projects, and the general public.

The purchaser being a nominee is a red flag that indicates high potential for money laundering in a real estate purchase. A nominee is a person or entity that acts on behalf of another person or entity, usually to conceal the identity or beneficial ownership of the real owner. Money launderers may use nominees to purchase real estate with illicit funds, and then transfer the property to the real owner or sell it for a profit. This way, they can obscure the source and ownership of the funds, and integrate them into the legitimate economy12.

ACAMS, CAMS Examination Study Guide, 6th Edition, Chapter 3, pp. 77-78

FATF, Money Laundering and Terrorist Financing through the Real Estate Sector, June 20073, pp. 19-20

The inherent level of anti-money laundering risk across the entire organization depends on various factors, such as the nature, size, complexity, and structure of the business, the customers, the products and services, and the countries or jurisdictions involved. Among the four options given, the transaction monitoring program and the customer due diligence program are not factors that determine the inherent risk, but rather measures that mitigate the risk. Therefore, they are not relevant for the compliance officer’s purpose. The countries that the bank operates in and the products and services offered by the bank are important factors that affect the inherent risk, as they may expose the bank to different levels of money laundering threats, vulnerabilities, and regulatory requirements. For example, some countries or jurisdictions have high levels of corruption, unstable governments, or are known as money laundering havens1. They could also have inadequate AML/CFT regulatory and judicial frameworks, or be subject to economic sanctions2. Similarly, some products and services may pose higher risks thanothers, such as those that involve cash transactions, cross-border transfers, anonymous or non-face-to-face customers, or complex or innovative features34.

=

1: AML risk-rating models | McKinsey

2: Money laundering and terrorist financing risks - Financial Action Task Force (FATF)

4: AML Red Flags – What are the Top 10 Indicators? - ComplyAdvantage

5: Anti Money Laundering Risk Assessment - Financial Crime Academy

The United Nations Security Council (UNSC) is authorized under the UN Charter to imposebinding sanctions measureson member states. These sanctions may target countries, entities, or individuals and can include arms embargoes, travel bans, asset freezes, and restrictions on trade or financial services.

Statement Ais correct:

Circumventing or evading UNSC sanctionsmay constitute a criminal offenseif the jurisdiction has incorporated UN obligations into domestic law. While the UNSC does not directly impose criminal penalties,member states must implement these measures locally, andmany jurisdictions have lawsthat make such violations criminal acts.

Statement Bis incorrect:

The UNSC is empowered toimpose broad restrictions, includingtrade bans beyond arms, such as on luxury goods, fuel, or specific commodities. Therefore, the idea that it cannot prohibit exports beyond arms is inaccurate.

Statement Cis correct:

Member countries of the United Nations are expected to implement and enforce UNSC sanctions, in accordance with their obligations under the UN Charter (specifically Chapter VII). Countries are responsible for transposing these sanctions into their national legal frameworks.

Statement Dis incorrect:

Although member countries are required to enforce sanctions,not all countries automatically consider breaches a criminal offense. Whether a violation is criminal depends on how each country enacts UN sanctions domestically.

This method is indicative of potential money laundering and terrorist financing activity because it involves several red flags, such as:

The use of cash, which is anonymous and difficult to trace

The urgency of the transfer, which may suggest a need to move funds quickly before they are detected

The destination of the transfer, which may be a high risk country with weak anti-money laundering (AML) and counter-terrorism financing (CTF) controls or sanctions

The lack of information about the client and the beneficiary, which may indicate a lack of due diligence or customer identification

These factors may indicate that the client is trying to conceal the source, ownership, or purpose of the funds, or that the funds are related to illicit activities such as money laundering or terrorist financing.

ACAMS CAMS Certification Video Training Course1, Module 2: Money Laundering Risks and Methods, Lesson 2.2: Money Laundering Methods

ACAMS CAMS Study Guide, 6th Edition2, Chapter 2: Money Laundering Risks and Methods, Section 2.2: Money Laundering Methods, pp. 35-36

ACAMS CAMS Examination Preparation Seminar, 6th Edition3, Chapter 2: Money Laundering Risks and Methods, Section 2.2: Money Laundering Methods, Slide 14

According to the CAMS study guide, chapter 4, page 851, bearer shares are shares that do not have the name of the owner registered on them, and the ownership is transferred by the physical delivery of the share certificate. This means that the true beneficial owner of the company can be hidden or changed without any record or notification. Bearer shares are considered a high-risk factor for money laundering and terrorist financing, as they can facilitate the movement and concealment of illicit funds through anonymous corporate vehicles. Therefore, the company having bearer shares should cause the most suspicion of money laundering among the options given.

The other options are not necessarily indicative of money laundering, although they may have some risk implications depending on the context and the customer profile. Option A, the jurisdiction being a known tax haven, may suggest that the company is seeking to avoid or minimize taxes, but this does not imply that the company is involved in money laundering, as there may be legitimate tax planning or optimization purposes. Option C, the corporation director being a European citizen, may indicate that the company has some cross-border or international activities, but this does not imply that the company is involved in money laundering, as there may be valid business or personal reasons for the director’s nationality. Option D, no financial statements being filed for 3 years, maysuggest that the company is not complying with the accounting or reporting standards of the jurisdiction, but this does not imply that the company is involved in money laundering, as there may be other explanations or mitigating factors for the lack of financial statements.

1: ACAMS CAMS Study Guide - 6th Edition, Chapter 4, page 85: https://www.acams.org/wp-content/uploads/2019/09/ACAMS-CAMS-Study-Guide-6th-Edition-Chapter-4.pdf

The Belgian bank should freeze the assets of the customer and report to OFAC, as this is the required action for any US person or entity, or any person or entity within the US, that holds or controls property or interests in property of a person or entity on the OFAC Specially Designated Nationals and Blocked Persons List (SDN List). The SDN List is a list of individuals and entities that are subject to US sanctions and whose assets are blocked by OFAC. The Belgian bank, by maintaining a branch in New York, is subject to the jurisdiction and authority of OFAC, and must comply with its regulations and directives. Allowing transactions, closing the account, or continuing business as usual would violate the sanctions and expose the bank to civil and criminal penalties.

1. Tax Compliance: Banks have a responsibility to ensure that their clients comply with tax regulations. If a client fails to provide evidence of tax compliance or is unwilling to do so, the bank may terminate the relationship to avoid legal and regulatory risks.

2. Reputational Risk: High-profile clients with extremist political views can create reputational risks for the bank. If the client’s political activities or views could harm the bank’s reputation, the bank may choose to terminate the relationship.

TheWolfsberg Group’s Principles on Private Bankingfocus onrisk management, transparency, and financial crime prevention.

Option C (Correct):Thecore principleis that banks shouldonly accept clients whose source of funds and beneficial ownership are well understoodto mitigateAML risks.

Option A (Incorrect):Whilemanaging reputational riskis important, thepriority is AML compliance, not just protecting client privacy.

Option B (Incorrect):The Wolfsberg Group encouragesenhanced due diligence (EDD) for PEPsbut doesnot establish specific rulesfor private bankers.

Option D (Incorrect):The focus is onAML compliance, not assisting banks innavigating high data privacy jurisdictions.

ARisk Appetite Statement (RAS)defines an institution’sacceptable level of risk-takingand alignsAML and financial crime controlswithorganizational strategy.

Option C (Correct):AnRAS sets clear limits for acceptable risk-taking, balancingrisk and business opportunities.

Option D (Correct):The RASis a management-approved documentthat integratesrisk tolerance, compliance strategy, and business goals.

Why Other Options Are Incorrect:

Option A (Incorrect):An RASis not just a reporting document; it actively shapesrisk management decisions.

Option B (Incorrect):An RAS includesboth qualitative and quantitative factors, butnot just qualitative elements.

Option E (Incorrect):An RAS does notonly define residual risk—itguides overall risk limitsand policies.

How an RAS Strengthens AML Compliance:

Defines acceptable AML risk levels across business units.

Guides compliance teams on risk tolerance for high-risk customers.

Ensures alignment with FATF, regulatory expectations, and internal controls.

When considering sharing information across the institution or within the same jurisdiction, the key legal issue that poses challenges to sharing customer-related information is data protection and privacy laws. Data protection and privacy laws exist in most countries and can vary significantly from jurisdiction to jurisdiction. These laws place restrictions on how customer data can be used, shared, and stored, and can limit the ability of financial institutions to share customer-related information with each other. Additionally, these laws may also require financial institutions to take additional steps to ensure the protection of customer data.

ARisk-Based Approach (RBA)allows financial institutions toallocate compliance resources effectivelyandprioritize higher-risk areasforenhanced due diligence (EDD).

Option A (Correct):An RBA enables institutions to tailor their AML controls based on risk exposure, ensuring better resource allocation.

Option B (Incorrect):While RBAimproves efficiency, itdoes not guarantee faster implementationof controls.

Option C (Incorrect):RBA is a regulatory requirement, butit is not necessarily determined by customer acceptance.

Option D (Incorrect):RBA provides guidance on risk mitigation, but itdoes not dictate specific resource usage.

Benefits of a Risk-Based Approach (RBA):

Efficient use of compliance resourcesby focusing onhigh-risk transactions, customers, and geographies.

Regulatory compliance alignmentwithFATF, Basel Committee, and Wolfsberg Group AML principles.

Flexibility to adjust AML controlsas new threats emerge.

Best Practices for Implementing RBA in AML Compliance:

Conduct enterprise-wide risk assessments (EWRAs).

Classify customers and transactions based on risk levels.

Apply enhanced due diligence (EDD) for high-risk clients.

A TCSP providing services should have policies and procedures in place to identify critical information of the signatory, as this is one of the key elements of the customer due diligence (CDD) process. The signatory is the person who has the authority to sign documents or contracts on behalf of the customer, such as a company, a trust, or a partnership. The signatory may also be the beneficial owner, the controller, or a nominee of the customer. The TCSP should verify the identity and the capacity of the signatory, as well as the source and origin of the funds or assets involved in the transaction or business relationship. The TCSP should also monitor the activities of the signatory and report any suspicious or unusual transactions or changes in the signatory’s behaviour or profile.

ACAMS Study Guide for the CAMS Certification Examination - 6th Edition, Chapter 2: Compliance Standards for Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT), Section 2.2: Customer Due Diligence (CDD), Subsection 2.2.1: CDD Process, pp. 51-52

RISK-BASED APPROACH GUIDANCE FOR TRUST AND COMPANY SERVICE PROVIDERS (TCSPs), Section III – Guidance for TCSPs, Subsection III.1: Risk Assessment, pp. 23-24

SRA | Trust and Company Service Provider guidance | Solicitors Regulation Authority, Section: Definition, Paragraph 2

A Trust and Company Service Provider (TCSP) providing services should have policies and procedures in place to identify critical information of the:, Answer B

According to section 313 of the USA PATRIOT Act, a covered financial institution (generally any U.S. bank or broker dealer in securities) is prohibited from establishing, maintaining, administering, or managing a correspondent account in the U.S. for, or on behalf of, a foreign shell bank. A foreign shell bank is defined as a foreign bank that does not have a physical presence in any country. The only exception to this prohibition is if the foreign shell bank is a regulated affiliate of a depository institution, credit union, or foreign bank that maintains a physical presence in the U.S. or a foreign country, respectively. In that case, the U.S. financial institution must obtain a written certification from the foreign bank that it does not provide banking services to any other foreign shell banks.

The Financial Action Task Force (FATF) 40 Recommendations address the transparency and beneficial ownership of legal persons (such as companies, foundations, associations, etc.) and legal arrangements (such as trusts, fiducies, anstalts, etc.) in Recommendations 24 and 25. These recommendations aim to prevent the misuse of legal persons and arrangements for money laundering, terrorist financing and other illicit purposes, by requiring countries to ensure that accurate and up-to-date information on the natural persons who ultimately own or control them (the beneficial owners) is available to the competent authorities in a timely manner.

CAMS Study Guide - 6th Edition, Chapter 4, page 112

CAMS Certification Exam Outline, Domain 1, Task 1.2, Skill 1.2.2

Guidance on Transparency and Beneficial Ownership, FATF, October 2014

Recommendation 24: Transparency and beneficial ownership of legal persons, FATF

[Recommendation 25: Transparency and beneficial ownership of legal arrangements], FATF

According to the FATF Recommendations, the competent authority that should directly receive suspicious or unusual transaction reports is the financial intelligence unit (FIU). The FIU is a central, national agency responsible for receiving, analyzing and disseminating information related to money laundering and terrorist financing. The FIU should have operational independence and autonomy, and should be able to exchange information with other domestic and foreign authorities. The FIU should also provide feedback to the reporting entities on the use and value of their reports.

=

CAMS Certification Package - 6th Edition | ACAMS1

CAMS Certifications: How to Get CAMS Certified | ACAMS2

ACAMS CAMS Certification Video Training Course - Exam-Labs3

Exam CAMS: Certified Anti-Money Laundering Specialist (the 6th edition)4

FATF Recommendations, Recommendation 29: Financial Intelligence Units

http://www.fatf-gafi.org/media/fatf/documents/recommendations/pdfs/FATF%20Recommendations%202012.pdf

When a financial institution is requested to provide data and information to a law enforcement agency for matters related to the financing of terrorism, assistance cannot be refused on the grounds of tipping-off. Tipping-off refers to disclosing to a customer or any third party that a suspicious activity report (SAR) has been filed. However, in this specific context, the obligation to provide information to law enforcement takes precedence over any concerns related to tipping-off. Financial institutions must cooperate fully with law enforcement agencies in such cases to combat money laundering and terrorist financing12.

A domestic business account receiving a wire transfer from an international business with no history of such activity or business needs should be escalated as potentially suspicious activity. This is because this scenario may indicate an attempt to launder money, evade taxes, or finance terrorism through cross-border transfers that have no apparent economic or lawful purpose. The lack of prior relationship or business justification for the wire transfer may also suggest that the transaction is not consistent with the customer’s profile or expected activity. Therefore, this scenario should be investigated further and reported if necessary.

9 Financial & Bank Suspicious Activity Examples, Example 2.

CAMS Study Guide 6th Edition, page 40-41.

According to the Basel Committee on Banking Supervision, banks should apply a risk-based approach to customer due diligence, which means that they should adopt enhanced measures for higher-risk customers and simplified measures for lower-risk customers. Enhanced due diligence (EDD) may include obtaining additional information on the customer’s identity, source of funds, business activities, beneficial owners, and expected transactions, as well as conducting more frequent and intensive monitoring ofthe account activity. EDD is especially important for customers who are politically exposed persons (PEPs), who are from or have connections with high-risk countries or jurisdictions, or who are involved in high-risk industries or sectors. Therefore, performing EDD including enhanced ongoing monitoring of the account activity is the correct way for banks to deal with high-risk customers.

 Basel Committee on Banking Supervision, CAMS Study Guide, 6th Edition, Chapter 4, page 121.

When investigating an AML event, the following techniques would be used to investigate suspected mule accounts:

A. Determine if the suspected accounts are being accessed by a common person, telephone number, or device. This can help identify if the accounts are controlled by the same person or group, or if they are part of a larger network of mules. It can also help detect if the accounts are opened using synthetic identities or stolen credentials12.

B. Reconcile the stated purpose of the account with actual transaction history and compare with peer groups. This can help assess if the account activity is consistent with the customer profile, risk rating, and expected behavior. It can also help identify anomalies, such as sudden changes in transaction patterns, large or frequent transfers, or transactions with high-risk jurisdictions or entities12.

E. Establish the frequency with which the funds are moved in and out of the accounts. This can help measure the velocity and volume of the funds flowing through the accounts, which can indicate if the accounts are used for layering or integration of illicit funds. It can also help detect if the accounts are used for smurfing, which is a technique of breaking down large amounts of cash into smaller deposits to avoid detection or reporting thresholds13.

Economic sanctions are penalties imposed by one or more countries against another country, group, or individual for violatinginternational norms or threatening national interests1. The ultimate goal of economic sanctions is to protect national security by changing the behavior or policies of the target, or by weakening its capabilities or resources2. Sanctions can be used to advance various foreignpolicy objectives, such as counterterrorism, nonproliferation, democracy promotion, human rights protection, conflict resolution, and cybersecurity1. Sanctions can take different forms, such as travel bans, asset freezes, trade embargoes, arms restrictions, and aid reductions1. Sanctions can be applied unilaterally by one country, or multilaterally by a coalition of countries or an international organization, such as the United Nations or the European Union1.

1: What Are Economic Sanctions? | Council on Foreign Relatio

2: How Economic Sanctions Work - Investopedia

The Basel Committee on Banking Supervision (BCBS) is an international body that sets standards and guidelines for the prudential regulation of banks. One of its key publications is the Customer Due Diligence for Banks, which outlines the essential elements of Know Your Customer (KYC) standards for banks. According to this document, customer acceptance, customer due diligence, and record-keeping policies and procedures should be changed as necessary to address variations in risk among each line of business within the organization. This means that banks should adopt a risk-based approach to KYC, taking into account the different types, levels, and sources of risk associated with different customers, products, services, transactions, and delivery channels. By doing so, banks can allocate their resources more efficiently and effectively, and mitigate the potential for money laundering, terrorist financing, and other financial crimes.

According to the Wolfsberg Principles on Correspondent Banking1, an institution should consider the following three elements in its enhanced due diligence process for higher risk respondent bank customers:

The quality of the respondent’s AML and client identification controls: The correspondent should assess the adequacy and effectiveness of the respondent’s AML policies, procedures, and systems, as well as its compliance with applicable AML laws and regulations. The correspondent should also verify that the respondent has implemented appropriate customer identification and verification measures, and that it maintains sufficient records of its customers and transactions.

A risk-based determination as to whether or not the respondent is a shell bank: The correspondent should ensure that the respondent is not a shell bank, which is defined as a bank that has no physical presence in any country and is not affiliated with a regulated financial group. The correspondent should also avoid establishing or maintaining relationships with banks that are known to allow their accounts to be used by shell banks.

Whether a Politically Exposed Person (PEP) has an interest or management role in the respondent: The correspondent should identify and assess the potential risks associated with any PEPs who have an ownership or management interest in the respondent, or who are customers of the respondent. The correspondent should apply enhanced scrutiny and monitoring to such relationships, and obtain senior management approval before establishing or continuing them.

Wolfsberg Correspondent Banking Principles 2022 by the Wolfsberg Group, October 2022.

When assessing and managing money laundering risks while operating in foreign jurisdictions different from that of the head office, an effective AML monitoring program should conform to the foreign jurisdiction policies to align with the head office policies. This ensures that the organization's AML/CFT risk management remains consistent across all jurisdictions, while allowing local compliance staff to assess and manage the risks specific to their jurisdiction. Additionally, the program should be tailored to the higher of standards between the jurisdictions, and should be consistent with the head office audits. Providing all foreign jurisdiction reports to the head office for approval is not necessary, as long as the program is consistent with the head office policies.

The6th AML Directive (6AMLD)introducedtighter rulesto combat financial crime, particularly aroundbeneficial ownership transparency.

Option D (Correct):6AMLD enhances transparencyby requiring accurate and verified datain central beneficial ownership registries, making it harder to hide illicit funds behind shell companies.

Option A (Incorrect):While some entities face increased scrutiny,crowdfunding platforms and football clubs were not the primary focusof 6AMLD.

Option B (Incorrect):6AMLD does not remove the EU’s obligation to conduct risk assessments;risk-based approaches remain centralto AML efforts.

Option C (Incorrect):TheEU AML Authority (AMLA), planned for2024, will centralize enforcement, but6AMLD did not createthis entity.

MSBsarehigh-risk for financial crime, requiringstrict AML controls.

Option D (Correct):Hesitancy to provide beneficiary informationis astrong indicator of illicit financial activity.

Option E (Correct):Using multiple accounts under different namesis aknown money laundering technique.

Option A (Incorrect):Currency exchange is common in MSBs, thoughadditional factors must be assessed.

Option B (Incorrect):Large cash deposits are normal for cash-based businesses, butneed further scrutiny.

Option C (Incorrect):Frequent small remittancesare normal, unless linked tostructuring or smurfing.

In situations involving significant AML concerns, especially with high-risk clients, thecompliance officer must follow proper escalation procedureswithin the institution. The appropriate course of action is toescalate the matter to a senior governance body, such as ahigh-risk client committee, which is typically tasked with balancing AML risk against business considerations.

Unilateral offboarding (Option B)may violate internal protocols.

Persuading the relationship manager (Option C)bypasses formal governance.

Delaying action (Option D)risks further exposure to regulatory or reputational damage.

This escalation ensuresdocumented risk-based decision-makingand demonstrates to regulators that the institution appliesstructured and objective AML governance.

According to the CAMS Study Guide, page 191, “Reloadable open-loop prepaid cards are a high-risk product for money laundering because they can be used to store and move large amounts of funds anonymously. They can also be used to access cash at ATMs or through cash-back transactions at merchants.” Therefore, option B is a red flag that may indicate money laundering, as a non-bank customer who regularly loads large amounts of cash onto several prepaid cards may be trying to avoid identification, verification, or transaction reporting requirements.

CAMS Study Guide, page 1911

According to the CAMS Study Guide (the 6th edition), page 184, when an FI receives a formal law enforcement request to produce documents, such as a subpoena, a search warrant, or a court order, it should designate a person responsible for the internal investigation in preparation of documents for the request. This person should be familiar with the FI’s policies and procedures, the applicable laws and regulations, and the nature and scope of the request. The designated person should also coordinate with the FI’s legal counsel, compliance officer, and senior management, and ensure that the FI preserves the confidentiality and integrity of the documents and the investigation.

Effective AML programs promote aculture of compliance, which includes an environment where staff are empowered to raise concerns, challenge decisions, and continuously improve through cross-functional learning.Providing effective challengeis a supervisory expectation and best practice in institutions that value AML governance integrity.

While AML officer authority (option B) supports oversight, it is not as impactful on daily operational effectiveness as fostering a challenging and adaptive compliance culture.

According to the FATF typology report 2000-20011, lawyers can provide a range of functions that can be useful to a potential money launderer, such as:

Creating complex legal arrangements, such as trusts, foundations, or corporations, that can obscure the identity and ownership of the beneficial owners or the origin and destination of the funds.

Buying and selling property, such as real estate, art, or jewelry, that can be used to transfer or store illicit proceeds or to provide a legitimate cover for the source of funds.

Performing financial transactions on behalf of a client, such as opening bank accounts, transferring funds, issuing checks, or exchanging currencies, that can facilitate the movement or concealment of illicit funds.

Providing legal advice, on the other hand, is not a function that can be directly exploited by a money launderer, unless the advice is related to the above functions or to the avoidance or evasion of anti-money laundering laws and regulations.

1: FATF Terrorist Financing Typologies Report - Financial Action Task Force2

According to the FATF Guidance on Politically Exposed Persons1, financial institutions should assess the money laundering and terrorist financing risks associated with a business relationshipor transaction with a PEP, their family members and close associates, on a case-by-case basis. This includes obtaining information on the source of wealth and source of funds of the customer and the beneficial owner, as well as conducting enhanced ongoing monitoring of the business relationship. Therefore, the appropriate next step for the analyst is to review the beneficial ownership of the customer to determine if the PEP or any other person poses a higher risk, and to apply additional measures accordingly. Removing the PEP as the authorized signatory, re-categorizing the customer as high-risk, or categorizing the authorized PEP signatory as high-risk are not necessarily required or sufficient steps, as they do not take into account the specific circumstances and risk factors of the customer and the PEP.

Transaction monitoring alerts requirefurther analysisto determine whether they indicategenuine suspicious activity or a false positive.

Option C (Correct):Requesting information from the relationship manager helps gather customer background details, past transaction patterns, and business rationale.

Option A (Incorrect):Below-the-line testing assesses system effectiveness but does not resolve an immediate AML alert.

Option B (Incorrect):Directly contacting a counterparty bank may violate privacy regulations and should only be done if escalation is required.

Option D (Incorrect):Restricting access without due diligence may lead to regulatory and reputational risks.

Best Practices for Investigating AML Alerts:

Review transaction history and customer risk profile.

Engage the relationship manager for business context.

Escalate to AML compliance teams if red flags persist.

According to the Basel Committee’s paper on Customer Due Diligence for Banks1, banks should review their existing customer relationships on a regular basis, especially for higher risk categories of customers or business relationships. This includes identifying whether the customer or the beneficial owner is a PEP, either at the account opening stage or later, as a result of a change in the customer’s circumstances or profile. The paper also states that banks should apply a risk-based approach to determine the appropriate level and type of due diligence depending on the risk profile of the customer or the beneficial owner.

Basel Committee on Banking Supervision, Customer due diligence for banks, October 20011

FATF Guidance: Politically Exposed Persons (Recommendations 12 and 22), June 20132

ACAMS, CAMS Examination Study Guide, 6th Edition, Chapter 4

The FATF is an inter-governmental body that sets standards and promotes effective implementation of legal, regulatory, and operational measures for combating money laundering, terrorist financing, and other related threats to the integrity of the internationalfinancial system. The FATF conducts mutual evaluations of its members and other jurisdictions to assess their compliance with the FATF Recommendations and the effectiveness of their AML/CFT regimes1.

The FATF defines effectiveness as "the extent to which a country’s AML/CFT regime is achieving the defined outcomes of an effective regime that allows them to mitigate their risks and threats of ML/TF"2. The FATF assesses effectiveness based on 11 immediate outcomes, which are grouped into three thematic goals: financial system integrity, legal system and operational issues, and international cooperation2.

One of the immediate outcomes under the financial system integrity goal is that “FIs adequately apply preventive measures commensurate with their risks, and report suspicious transactions” (IO.4)2. This outcome measures how well FIs implement the FATF Recommendations on customer due diligence, record-keeping, internal controls, risk assessment, and suspicious transaction reporting. These preventive measures are essential for FIs to identify and mitigate the risks of being misused for money laundering or terrorist financing, and to provide useful information to the authorities for investigation and prosecution2.

Therefore, the correct answer is D. FIs adequately apply preventive measures, as this is one of the FATF characteristics used to assess a country’s effectiveness of its AML regime.

FATF Methodology for assessing compliance with the FATF Recommendations and the effectiveness of AML/CFT systems

An effective system to combat money laundering and terrorist financing

An anti-money laundering officer should coordinate with human resources when implementing a new hire screening program, because human resources is responsible for managing the recruitment, hiring, and training of employees, as well as ensuring compliance with labor laws and regulations. A new hire screening program is a key component of an effective anti-money laundering (AML) program, as it helps to prevent the hiring of individuals who may pose a risk of facilitating money laundering, terrorist financing, or other financial crimes, or who may have a criminal or disciplinary history that could compromise the integrity of the institution. A new hire screening program should include background checks, verification of credentials and references, and assessment of skills and competencies relevant to the AML function. An anti-money laundering officer should work closely with human resources to establish the criteria, procedures, and documentation for the screening program, as well as to monitor its implementation and effectiveness.

ACAMS CAMS Certification Video Training Course1, Module 4: Developing an AML Program, Lesson 4.2: Developing an AML Program

ACAMS CAMS Study Guide, 6th Edition2, Chapter 4: Developing an AML Program, Section 4.2: Developing an AML Program, pp. 81-82

ACAMS CAMS Examination Preparation Seminar, 6th Edition3, Chapter 4: Developing an AML Program, Section 4.2: Developing an AML Program, Slide 20

 According to the Financial Action Task Force (FATF), the global standard-setter for anti-money laundering and counter-terrorist financing, two channels that can be utilized during a cross-border money laundering investigation to assist in gathering information are contacting existing liaison officers in the foreign jurisdiction and exchanging information between national law enforcement agencies. These are two of the methods that the FATF recommends in its guidance on international cooperation1. The FATF states thatliaison officers can facilitate the exchange of information and intelligence, provide operational support, and coordinate joint investigations1. The FATF also encourages the use of bilateral or multilateral agreements or arrangements to enable the exchange of information and intelligence between national law enforcement agencies, as well as the use of informal networks or mechanisms, such as the Egmont Group of Financial Intelligence Units1.

Option C is incorrect because contacting the potential suspect or their family members to request information is not a recommended channel for cross-border money laundering investigations. This method may alert the suspect of the investigation, compromise the confidentiality of the information, or violate the legal rights of the suspect or their family members. Moreover, the information obtained from the suspect or their family members may not be reliable or admissible in court.

Option D is incorrect because submitting only formal requests for information to a financial intelligence unit (FIU) is not a sufficient channel for cross-border money laundering investigations. While FIUs play an important role in collecting, analyzing, and disseminating financial information, they are not the only source of information for cross-border investigations. The FATF guidance states that investigators should also seek information from other competent authorities, such as law enforcement, supervisory, or judicial authorities, depending on the nature and purpose of the information sought1. Furthermore, the FATF guidance advises investigators to use both formal and informal channels of communication, as formal requests may take longer or face legal obstacles1.

1: FATF, International Co-operation Review Group, Guidance on Investigating and Prosecuting Money Laundering and the Financing of Terrorism, October 2012, pp. 13-18.

The red flags that should be considered prior to establishing a relationship with a third party are the lack of anti-corruption compliance clauses in agreements (A) and unusual payment or billing procedures requested by the third party (C). According to the Certified Anti-Money Laundering Specialist (CAMS) Sixth Edition manual, "red flags include, but are not limited to: [...] lack of anti-corruption compliance clauses in agreements (page 330) and unusual payment or billing procedures requested by the third party (page 331)."

The rules imposed by the Office of Foreign Assets Control (OFAC) for legal entities and persons related to the US are:

Nationals of the US must comply with OFAC rules, regardless of where they are located in the world. This means that US citizens, permanent residents, and entities organized under US law are subject to OFAC sanctions and prohibitions, even if they operate or reside outside the US12.

Any foreign corporation is also penalized if it conducts transactions with sanctioned countries under OFAC rules. This means that non-US entities that engage in trade or financial dealings with OFAC-designated countries, entities, or individuals are liable to face civil or criminal penalties, as well as secondary sanctions that could restrict their access to the US market or financial system34.

The other options are not correct, because:

A subsidiary of a legal entity of the US, which is formally registered in a foreign country, is not exempt from OFAC rules. This means that foreign-incorporated entities that are owned or controlled by US persons or entities are also subject to OFAC sanctions and prohibitions, unless they are specifically authorized or licensed by OFAC12.

A foreign individual visiting the US for a short vacation is not obligated to follow OFAC rules. This means that non-US persons who are temporarily present in the US are not subject to OFAC sanctions and prohibitions, unless they are involved in transactions that have a US nexus or violate other US laws.

The head office of a foreign legal entity which has a branch in the US does not need to comply with OFAC rules. This means that non-US entities that have a presence or operation in the US are not subject to OFAC sanctions and prohibitions, unless they are involved in transactions that have a US nexus or violate other US laws.

According to the ACAMS study guide, one of the red flags for money laundering in crowdfunding platforms is “projects that are fully funded within a very short period of time, especially if the funding comes from a small number of donors or from a single donor” (p. 222). This could indicate that the project is a front for laundering illicit funds or financing terrorism. The other options are not necessarily indicative of money laundering risk, as they could be explained by legitimate factors such as the popularity, urgency, or ambition of the project.

ACAMS. (2020). Study Guide for the Certification Examination for Anti-Money Laundering Specialists (6th ed.). Miami, FL: ACAMS.

ESMA. (2015)Questions and Answers: Investment-based crowdfunding and money laundering/terrorist financing 1. Paris, France: ESMA.

A: The purchase of high-value real estate using cash in multiple transactions—especially without clear economic justification—is a classic money laundering typology. The goal is typically to integrate illicit funds into the legitimate economy and obscure their origin.

“Large cash purchases of property without an obvious economic rationale are a significant red flag for money laundering in the real estate sector.”

This typology is highlighted in CAMS 6th Edition and the FATF’s guidance on real estate ML/TF risks.

According to the Financial Action Task Force (FATF), the use of large amounts of cash is a common method for money launderers to move illicit funds [1]. Purchasing luxury items with cash can indicate an attempt to convert illegal funds into tangible assets that can be easily resoldor moved across borders. As a result, businesses that deal with luxury items are required to implement enhanced due diligence measures, including monitoring transactions involving large amounts of cash [1].

A: “Effective training includes practical examples and use cases tailored to the business.”

B: “Firms must keep accurate records of all AML/CFT training, including completion logs.”

D: “Staff should be aware of the consequences of non-compliance with AML/CFT obligations.”(CAMS 6th Edition, AML/CFT Training and Awareness)

Incorrect:

C: Training should be tailored and role-specific.

E: Third-party trainers are not required for effective training.

The Wolfsberg Group is an association of 13 global banks that aims to develop frameworks and guidance for the management of financial crime risks. The group started as a meeting of banks in 1999 to address anti-money laundering (AML) in private banking, which carries an increased degree of risk from a money laundering perspective. In the course of discussions, they articulated principles that reflected uniformly high standards for this client segment. These principles became the first guidance published by the group under the name Wolfsberg Principles.

The Wolfsberg Group - Institute on Governance

Wolfsberg Group - Wikipedia

The Group first came together in 2000 at the Wolfsberg castle in Switzerland, accompanied by representatives of Transparency International, to draft anti-money laundering guidelines for private banking

The Financial Action Task Force (FATF) 40 Recommendations are the international standards for combating money laundering and terrorist financing, and they apply to all countries and financial institutions. The Customer Due Diligence for Banks issued by the Basel Committee on Banking Supervision provides guidance on how banks should conduct CDD and KYC procedures, and how they should manage the risks of correspondent banking and wire transfers. The Egmont Group Statement of Purpose outlines the objectives and functions of the Egmont Group, which is an international network of financial intelligence units (FIUs) that exchange information and cooperate in the fight against money laundering and terrorist financing. These three materials are relevant and useful for the bank’s expansion plans, as they cover the main aspects of AML/CFT compliance in different jurisdictions and sectors.

The USA PATRIOT Act is a US-specific legislation that enhances the powers and obligations of US authorities and financial institutions in relation to AML/CFT, but it may not be applicable or appropriate for other countries where the bank intends to operate. Therefore, it is not a necessary reference material for the bank’s international department.

FATF 40 Recommendations

Customer Due Diligence for Banks

Egmont Group Statement of Purpose

FIs must handlelaw enforcement subpoenas carefullytocomply with legal and AML obligations.

Option A (Correct):Legal counsel must review subpoenasto ensure compliance withAML and privacy laws.

Option B (Incorrect):Original documentsshould only be provided underspecific legal conditions.

Option C (Incorrect):Account closure decisionsmust followAML risk-based assessment.

Option D (Incorrect):Tipping offa customer about an investigation isillegalunder AML laws.

B: If a bank fails to demonstrate sustained improvement or cannot resolve identified deficiencies, it can face civil or even criminal penalties from regulators. Regulators expect not just policy changes, but proof of effectiveness and ongoing compliance improvements.

C: Even after addressing many concerns, if all issues are not resolved—such as outstanding transaction monitoring backlogs—regulators may issue orders to further remediate the AML program until full compliance is achieved.

CAMS 6th Edition and regulatory guidance clarify that “regulators may impose penalties, issue consent orders, or require further remediation where weaknesses persist.”

Incorrect:

A: Secondary sanctions generally apply to sanctions violations, not standard AML program weaknesses.

D: Regulatory actions can be public and do pose reputational risk.

E: While transparency is sometimes required, this is not a universal regulatory response.

A: The main objective of anti-bribery and corruption regulations is to prohibit bribes to government officials or employees of state-owned enterprises for the purpose of obtaining or retaining business or securing improper advantages.

“Anti-bribery and corruption regulations, such as the FCPA and UK Bribery Act, prohibit offering anything of value to public officials to gain a business advantage.”(CAMS 6th Edition, Anti-Bribery and Corruption)

 If an employee of a financial institution is found to have assisted in money laundering or any other criminal activity, the institution should take appropriate disciplinary action and report the employee to the relevant authorities. This is not only a legal obligation, but also a sound compliance practice to protect the institution’s reputation and integrity. Disciplining the employee without informing the authorities would be insufficient and potentially expose the institution to further legal risks. Ignoring the employee’s involvement or requiring additional training for all employees would be ineffective and inappropriate responses.

ACAMS CAMS Certification Package - 6th Edition, Chapter 5: Compliance Standards for Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT), pp. 121-1221

ACAMS CAMS Certification Package - 6th Edition, Chapter 6: AML Compliance Program, pp. 143-1441

ACAMS CAMS Certification Video Training Course, Module 5: Compliance Standards for Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT), Lesson 5.2: International Standards and Best Practices2

ACAMS CAMS Certification Video Training Course, Module 6: AML Compliance Program, Lesson 6.4: Internal Controls2

this activity is unusual and inconsistent with the expected behavior of an accounting firm’s operational account. The account should normally receive fees from clients that are proportional to the services rendered and reflect the market rates. Receiving international payments that are substantially higher than other fees could indicate that the account is being used to launder money or finance terrorism by disguising illicit funds as legitimate income. This could trigger a red flag for the bank and prompt a comprehensive review of the account.

ACAMS Study Guide 6th Edition, Chapter 1, Section 1.6, page 24: “Methods to launder money used in banks and other deposit taking institutions”.

ExamTopics, Question 446: “An accounting firm opened an account at a bank that is intended to be used as the operational account for the business. After a few months, a comprehensive review of the account was triggered due to unusual activity on the account. Which most likely triggered the review?”

Trade-based money laundering (TBML) involves manipulating trade transactions to move illicit funds rather than goods. One common technique is over-invoicing, where an exporter intentionally inflates the invoice value of goods. In this scenario, an England-based exporter would over-invoice a shipment to Cyprus. By doing so, the exporter creates a surplus amount that can be transferred back to the terrorist organization in England, effectively disguising the movement of illicit funds12.

According to the Wolfsberg Financial Crime Principles for Correspondent Banking1, a shell bank is defined as a bank that has no physical presence in the jurisdiction in which it is incorporated and licensed, and which is unaffiliated with a regulated financial group that is subject to effective consolidated supervision. Physical presence means meaningful mind and management located within a country. The existence simply of a local agent or low level staff does not constitute physical presence. Therefore, a shell bank meets the criteria A, B, and D, as it does not conduct business at a fixed address, does not employ one or more individuals or maintain operating records at that address, and is not subject to inspection by the banking authority that licensed it. Criterion C is not specific to shell banks, as any bank, whether shell or not, may or may not be subject to AML laws that require it to implement an AML program, depending on the jurisdiction.

Wolfsberg Financial Crime Principles for Correspondent Banking1, Section: Definitions, pp. 3-4.

A. Geographic risks should be used to identify the priority of the Fl in this scenario. According to the CAMS Manual (6th Edition), "Geographic risk refers to the possibility that the location of a customer, transaction, or product may increase the likelihood of money laundering or terroristfinancing because of weak or nonexistent AML/CFT controls" (p. 59). In this scenario, the expansion to an area of the world with weak AML laws would increase the Fl's geographic risk.

it describes the action that the anti-money laundering specialist should take next, which is to consult with senior management and the legal advisor. This is because the specialist needs to seek guidance and approval from the higher authorities and the legal experts on how to handle the situation without compromising the ongoing criminal investigation or violating the anti-money laundering laws and regulations. The specialist also needs to ensure that the institution’s internal policies and procedures are followed andthat the appropriate measures are taken to mitigate the risks and protect the reputation of the institution.

The other options are not necessarily actions that the anti-money laundering specialist should take next, although they may be considered or implemented later depending on the outcome of the consultation and the investigation. Option A describes a possible consequence for the employee, which is to recommend the immediate termination of the employee, but this may not be the best course of action at this stage, as it may alert the employee or the dealer of the investigation, or it may be premature or disproportionate without sufficient evidence or due process. Option B describes a possible measure for the dealer, which is to advise that the dealer’s accounts should be closed, but this may not be feasible or advisable at this stage, as it may also tip off the dealer or the employee of the investigation, or it may interfere with the collection of evidence or the prosecution of the case. Option D describes a possible reporting obligation for the institution, which is to inform the institution’s regulatory agency of the situation, but this may not be required or appropriate at this stage, as it may conflict with the instructions of the competent authority or the confidentiality of the investigation, or it may expose the institution to legal or regulatory liabilities or sanctions.

ACAMS CAMS Certification Video Training Course - 6th Edition1

Exam CAMS: Certified Anti-Money Laundering Specialist (the 6th edition)2

ACAMS CAMS Study Guide - 6th Edition, Chapter 6, pages 132-133

https://www.acams.org/wp-content/uploads/2019/09/ACAMS-CAMS-Study-Guide-6th-Edition-Chapter-6.pdf

The specialist should recommend directing the teller (cashier) to file a suspicious transaction report (STR). This is because the teller (cashier) has failed to comply with thebank’s internal policies and procedures for reporting unusual or suspicious activity, which is a key component of an effective anti-money laundering (AML) program1. The teller (cashier) should have filed an internal report of unusual activity assoon as he or she noticed the suspicious transactions, regardless of the personal circumstances or the length of service of the customer involved2. Failing to do so could expose the bank to regulatory sanctions, reputational damage, or legal liability3.

The other options are not appropriate recommendations for the specialist to make in this situation. Continuing to monitor the accounts is not sufficient, as it does not address the past non-compliance or the potential money laundering risk posed by the suspicious transactions. Refreshing anti-money laundering training for the teller (cashier) is not enough, as it does not ensure that the teller (cashier) will report the suspicioustransactions or prevent future violations. Suspending the teller’s (cashier’s) employment is too harsh, as it does not take into account the teller’s (cashier’s) long and exemplary work record, the personal hardship faced by the teller’s (cashier’s) family, or the possibility of remedial actions or corrective measures4.

1: Internal Controls | FinCEN.gov1 2: Reporting Suspicious Transactions - ACAMS2 3: The Consequences of Non-Compliance with AML Regulations - Blog | Unit213 4: Employee Discipline in the Workplace: A Guide for Managers4

According to the Financial Action Task Force (FATF) 40 Recommendations, simplified customer due diligence (CDD) or reduced measures could be acceptable for certain types of products or transactions that have a low risk of money laundering or terrorist financing, based on a reasonable assessment of the risk by countries or by financial institutions. These include:

Life insurance policies where the annual premium is no more than USD/EUR 1,000 or a single premium of no more than USD/EUR 2,500. This is because the amount of money involved is relatively small and the payout is usually contingent on a specific event, such as death or disability, which reduces the likelihood of abuse by criminals.

Insurance policies for pension schemes if there is no surrender clause and the policy cannot be used as collateral. This is because the beneficiaries of these policies are usually predetermined and the funds are locked in until retirement age, which limits the possibility of transferring or withdrawing the money for illicit purposes.

A pension, superannuation or similar scheme that provides retirement benefits to employees, where contributions are made by way of deduction from wages and the scheme rules do not permit the assignment of a member’s interest under the scheme. This is because the source of funds is known and verified by the employer and the scheme is regulated and supervised by competent authorities, which reduces the risk of money laundering or terrorist financing.

The other option, trusts where the settlor, trustee and beneficiaries are identified and the shares are in bearer form, is not eligible for simplified CDD or reduced measures, because the use of bearer shares poses a high risk of anonymity and concealment of beneficial ownership, which could facilitate money laundering or terrorist financing.

FATF 40 Recommendations, Recommendation 10 and Interpretive Note to Recommendation 10, paragraphs 17-18.

Cryptoassets, such as cryptocurrencies, pose specific ML/TF risks due to their technological characteristics and usage patterns:

Potential for anonymity (C): Cryptoassets allow users to make transactions without revealing their true identities, which hinders law enforcement from tracking illicit activity. The CAMS 6th Edition states:“Cryptoassets can be transferred or exchanged between users without the need for identification, presenting a significant risk due to the potential for anonymity.”(CAMS 6th Edition, Chapter: Risks and Methods of Money Laundering and Terrorist Financing, Virtual Assets section)

Global reach (D): Cryptoassets operate on a global scale, enabling rapid cross-border transfers without the limitations of traditional financial systems. This increases the complexity of monitoring and controlling illicit transactions.“The global nature of virtual assets makes it easy for criminals to move value across borders quickly, evading jurisdictional controls.”(CAMS 6th Edition; FATF Guidance on Virtual Assets 2019)

Use to layer illicit funds (F): The ability to move cryptoassets between numerous wallets and exchanges allows criminals to obscure the source of funds through layering, a key stage of money laundering.“Layering can be achieved by rapidly moving cryptoassets between wallets, exchanges, and across different jurisdictions, making tracing more difficult.”(CAMS 6th Edition, Chapter: Risks and Methods of Money Laundering and Terrorist Financing)

AML audit findings must beanalyzed and addressed through remedial actions based on root cause analysis.

Option D (Correct):Root cause analysis helps develop effective corrective measures to prevent recurring AML deficiencies.

Option A (Incorrect):Retesting controls may be useful, but addressing deficiencies is more critical.

Option B (Incorrect):While the board oversees compliance, the responsibility for implementing fixes lies with AML teams.

Option C (Incorrect):Audit teams provide findings but do not execute corrective actions.

Best Practices for Addressing AML Audit Findings:

Identify the root cause of AML control failures.

Develop risk-based remediation plans.

Implement and monitor corrective actions.

Conducting anonymous transactions is the most likely activity to facilitate money laundering through online banking systems with inadequate controls. Anonymous transactions allow money launderers to hide their identity, source and destination of funds, and the purpose of their transactions from the authorities and the financial institutions. Online banking systems that do not have proper KYC, customer due diligence, and transaction monitoring controls are vulnerable to being exploited by money launderers who can use various techniques, such as encryption, proxy servers, virtual currencies, prepaid cards, and online gambling, to conduct anonymous transactions123.

ACAMS CAMS Certification Study Guide, 6th Edition, Chapter 2, page 40-41, 43-44

ACAMS CAMS Certification Video Training Course, Module 2, Lesson 2.4, Money Laundering Using New Payment Methods

1, Fighting money laundering in the age of online banking, virtual currencies and internet gambling | ERA Forum

2, Financial crime risk management in digital payments | McKinsey

3, The Relationship Between Digital Banking and Financial Crime

The characteristic of the Financial Action Task Force (FATF) 40 recommendations is that they comprise global standards for countering money laundering, recognized by government bodies across the world. The FATF 40 recommendations provide a comprehensive framework of measures that countries should implement to combat money laundering and terrorist financing. The recommendations are not mandatory, but are widely recognized and followed by countries across the globe. The recommendations cover a range of areas, including customer due diligence, record-keeping, suspicious activity reporting, and international cooperation.

 Reciprocity is one of the high-level principles that govern the relationship between the FATF and the FSRBs. It means that both the FATF and the FSRBs should respect and acknowledge each other’s work, such as standard setting, mutual evaluations, and follow-up processes. Reciprocity also implies that the FATF and the FSRBs should have similar mechanisms or practices for ensuring effective participation of their members in their activities.

= The main reference for this question is the document titled “High-Level Principles and Objectives for FATF and FATF-style regional bodies” published by the FATF in February 2019. You can access it by clicking here. You can also find more information about the FSRBs and their roles on the FATF website and the Sygna blog.

Regulatory exams assess whether financial institutions comply with AML/CFT laws and have adequately addressed previous deficiencies.

Option C (Correct):Regulators may still issue remediation orders if the bank's improvements do not fully resolve prior AML compliance gaps.

Option D (Correct):If deficiencies persist, regulators may impose civil or criminal penalties.

Why Other Options Are Incorrect:

Option A (Incorrect):Secondary sanctions typically apply to institutions violating international sanctions laws, not AML program deficiencies.

Option B (Incorrect):Regulatory orders are not always confidential—major enforcement actions may be publicly disclosed.

Option E (Incorrect):Boards are responsible for AML oversight but are not always required to disclose corrective actions publicly.

Best Practices for Addressing AML Exam Findings:

Document all remediation efforts with clear implementation timelines.

Demonstrate a culture of compliance through leadership and training.

Ensure sustained improvements, not just short-term fixes.

Accounts may beclosedif theypose high money laundering or sanction risks.

Option A (Correct):MultipleSAR filingsindicatehigh risk, possibly requiringaccount closureif AML concerns persist.

Option B (Incorrect):Tuition paymentsare alegitimate purposefor fund transfers.

Option C (Incorrect):Indirect dealings withSDNs require compliance review, but notimmediate account closure.

Option D (Incorrect):Civil subpoenasalone do not justifyaccount termination.

A bank’s risk assessment is a process of identifying, measuring, and mitigating the potential risks that the bank faces in its operations, products, services, and customers. According to the ACAMS Study Guide, a bank should focus on the following areas when performing a risk assessment1:

The type and location of the institution’s clients. This involves analyzing the customer base, the types of accounts and transactions, the source and destination of funds, the level of due diligence and verification, and the risk profile of the customers. For example, a bank should consider whether its customers are individuals or entities, domestic or foreign, politically exposed persons, high-net-worth individuals, non-profit organizations, or cash-intensive businesses. The location of the customers may also indicate the level of exposure to money laundering, terrorist financing, sanctions, or tax evasion risks.

The nature and breadth of the services and products the institution provides. This involves evaluating the range and complexity of the products and services offered by the bank, the delivery channels, the payment methods, and the innovation and technology involved. For example, a bank should consider whether it offers wire transfers, correspondent banking, trade finance, private banking, trust and fiduciary services, prepaid cards, mobile banking, or cryptocurrency services. The nature and breadth of the services and products may also affect the level of transparency, traceability, and compliance of the transactions.

The geographic locations where the institution does business. This involves assessing the jurisdictions where the bank operates, where its customers reside, where its counterparties are located, and where the funds flow. For example, a bank should consider whether it has branches, subsidiaries, or affiliates in high-risk countries, whether it serves customers from high-risk countries, whether it engages in cross-border transactions, and whether it complies with the local laws and regulations of the countries where it does business. The geographic locations where the institution does business may also influence the level of exposure to political, legal, regulatory, or reputational risks.

1: ACAMS Study Guide, Chapter 2: Risk Assessments, 1

Financial institutions must screen customers against adverse information and determine whether they pose a significant financial crime risk.

Option B (Correct):A direct link to an organized crime group is a severe red flag. Organized crime networks engage in money laundering, corruption, and other illicit activities. UnderFATF Recommendations 10 and 12, financial institutions must implement enhanced due diligence (EDD) for high-risk customers and consider account closure if they pose undue risk.

Option A (Incorrect):Bankruptcy does not necessarily indicate financial crime risk, though it may raise financial stability concerns.

Option C (Incorrect):While PEPs pose a higher risk for corruption, financial institutions typically apply EDD rather than immediately terminating the relationship.

Option D (Incorrect):Violating a construction permit is a regulatory issue, not directly linked to financial crime.

A, C, D:

“Trust and asset management services can facilitate the concealment of the source of funds (A), provide a layer of anonymity to transactions (C), and obscure the true legal and beneficial owners (D). These are well-established ML/TF risks in the private wealth sector.”(CAMS 6th Edition, ML/TF Risks in Trust and Asset Management)

B and E are normal aspects of asset management and are not in themselves ML/TF risks unless combined with other suspicious behaviors.

The primary international authoritative body that designates sanctions is the United Nations (UN). The UN Security Council has the power to impose sanctions under Chapter VII of the UN Charter, which deals with threats to the peace, breaches of the peace, and acts of aggression. The UN sanctions are legally binding on all UN member states and aim to maintain or restore international peace and security. The UN sanctions can target individuals, entities, groups, sectors, or countries, and can include measures such as arms embargoes, travel bans, asset freezes, trade restrictions, or diplomatic isolation. The UN sanctions are implemented and enforced by the member states, with the assistance of the UN Secretariat and other specialized agencies. The UN sanctions are periodically reviewed and adjusted by the Security Council, based on the reports of the sanctions committees and expert panels.

1: UN Sanctions1

2: UN Charter, Chapter VII2

3: ACAMS Study Guide for the CAMS Certification Examination3

The two red flags indicating potential engagement of a bank employee in money laundering are A. Lavish lifestyle that cannot be supported by an employee's salary, and E. Maintaining friendships with customers and going to restaurants, games, and other events. A bank employee who has a lifestyle that cannot be supported by their salary could be receiving money from illicit activities. Similarly, if the employee is maintaining friendships and going to social events with customers, they could be receiving money in exchange for providing special services. These behaviors should be monitored closely to ensure that the employee is not engaging in activities that could be linked to money laundering.

Compare customer and transaction records against periodically updated sanctions lists provided by governmental bodies. This is stated in the Certified Anti-Money Laundering Specialist (the 6th edition) manual on page 595, which states: “Sanctions screening requirements include that a financial institution should compare customer and transaction records against periodically updated sanctions lists provided by governmental bodies.”

The FATF measures the effectiveness of a country’s efforts to combat money laundering and terrorist financing through a process known as mutual evaluation. This process involves peer reviews, where experts from other member countries assess the technical compliance and the effectiveness of a country’s anti-money laundering and counter-terrorist financing (AML/CTF) framework. The FATF has developed a methodology that identifies 11 key areas, or immediate outcomes, that an effective AML/CTF system should achieve, and uses them as the basis for the mutual evaluation. The FATF publishes the mutual evaluation reports, which provide an in-depth analysis of the strengths and weaknesses of each country’s AML/CTF regime, as well as recommendations for improvement.

1: An effective system to combat money laundering and terrorist financing, FATF, February 2013.

2: Report on the State of Effectiveness and Compliance with the FATF Standards, FATF, June 2021.

3: Financial Action Task Force (FATF) | Meaning, Functions, Impact, Finance Strategists, September 2023.

4: FATF Recommendations, FATF, October 2020.

 Correspondent banking is the product type that is subject to US extra-jurisdictional reach over non-US banks and non-US persons under the USA PATRIOT Act. This is because correspondent banking involves the provision of banking services by one bank (the correspondent) to anotherbank (the respondent) or to the respondent’s customers. Correspondent banking enables cross-border transactions and access to foreign financial systems, but also poses significant money laundering and terrorist financing risks due to the lack of transparency and accountability of the parties involved. The USA PATRIOT Act requires US financial institutions to apply enhanced due diligence measures to correspondent accounts for certain foreign banks, such as those operating under offshore banking licenses, those owned or controlled by foreign governments, or those of primary money laundering concern. These measures include obtaining information about the ownership, management, and anti-money laundering controls of the foreign bank, as well as the identity and activity of the customers using the correspondent account. The USA PATRIOT Act also authorizes the US Treasury to prohibit or impose conditions on the opening or maintaining of correspondent accounts for foreign banks that are involved in money laundering or terrorist financing activities.

 According to the BSA/AML Manual1, once a financial institution files a SAR, it should maintain a copy of the SAR and the original or business record equivalent of any supporting documentation for a period of five years from the date of filing the SAR. The supporting documentation should be identified and maintained by the financial institution as such, and be deemed to have been filed with the SAR. The financial institution should make all supporting documentation available to FinCEN or any federal, state, or local law enforcement agency, or any federal regulatory authority that examines the financial institution for compliance with the BSA, upon request. Therefore, the best action to take regarding a particular account once suspicious activity is reported by the institution is to secure all supporting documentation, as it may be needed for further investigation or examination.

BSA/AML Manual1

Suspicious Activity Reporting - Overview2

Suspicious Activity Report (SAR) Basics3

The European Union Money Laundering Directives (AMLDs) are issued periodically by the European Parliament to prevent money laundering and terrorist financing and establish a consistent regulatory environment across the EU1. They apply to all member states of the European Union and require them to enact laws and/or regulations to comply with the directives2. The directives are legally binding and set forth minimum standards and obligations for financial institutions and other entities within the member states3. The directives do not set forth non-binding best practices, but rather harmonize the AML/CFT rules and procedures across the EU4. The directives do not have extraterritorial impact and do not apply to states that have diplomatic relations with member states, unless they are part of the European Economic Area (EEA) or have equivalent AML/CFT regimes5.

 1: Guide to EU Anti Money Laundering Directives (AMLD) - ComplyAdvantage 2: Directive - 2015/849 - EN - Fourth Anti-Money Laundering Directive - EUR-Lex 3: EU context of anti-money laundering and countering the financing of terrorism - European Commission 4: EU Anti-Money Laundering Directives (AMLD) | LSEG - Refinitiv 5: Anti-money laundering and countering the financing of terrorism legislative package - European Commission

The customer purchased property insurance that is twice the value of the business indicates potential money laundering. This could be a sign of insurance fraud, which is one of the predicate offenses for money laundering. Insurance fraud involves making false or exaggerated claims to obtain illegitimate financial benefits from an insurance company. The customer may have purchased an excessive amount of insurance to cover the value of the property and then intentionally damage or destroy it to claim the insurance payout. The customer may then use the insurance money to launder the proceeds of other criminal activities.

CAMS Study Guide, 6th Edition, Chapter 1, Section 1.21

CAMS Study Guide, 6th Edition, Chapter 3, Section 3.21

ACAMS Chapter 1 Exam Questions, Question 682

6th Anti-Money Laundering Directive (6AMLD): Biggest Changes, Section 23

Senior management and AML officers may face personal liability if they knowingly allow AML violations to persist.

Option A (Correct):If senior management or the AML officer was aware of violations and failed to act, they could face regulatory or criminal liability.

Option B (Incorrect):Criminal liability depends on intent and negligence—an AML officer is not automatically prosecuted because a bank receives a regulatory order.

Option C (Incorrect):Liability extends beyond the AML officer—other senior executives can also be held accountable.

Option D (Incorrect):Violations can result in both civil and criminal prosecution, depending on the severity.

Legal Risks for AML Compliance Failures:

Civil penalties (fines and sanctions) for AML program deficiencies.

Criminal charges if executives knowingly ignore violations.

Regulatory enforcement actions leading to license revocation.

An offshore company is a legal entity that is incorporated or registered in a foreign jurisdiction, usually with low or no taxes, high confidentiality, and minimal regulation1. Offshore companies are often used to hide beneficial ownership, as they can create complex and opaque structures that obscure the identity and control of the real owners and beneficiaries of the assets or transactions involved2. Offshore companies can also use nominee directors and shareholders, trust and company service providers, and shell companies to further conceal beneficial ownership3. According to the web search results, offshore companies are among the most common vehicles for money laundering, tax evasion, corruption, and other illicit activities4 .

1: What is an offshore company? - ACAMS

2: Guidance on Transparency and Beneficial Ownership - FATF

3: Concealment of Beneficial Ownership - FATF-Egmont Group

4: What’s a Beneficial Owner and Why Does it Matter? - Dun & Bradstreet

The Panama Papers: Exposing the Rogue Offshore Finance Industry - ICIJ

 The Financial Action Task Force (FATF) Recommendation that should cause an anti-money laundering specialist the most concern is B: Financial institutions should not keep anonymous accounts. This is because anonymous accounts are accounts that are opened or maintained without verifying the identity of the customer or the beneficial owner, or with fictitious or incomplete information. Anonymous accounts pose a high risk of money laundering and terrorist financing, as they can be used to conceal the origin, destination, and purpose of illicit funds, and to evade the detection and reporting of suspicious transactions. Therefore, the FATF Recommendation 10 requires financialinstitutions to identify and verify the identity of their customers and the beneficial owners, and to prohibit the opening or maintaining of anonymous accounts or accounts in obviously fictitious names1.

The other options are also FATF Recommendations, but they are less relevant or applicable to the scenario. Option A: Financial institutions should not warn their customers when information relating to them is being reported to the competent authorities, is the FATF Recommendation 21, which aims to prevent tipping-off, i.e., alerting the customer that they are being investigated or reported for money laundering or terrorist financing. However, this does not directly address the issue of identity verification or anonymous accounts2. Option C: Financial institutions should maintain all necessary suspicious transaction report records on transactions, both domestic and international, for at least 5 years, is the FATF Recommendation 11, which aims to ensure that financial institutions have adequate and consistent records of their customers and transactions, and that these records are available to the competent authorities when needed. However, this does not prevent the opening or maintaining of anonymous accounts in the first place3. Option D: If financial institutions suspect that funds stem from criminal activity,they should be required to close the account, is not a FATF Recommendation, but rather a possible action that financial institutions may take in accordance with their risk assessment and policies. However, the FATF does not mandate or recommend the closure of accounts as a general rule, and advises that financial institutions should consult with the competent authorities before taking such action, as it may alert the customer or compromise the investigation4.

1: FATF Recommendation 10: Customer due diligence, 1 2: FATF Recommendation 21: Tipping-off and confidentiality, 2 3: FATF Recommendation 11: Record keeping, 3 4: Frequently Asked Questions (FAQs) related to Suspicious Transaction Reporting, 5

According to the ACAMS CAMS Study Guide, 6th Edition, Chapter 3, Section 3.2, the financial institution should implement the following measures in order to identify and investigate money laundering activity from their clients:

Adverse news screening: This is a process of checking the clients’ names and related parties against various sources of negative or adverse information, such as media reports, sanctions lists, watch lists, law enforcement databases, etc. Adverse news screening can help the financial institution to detect any potential red flags or indicators of money laundering or other criminal activities involving their clients, and to take appropriate actions, such as conducting enhanced due diligence, filing suspicious activity reports, or terminating the relationship.

Transaction monitoring: This is a process of reviewing and analyzing the clients’ transactions and activities, such as deposits, withdrawals, transfers, payments, etc., to identify any unusual or suspicious patterns or behaviors that deviate from their normal or expected profile. Transaction monitoring can help the financial institution to detect any possible signs of money laundering orother financial crimes, such as structuring, layering, integration, fraud, tax evasion, etc., and to investigate and report them accordingly.

The other options are not measures that the financial institution should implement in order to identify and investigate money laundering activity from their clients, although they may be part of the overall AML program or compliance culture:

Integrity policy: This is a document that outlines the ethical principles and values that guide the conduct and behavior of the financial institution and its employees. An integrity policy can help the financial institution to promote a culture of honesty, transparency, and accountability, and to prevent or deter any misconduct or corruption. However, an integrity policy alone is not sufficient or specific enough to identify and investigate money laundering activity from their clients.

Whistleblower hotline: This is a mechanism that allows the employees or other stakeholders of the financial institution to report any suspected or observed violations of the AML policies, procedures, or regulations, or any other wrongdoing or malpractice, without fear of retaliation or reprisal. A whistleblower hotline can help the financial institution to encourage and facilitate the reporting of any potential or actual money laundering activity from their clients or within the organization, and to protect the rights and interests of the whistleblowers. However, a whistleblower hotline is not a measure that the financial institution implements to identify and investigate money laundering activity from their clients, but rather a tool that supports the AML program and compliance function.

Code of conduct: This is a document that defines the standards and expectations of the financial institution and its employees regarding their professional and ethical behavior, responsibilities, and obligations. A code of conduct can help the financial institution to establish and maintain a culture of compliance and integrity, and to prevent or address any conflicts of interest, misconduct, or abuse of power. However, a code of conduct is not a measure that the financial institution implements to identify and investigate money laundering activity from their clients, but rather a framework that governs the AML program and compliance function.

Theart and antiquities marketis frequently exploited formoney laundering and terrorist financing.

Option A (Correct):Art storage facilities in tax-free zonesallowanonymous transactions, creatinghigh AML risk.

Option C (Correct):Third-party art advisorscan be used asintermediariestoobscure true ownership.

Option D (Correct):Selling art on social mediawithout proper vetting allows foranonymous transactions.

Option B (Incorrect):Paying fair market valuedoes not indicatesuspicious activity.

Option E (Incorrect):Authenticity verificationdoes notincrease AML risk.

 According to the ACAMS CAMS Study Guide, 6th Edition, Chapter 2, Section 2.1, the AML program should be reassessed periodically or when there are significant changes in the business environment, such as:

Expansion of business to new territories: This could expose the business to new risks, regulations, and customers that require different AML policies, procedures, and controls. The AML program should be updated to reflect the new jurisdictions and their AML requirements, as well as to conduct appropriate risk assessments and due diligence on the new markets and customers.

New product offering: This could introduce new vulnerabilities, opportunities, and challenges for the AML program. The AML program should be revised to incorporate the new product features, benefits, and risks, as well as to ensure compliance with any applicable AML rules and standards for the new product.

The other options are not factors that would necessarily lead to a reassessment of the current AML program, unless they have a material impact on the AML risks, objectives, or performance of the business:

Appointment of a new Chief Financial Officer: This could affect the AML program if the new CFO has a different vision, strategy, or approach to AML than the previous one, or if the new CFO has a significant role or responsibility in the AML program. However, the appointment of a new CFO alone does not trigger a reassessment of the AML program, unless there are other changes or issues that warrant a review.

Change of company name: This could affect the AML program if the change of name reflects a change of ownership, structure, or nature of the business that could alter the AML risks, obligations, or expectations. However, the change of name alone does not necessitate a reassessment of the AML program, unless there are other implications or consequences that affect the AML program.

Change of internal audit team members: This could affect the AML program if the new internal audit team members have different qualifications, skills, or experiences than the previous ones, or if the new internal audit team members have a different scope, methodology, or frequency of auditing the AML program. However, the change of internal audit team members alone does not require a reassessment of the AML program, unless there are other factors or findings that indicate a need for a review.

A customer visiting multiple branches of the MSB on the same day in order to transfer funds internationally is a potential indicator of structuring, which is a technique used by money launderers to avoid reporting thresholds or detection by authorities. A customer attempting to buy money orders under $3,000 USD in cash multiple times a day is also apossible sign of structuring, as well as an attempt to evade the identification and recordkeeping requirements for MSBs. Both scenarios should be included in the procedures for further review by the AML Officer.

BSA/AML Risk Assessment for Money Services Businesses (MSBs), section “Risk Factors”, sub-section “Structuring”: “Structuring is the practice of conducting financial transactions in a specific pattern calculated to avoid the creation of certain records and reports required by the BSA and/or 31 CFR Chapter X. Structuring is illegal and is often indicative of money laundering or other illicit activity.”

Money Services Business (MSB) — AML Compliance Guide, section “AML Compliance Requirements for MSBs”, sub-section “Identification and Recordkeeping”: “MSBs must verify the identity of any person who conducts a transaction of $3,000 or more. They must also keep records of the transaction, including the name, address, date of birth, and identification number of the customer, as well as the amount, date, and method of payment.”

 According to the Anti-Money Laundering Specialist (the 6th edition) resources, the FATF mutual evaluation process is a peer review mechanism that assesses the level of compliance of a country with the FATF 40 recommendations and the effectiveness of its anti-money laundering and counter-terrorist financing system. The mutual evaluation report identifies the strengths and weaknesses of the assessed country and provides recommendations for improvement. The assessed country needs to address the shortcomings identified in the report and agree to post-assessment monitoring by FATF, which involves regular follow-up reports and actions to remedy the deficiencies. The other options are not correct, as they do not reflect the FATF mutual evaluation process or the obligations of the assessed country.

OFAC sanctions are a key element of the U.S. AML/CFT framework. According to the CAMS 6th Edition and OFAC regulations:

Blocked funds must be placed into an interest-bearing account on a financial institution's books (B):“Blocked property must be held in a separate interest-bearing account on the books of the U.S. financial institution.”(CAMS 6th Edition, Sanctions Compliance; OFAC FAQs)

Sanctions can be either comprehensive or selective using the blocking of assets and trade restrictions (C):“OFAC administers both comprehensive and targeted (selective) sanctions programs to fulfill U.S. foreign policy and national security goals.”(CAMS 6th Edition, Sanctions Compliance)

Incorrect Options:

A: OFAC can sanction entities, vessels, and organizations—not just individuals or those in foreign countries.

D: There is no automatic expiration of OFAC sanctions after five years.

When an FI is being investigated for possible money laundering, it is important that it cooperates with the law enforcement agencies (LEAs) in a professional and transparent manner. This means that the FI should take the following steps:

Maintain centralized control over all requests and responses to ensure completeness and timely responses. This will help the FI to avoid duplication, inconsistency, or omission of information, as well as to track the status and progress of the requests and responses. It will also facilitate the communication and coordination between the FI and the LEAs, and demonstrate the FI’s willingness to cooperate12.

Review subpoenas and other information requests by senior management and an investigations group or counsel. This will help the FI to assess the scope, relevance, and legality of the requests, as well as to identify any potential risks, conflicts, or sensitivities. It will also enable the FI to prepare and provide the requested information in an accurate and timely manner, and to seek clarification or negotiation if necessary13.

The other options are not advisable, as they may indicate a lack of cooperation, obstruct the investigation, or damage the FI’s reputation. For example:

Making employees, including corporate officers, unavailable for interviews and refusing documents upon receipt of a subpoena may be considered as non-compliance, evasion, or contempt of court, and may result in legal sanctions or penalties4.

Addressing the document destruction policy to ensure the relevant documents are destroyed may be seen as tampering with evidence, destroying records, or concealing information, and may constitute a criminal offence or a breach of regulatory obligations5.

Not answering inquiries from the media directly, but rather replying, “No comment” may create a negative impression, fuel speculation, or invite criticism, and may harm the FI’s image, credibility, or trustworthiness.

Cooperation between FIUs, Law Enforcement Authorities, and Prosecutors

AML and Financial crimes investigation

Mechanisms for interaction of law enforcement agencies in the field of counteracting and combating money laundering

Recommendation 30: Responsibilities of law enforcement and investigative authorities

Money laundering and illicit finance

 According to the Wolfsberg Group, the FI should take the following steps regarding the opening of the account for the senior government official:

Reasonably establish if the source of wealth and funds of the official is legitimate. This is to ensure that the FI is not facilitating the laundering of proceeds of corruption, bribery, or other illicit activities by the official, who is considered a politically exposed person (PEP) and poses a higher risk of financial crime. The FI should obtain information and documentation on the origin andownership of the funds, the official’s income and assets, and the purpose and expected activity of the account12.

Perform due diligence procedures on the managing intermediary. This is to verify the identity, reputation, and regulatory status of the intermediary, who acts as a third party on behalf of the official. The FI should also assess the intermediary’s own AML/CFT policies and controls, and the nature and extent of the relationship between the intermediary and the official13.

Determine whether the intermediary representative is acting on the officer’s behalf. This is to establish the beneficial ownership and control of the account, and to avoid any potential conflicts of interest or undue influence by the intermediary. The FI should obtain a written confirmation from the intermediary that they are authorized to act on behalf of the official, and that they will disclose any changes in the beneficial ownership or control of the account13.

The bank’s current anti-money laundering program is inadequate because it does not include a process for monitoring customer account activity, which is a key component of detecting and reporting suspicious transactions. The fact that the consultant and the bank have mutual clients does not affect the risk rating of those customers, nor does it justify a lower level of scrutiny. The bank should revise its procedures to ensure that it has a comprehensive and risk-based approach to customer due diligence, transaction monitoring, and reporting.

CAMS Certification Package - 6th Edition, Chapter 3: Compliance Standards for Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT), pp. 67-69.

FATF Guidance for a Risk-Based Approach: Legal Professionals, pp. 10-11, 19-20.

BSA/AML Internal Audit: PwC, pp. 1-2.

Customer due diligence should be implemented as an ongoing activity that may vary commensurate with the risk profile of the customer. This is because the risk of money laundering or terrorist financing may change over time, depending on the customer’s behavior, transactions, products, services, and geographic locations. The institution should monitor the customer’s activity and update the customer’s information and risk assessment periodically, or when there are red flags or significant changes in the customer’s circumstances. The institution should also apply enhanced due diligencemeasures for customers that pose higher risks, and simplified due diligence measures for customers that pose lower risks12.

1: CAMS Certification Package - 6th Edition | ACAMS, Chapter 1: Risks and Methods of Money Laundering and Terrorist Financing, p. 18-19 2: FATF Guidance: Customer Due Diligence and Financial Inclusion, February 2018, p. 10-11, http://www.fatf-gafi.org/media/fatf/documents/reports/Guidance-CDD-and-Financial-Inclusion-2018.pdf

The best course of action for the FI in this scenario is to consider retaining qualified, experienced legal counsel. This is because the investigation request from the local law enforcement agency may involve complex legal issues, such as confidentiality, privacy, data protection, and cooperation obligations. The FI may need to balance the interests of the customer, the law enforcement agency, and the FI itself, and ensure that it complies with the applicable laws and regulations in responding to the request. The legal counsel can advise the FI on the scope, validity, and implications of the request, and help the FI to prepare and submit the required information in a timely and appropriate manner. The legal counsel can also protect the FI from any potential liability or litigation arising from the investigation.

1: Requests by Law Enforcement for Financial Institutions to Maintain Accounts and/or Conduct Transactions1

2: Answers to Frequently Asked Questions Regarding Suspicious Activity Reporting and Other Anti-Money Laundering Considerations2

3: ACAMS Study Guide for the CAMS Certification Examination3

According to the Certified Anti-Money Laundering Specialist (CAMS) study guide, 6th edition, page 105, the correct answer is C. It can be difficult to determine if there is negative media associated with counterparties solely from the customer's account activity and KYC file.

The study guide explains that negative media can include news articles, government sanctions lists, and other sources of public information that may indicate that a counterparty is involved in illicit activities. However, this information may not be readily available in a customer's account activity or KYC file, and may require additional research or investigation.

Money laundering has a significant negative impact on the financial sector by undermining the integrity of financial markets. It distorts asset and commodity prices and leads to the misallocation of resources, which can dampen economic growth. The process also erodes public trust in the financial system and can deter foreign investment.

According to the ACAMS CAMS Study Guide, one of the methods that attorneys may use to facilitate money laundering is to make payments to third parties on behalf of their clients, using funds from their client accounts. This may obscure the source and destination of the funds, and create a false appearance of legitimate transactions. Therefore, making payment to various people is a red flag for potential money laundering in this situation.

ACAMS CAMS Study Guide, 6th Edition, page 117

FATF Report on Money Laundering and Terrorist Financing Vulnerabilities of Legal Professionals, June 2013, page 341

AML/CFT Red Flags for Lawyers, AML-CFT.net, October 20202

 This is a red flag of money laundering or terrorist financing that involves the use of non-profit organizations (NPOs) as conduits for illicit funds. NPOs may be vulnerable to abuse by criminals who exploit their legitimate activities, reputation, and access to funds and resources. A transaction monitoring process that would alert a bank for this red flag activity is to analyze the source, destination, frequency, and purpose of the funds transferred to and from the charity account, and to compare them with the expected profile and activity of the NPO. If the bank detects any inconsistency, discrepancy, or deviation from the norm, it should raise an alert and conduct further investigation.

FATF Report: Risk of Terrorist Abuse in Non-Profit Organisations, page 9

Transaction Monitoring Processes for Red Flag Activity in Banking

AML Red Flags – What are the Top 10 Indicators? - ComplyAdvantage, section “Red flags related to the nature of transactions”

The method of purchasing chips with cash and redeeming them for a check is used to launder money in casinos. This is because the check can be deposited into a bank account or cashed at another location, creating a paper trail that appears to be legitimate. The check can also be used to conceal the source and amount of the cash, as well as the identity of the person who obtained it. This method is also known as “chip washing” or “chip dumping” and is one of the common ways that money launderers exploit casinos12.

1: CAMS Certification Package - 6th Edition | ACAMS, Chapter 2: Money Laundering Risks and Methods, p. 32-33 2: FATF Report: Money Laundering through the Physical Transportation of Cash, October 2015, p. 28-29, http://www.fatf-gafi.org/media/fatf/documents/reports/money-laundering-through-transportation-cash.pdf

According to the Anti-Money Laundering Specialist (the 6th edition) resources, PEPs are individuals who are or have been entrusted with prominent public functions, such as heads of state, senior politicians, senior government, judicial or military officials, senior executives of state-owned corporations, or important political party officials1. PEPs pose a higher risk of money laundering and corruption due to their position and influence2. Therefore, financial institutions should apply enhanced due diligence and ongoing monitoring measures when dealing with PEPs as customers3. This includes:

Conducting enhanced ongoing monitoring of the businessrelationship to detect and report any suspicious transactions or activities4. This may involve more frequent reviews, higher-level approvals, or increased documentation of the transactions and the rationale behind them.

Taking adequate measures to establish the source of wealth and source of funds which are involved in the business relationship or occasional transaction. This may involve verifying the origin, legitimacy, and purpose of the funds, as well as the economic activities and assets of the PEP.

The other two options are incorrect because:

Expedite due diligence when a PEP is pre-approved by a member of senior management is not a recommended course of action, as it may compromise the quality and integrity of the due diligence process. Pre-approval by senior management does not exempt the financial institution from conducting thorough and timely due diligence on the PEP and the business relationship.

Obtain appropriate senior management approval for establishing a business relationship with a PEP from a high risk country is a necessary but not sufficient course of action, as it does not address the ongoing monitoring and source of funds aspects of the PEP risk management. Senior management approval is required for establishing or continuing a business relationship with a PEP, regardless of the country of origin or residence of the PEP.

1: ACAMS, CAMS Study Guide, 6th Edition, Chapter 4, p. 83 2: ACAMS, CAMS Study Guide, 6th Edition, Chapter 4, p. 84 3: ACAMS, CAMS Study Guide, 6th Edition, Chapter 4, p. 85 4: ACAMS, CAMS Study Guide, 6th Edition, Chapter 4, p. 86 : ACAMS, CAMS Study Guide, 6th Edition, Chapter 4, p. 87 : ACAMS, CAMS Study Guide, 6th Edition, Chapter 4, p. 86 : ACAMS, CAMS Study Guide, 6th Edition, Chapter 4, p. 87 : ACAMS, CAMS Study Guide, 6th Edition, Chapter 4, p. 88 : ACAMS, CAMS Study Guide, 6th Edition, Chapter 4, p. 88 : ACAMS, CAMS Study Guide, 6th Edition, Chapter 4, p. 88 : ACAMS, CAMS Study Guide, 6th Edition, Chapter 4, p. 88

If a financial institution wishes to close an account due to concerns about potential money laundering or other financial crimes, it is generally required to file a suspicious activity report (SAR) with the appropriate government agency. However, there may beinstances where the government requires the account to remain open for ongoing investigation purposes.

In such cases, the government must provide a written request under proper letterhead and authority to keep the account open. This document will serve as legal justification for the financial institution to maintain the account, even though it may pose a higher risk for money laundering or other financial crimes.

1. D. The account received a large cash deposit followed by systematic automated teller machine (ATM) withdrawals until the balance was nominal.

This pattern of behavior, known as “structuring” or “smurfing,” is often associated with money laundering. The large cash deposit followed by smaller withdrawals in a systematic manner raises red flags and requires further investigation.

2. E. The customer conducts multiple cash transactions on a regular basis which do not match the customer’s occupation.

Conducting frequent cash transactions that do not align with the customer’s stated occupation or income source is suspicious. It suggests potential attempts to hide the true origin of funds or evade reporting requirements1.

D. Large Cash Deposit Followed by ATM Withdrawals:

The large cash deposit followed by systematic ATM withdrawals is indicative of structuring, a common money laundering technique. Structuring involves breaking down large sums of money into smaller transactions to avoid detection. In this case, the customer’s behavior warrants further scrutiny to determine the purpose behind these transactions.

E. Inconsistent Cash Transactions:

When a customer conducts multiple cash transactions that do not align with their stated occupation or income source, it raises suspicions. Such behavior may indicate an attempt to obscure the true origin of funds or evade reporting requirements. Investigating the reasons behind these inconsistent cash transactions is essential to assess potential money laundering risks1.

 The investigator should escalate these concerns to the bank anti-money laundering officer, who is responsible for overseeing the implementation and effectiveness of the bank’s AML/CFT policies and procedures, as well as ensuring compliance with relevant laws and regulations. The bank anti-money laundering officer can then decide on the appropriate course of action, such as conducting further investigation, reporting to the regulators, or terminating the relationship with the customer. The other options are not suitable for escalating these concerns, as they may not have the authority, expertise, or responsibility to handle such matters.

ACAMS, CAMS Examination Study Guide, 6th Edition, Chapter 4, pp. 113-114

FATF Guidance: The Role of Hawala and Other Similar Service Providers in Money Laundering and Terrorist Financing, October 20131, p. 19

Basel Committee on Banking Supervision, Sound management of risks related to money laundering and financing of terrorism, June 20172, p. 10

The customer’s wire transfers to high-risk jurisdictions and the large volume of activity with low month-end balance are two facts that should be considered during the course of an investigation into possible money laundering. These facts may indicate that the customer is trying to move funds from or to countries that have weak anti-money laundering (AML) controls, or that are known to be a source or destination of illicitfunds12. They may also suggest that the customer is using a technique called “smurfing” or “structuring”, which involves breaking down large amounts of cash into smaller transactions to avoid detection or reporting34. The other two facts are not necessarily indicative of money laundering, as the customer may have a legitimate reason to have a long-standing account at the bank or to be on the exempt list for currency transaction reporting requirements.

 1: FFIEC BSA/AML Examination Manual, Appendix F: Money Laundering and Terrorist Financing Red Flags, Geographic Concerns, 5; 2: AML Red Flags – What are the Top 10 Indicators?, ComplyAdvantage, 6; 3: FFIEC BSA/AML Examination Manual, Appendix F: Money Laundering and Terrorist Financing Red Flags, Transaction Has Unusual Features, 5; 4: Money Laundering Red Flags | Key Behaviours and Indicators, High Speed Training, 7.

The Basel Committee on Banking Supervision identified four risks to banking institutions as a result of an inadequate KYC program: legal, reputational, operational, and concentration. Legal risks include the potential for fines or sanctions for non-compliance with applicable laws and regulations. Reputational risks include the loss of customer confidence due to the institution's involvement in illicit activities. Operational risks include the potential for fraudulent or suspicious activity to go undetected. Finally, concentration risks involve the potential for a single customer or group of related customers to dominate the institution's operations.

Mutual Legal Assistance Treaties (MLATs) are characteristics of D. only involving two countries, E. cooperatively combating crime between countries, and F. being useful for gathering evidenceand intelligence in a foreign country. MLATs are public and binding under international law (A), can be used for obtaining banking records from treaty partners (B), and provide a legal basis for transmitting evidence ©.

 The next course of action for the anti-money laundering officer to take is to determine if there is a readily identifiable cause for the increase in compliance deficiencies. This could involve analyzing the data, interviewing the staff, reviewing the procedures, or conducting a root cause analysis. The anti-money laundering officer should try to find out if the deficiencies are due to human error, system failure, policy ambiguity, training gap, external factors, or any other reason. By identifying the cause, the anti-money laundering officer can then take appropriate corrective or preventive measures to address the issue and improve the compliance performance.

CAMS Study Guide - 6th Edition, Chapter 6, pages 171-172

CAMS Certification Exam Outline, Domain 3, Task 3.1, Skill 3.1.2

Anti-Money Laundering & Know Your Customer eBook, Chapter 5, pages 63-64

Summary of the Global Anti-Money Laundering Know Your Customer Policy, page 3

According to the FATF Procedures for the Fourth Round of AML/CFT Mutual Evaluations1, jurisdictions that are determined to have strategic deficiencies in their regimes to counter money laundering, terrorist financing, and proliferation financing are subject to the FATF’s International Cooperation Review Group (ICRG) process. The ICRG process involves the following actions for such jurisdictions:

Demonstrate a high-level commitment to swiftly resolve the identified deficiencies in the FATF mutual evaluation report. This commitment should be made in writing to the FATF President and should include an action plan with specific deadlines and milestones to address the deficiencies.

Report to FATF on the implementation of their progress under the enhanced follow-up mechanism. The FATF will monitor the progress of the jurisdiction through regular reports and on-site visits, and will decide whether the jurisdiction has made sufficient progress to exit the ICRG process or whether further actions are required, such as public statements, counter-measures, or suspension of membership.

The other options are not resulting actions for jurisdictions with strategic deficiencies, as they are either not part of the FATF procedures or not consistent with the FATF’s objectives and principles. For example, the FATF does not issue private statements regarding the level of compliance of a jurisdiction, nor does it allow a jurisdiction to appeal for a technical compliance re-rating based on its own criteria. The FATF also does not grant extensions of deadlines for jurisdictions to improve their regimes, as this would undermine the credibility and effectiveness of the mutual evaluation process.

1: Mutual Evaluations - Financial Action Task Force

2: Procedures for the FATF Fourth Round of AML/CFT Mutual Evaluations

According to the ACAMS CAMS Certification Video Training Course1, one of the red flags for money laundering is “transferring funds to or from foreign countries or jurisdictions that are known to have weak anti-money laundering standards or are considered high-risk for money laundering or terrorist financing” (Module 2, Lesson 3, Part 2). This is also consistent with the suspicious activity report (SAR) criteria, which require financial institutions to report transactions that “involve funds derived from illegal activity or are intended or conducted to hide or disguise funds or assets derived from illegal activity” or “involve the use of the financial institution to facilitate criminal activity” (31 CFR § 1020.320(a)(2)). Therefore, the customer’s request to transfer funds to accounts in three different foreign jurisdictions should be the focus of the SAR, as it may indicate an attempt to launder money or finance terrorism.

ACAMS CAMS Certification Video Training Course

[31 CFR § 1020.320 - Reports by banks of suspicious transactions]

Online banking is vulnerable to all three stages of money laundering, namely placement, layering, and integration, because it allows the movement of funds across different accounts, jurisdictions, and institutions with speed, anonymity, and convenience. Online banking can facilitate the following money laundering methods:

Placement: The initial stage of money laundering, where illicit funds are introduced into the financial system. Online banking can enable placement by allowing the deposit of cash or checks through ATMs, mobile devices, or remote deposit capture, or the transfer of funds from prepaid cards, digital wallets, or cryptocurrencies to bank accounts.

Layering: The second stage of money laundering, where illicit funds are moved, disguised, or concealed to obscure their origin and ownership. Online banking can enable layering by allowing the transfer of funds between multiple accounts, often in different jurisdictions or currencies, or the purchase of financial products or services, such as money orders, wire transfers, or online gambling, that create complex transaction trails.

Integration: The final stage of money laundering, where illicit funds are reintroduced into the legitimate economy as apparently legal income or assets. Online banking can enable integration by allowing the transfer of funds to legitimate businesses, investments, or charities, or the purchase of goods or services, such as real estate, luxury items, or travel, that provide a cover for the source of funds.

ACAMS CAMS Certification Video Training Course1, Module 2: Money Laundering Risks and Methods, Lesson 2.1: The Three Stages of Money Laundering

ACAMS CAMS Study Guide, 6th Edition2, Chapter 2: Money Laundering Risks and Methods, Section 2.1: The Three Stages of Money Laundering, pp. 29-34

ACAMS CAMS Examination Preparation Seminar, 6th Edition3, Chapter 2: Money Laundering Risks and Methods, Section 2.1: The Three Stages of Money Laundering, Slides 9-13

The correct answer is C. Wires received in large, even dollar amounts are a suspicious behavior, as they may indicate an attempt to avoid reporting thresholds or to conceal the source of funds. Large and round numbers are often used by money launderers to simplify calculations or to avoid arousing suspicion12. The other options are not necessarily suspicious, as they may reflect the normal business operations of a wholesale auto business that ships vehicles internationally. The dock shipping receipts match the vehicles (A), vehicles are regularly shipped internationally (B), and account debits are payable to transport companies (D) are all plausible and legitimate activities for such a business.

ACAMS CAMS Certification Video Training Course3, Module 3: Risks and Methods of Money Laundering and Terrorism Financing, Lesson 2: Methods of Money Laundering

ACAMS CAMS Certification Study Guide1, Chapter 3: Risks and Methods of Money Laundering and Terrorism Financing, Section 3.2: Methods of Money Laundering, pp. 79-80

Real estate ML/TF risk is highest where transparency is low or the origin of funds is obscured:

Use of cash to purchase property (A):“All-cash transactions in real estate present a high ML risk, as they bypass traditional financial scrutiny and facilitate the placement of illicit funds.”(CAMS 6th Edition, Real Estate Money Laundering Risks)

Use of a company for the purchase of property (D):“Purchasing property through companies, especially shell companies, can conceal the beneficial owner and the true source of funds.”(CAMS 6th Edition, Real Estate ML/TF Risks; FATF, Real Estate Sector)

Incorrect Options:

B: Unlicensed agents may be risky, but the core risks are A and D.

C: Trusts may add complexity but are less common/high-risk than company structures.

E: Value manipulation is risky but less so than the above.

The scenario described in the question presents several indicators of potential money laundering through real estate, which the broker should be aware of and report accordingly. The most relevant red flags are:

Value: The student wants to buy a home that is overvalued, meaning that the asking price is higher than the market value or the appraisal value of the property. This could indicate that the student is trying to launder a large amount of illicit funds in one transaction, or that the seller is colluding with the student to inflate the price and receive a kickback. Overvaluing or undervaluing properties is a common technique used by money launderers to manipulate the price of real estate and conceal the source or destination of their funds12.

Inconsistency: The student’s behavior and profile are inconsistent with the typical characteristics of a legitimate home buyer. The student cancels the viewing of the home at the last minute due to illness, which could suggest a lack of interest or a pretext to avoid scrutiny. The student also wants to buy an expensive home despite being a student, which could indicate a discrepancy between the student’s income and the source of funds. Moreover, the student disregards the broker’s objections to the asking price, which could imply that the student is not concerned about the value or quality of the property, but rather the amount of money that can be laundered through it34.

Transaction speed: The student wants to quickly buy the home, which could indicate a sense of urgency or pressure to move the illicit funds before they are detected or seized by the authorities. Money launderers often use fast transactions to avoid raising suspicion or leaving a paper trail. Transaction speed is especially relevant when combined with other red flags, such as cash payments, anonymous buyers, or overvalued properties5 .

RefThis transaction should result in a SAR/STR filing because it indicates possible structuring, which is a form of money laundering that involves breaking down large amounts of cash into smaller deposits to avoid detection or reporting requirements. Structuring is often done to conceal the source or destination of illicit funds, or to evade taxes, regulations, or sanctions. A small business owner who deposits checks just below the $10,000 USD threshold on a daily basis without providing a legitimate purpose raises a red flag for suspicious activity and should be reported to the relevant Financial Intelligence Unit.

Suspicious Transaction Report (STR) / Suspicious Activity Report (SAR)

What Is a Suspicious Activity Report (SAR)? Triggers and Filing

How to decide if SAR filing is needed

erence: https://aml-cft.net/library/suspicious-transaction-report-str-suspicious-activity-report-sar/

According to the ACAMS CAMS Certification Study Guide (6th edition), one of the red flags for money laundering is the structuring of cash transactions to avoid reporting thresholds. Structuring is the practice of breaking down large amounts of cash into smaller deposits or withdrawals that are below the reporting threshold of $10,000 in the United States or equivalent amounts in other jurisdictions. Structuring is done to evadethe detection and reporting of cash transactions by financial institutions to the authorities. Therefore, when an accountable institution identifies that a customer is engaging in structuring or other forms of cash transaction manipulation, it should file a SAR/STR to report the suspicious activity1

 1: ACAMS CAMS Certification Study Guide (6th edition), page 64.

According to the CAMS Study Guide, page 173, “If an independent investigation provides grounds to interview the employee, the employee can be interviewed and, if necessary, terminated, but not advised that he or she is under investigation by law enforcement.” This is because informing the employee of the law enforcement investigation could compromise the integrity of the case and potentially expose the institution to legal liability. Therefore, option B is the correct answer.

CAMS Study Guide, page 1731

CAMS Exam Questions and Free Practice Test, Question 2872

AML risk assessments are a key component of the risk-based approach to AML compliance, as required by the MLR 20171 and the FATF Recommendations2. AML risk assessments help FIs to identify, assess, and mitigate the money laundering and terrorist financing risks they face, taking into account their specific products, services, customers, and geographic locations. AML risk assessments also help FIs to allocate their resources and implement their AML policies and procedures in a proportionate and effective manner. AML risk assessments are not meant to be a one-off exercise, but rather an ongoing process that should be updated regularly to reflect changes in the FI’s risk profile and the external environment.

1: The Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017

2: The FATF Recommendations - International Standards on Combating Money Laundering and the Financing of Terrorism & Proliferation

TheFATF 40 Recommendationsoutlineglobal AML/CFT standards, includingrisk-based compliance and beneficial ownership transparency.

Option B (Correct):FATF requires nations to implement financial sanctions in coordination with the UN Security Council.

Option C (Correct):FATF emphasizes a risk-based approach (RBA) to prevent ML/TF.

Option E (Correct):FATF mandates transparency in beneficial ownership to prevent shell company misuse.

Why Other Options Are Incorrect:

Option A (Incorrect):FATF does not require institutions to avoid high-risk customers but to apply appropriate risk-based controls.

Option D (Incorrect):Governments do not need identical crime investigation frameworks but should ensure effective cooperation.

Best Practices for FATF Compliance:

Apply risk-based due diligence on high-risk customers.

Enhance beneficial ownership transparency measures.

Implement targeted financial sanctions in coordination with global authorities.

payments received on the account that reference unknown companies in the instructions indicate a possible attempt to obscure the source or purpose of the funds. This could be a sign of money laundering, tax evasion, fraud, or other illicit activities. Such payments should be referred to AML Investigations for further review and verification of the identity and legitimacy of the companies involved.

FATF Guidance on the Risk-Based Approach for Dealers in Precious Metals and Stones, page 18, paragraph 57: “The dealer should also pay attention to the information provided by the customer on the source and origin of the funds or assets, and verify it where possible. For example, the dealer should be alert to situations where the customer provides vague, incomplete or inconsistent information about the source and origin of the funds or assets, or where the information provided does not match with the customer’s profile or business activity.”

Risk-Based Approach For Dealers in Precious Metals and Stones (DPMS), section “Business-based risk approach”, sub-section “2- Geographical location”: “You must also assess the geographical location of your business and the countries you deal with. You must be aware of the countries that are high-risk or non-cooperative jurisdictions as per the FATF recommendations. You must also consider the countries that are subject to sanctions, embargoes, or similar measures issued by the United Nations, the European Union, or any other relevant organization. You must also be careful of the countries that are known to have significant levels of corruption, organized crime, or terrorist activity.”

What are the Risks of Money Laundering for Precious Metals Dealers?, section “Money Laundering Red Flags for DPMS”, bullet point 4: “The customer provides vague, incomplete, or inconsistent information about the source and origin of the funds or assets.”

This is stated in the Certified Anti-Money Laundering Specialist (the 6th edition) manual on page 595, which states: “Potential indicators of money laundering associated with Trust and Company Service Providers include the use of legal persons in jurisdictions with strict secrecy laws, structuring cash deposits into third party accounts, multi-jurisdictional wire transfers with no legal purpose, and frequent deposits to or withdrawals from bank accounts.”

The Basel Committee on Banking Supervision’s Customer Due Diligence for Banks Paper recommends that banks should verify the bank has a physical presence in the country where it is incorporated and confirm the bank is subject to regulatory supervision with adequate anti-money laundering laws before opening a correspondent account. These steps are intended to prevent the establishment of relationships with shell banks, which are banks that have no physical presence in any country and are not affiliated with a regulated financial group. Shell banks pose a high risk of money laundering and terrorist financing, as they can be used to hide the identity and source of funds, evade regulatory oversight, and facilitate illicit transactions. Therefore, banks should conduct enhanced due diligence on correspondent banks that operate in offshore jurisdictions, where the regulatory standards and transparency may be lower or insufficient.

ACAMS CAMS Certification Study Guide, 6th Edition, Chapter 4, Section 4.3.1, p. 1091

ACAMS CAMS Certification Exam Outline, 6th Edition, Domain 2, Task 2.2, p. 52

Basel Committee on Banking Supervision, Customer Due Diligence for Banks, October 2001, p. 13-143

 The board of directors or designated specialized committee should be provided with statistical data regarding SARs filed during the reported period, such as the number, type, and amount of SARs, as well as any trends or patterns identified. This would enable them to oversee the effectiveness of the anti-money laundering program and ensure compliance with regulatory requirements. Providing too much detail, such as names of customers or copies of SARs, could compromise the confidentiality of the SARs and expose the institution to legal risks.

TheAML analyst must gather additional informationbefore determining if an alert is suspicious.

Option C (Correct):Requesting information from the relationship managerhelps determineif the transaction is in line with the customer’s profile.

Option A (Incorrect):Below-the-line testingis useful forcalibrating AML models, but it doesnot help in real-time case evaluation.

Option B (Incorrect):Directly contacting a counterparty bankmaynot be appropriatewithout internal analysis first.

Option D (Incorrect):Restricting accessis aserious actionthat should only be takenafter a full investigation.

Paying a large amount in cash for an art purchase is a typical red flag of potential money laundering, as it may indicate an attempt to avoid traceability and reporting requirements. Cash transactions are often used by criminals to launder illicit funds, as they are difficult to track and verify. According to the FATF guidance on money laundering and terrorist financing risks in the art trade, cash payments above a certain threshold should be subject to enhanced due diligence and reporting obligations by art market participants (AMPs). AMPs should also be wary of customers who provide insufficient or inconsistent information about the source of funds, the purpose of the transaction, or the identity of the beneficial owner.

The United Nations Security Council (UNSC) is the only body with the legal authority under international law to impose binding sanctions on countries, entities, or individuals.

“The Security Council’s primary function in imposing sanctions is to maintain or restore international peace and security. These sanctions are legally binding on all UN member states.”

(CAMS 6th Edition, Chapter: International Sanctions and Proliferation Financing; United Nations Charter, Article 41)

Incorrect Options:

B: Sanctions may address AML/CFT failings, but the core mandate is international peace/security.

C: The UNSC does not primarily conduct research or impact analysis.

D: The purpose is international peace/security, not only domestic financial stability.

The Financial Action Task Force (FATF) is an inter-governmental body that sets standards and monitors compliance with anti-money laundering and counter-terrorist financing (AML/CFT) measures. The FATF conducts periodic mutual evaluations of its members and other jurisdictions to assess their level of implementation of the FATF Recommendations, which are the international AML/CFT standards. The FATF also identifies jurisdictions with strategic deficiencies in their AML/CFT regimes that pose a risk to the international financial system, and places them on two public lists: the High-Risk Jurisdictions subject to a Call for Action (also known as the black list) and the Jurisdictions under Increased Monitoring (also known as the grey list). The FATF works with these jurisdictions to address their deficiencies and monitors their progress through regular follow-up reports and on-site visits. The FATF may remove a jurisdiction from the list if it has made sufficient and sustainable progress in implementing the required reforms and has effectively addressed the identified strategic deficiencies. Therefore, receiving a favorable mutual evaluation is the most likely reason for the FATF to remove a jurisdictionfrom the list, as it indicates that the jurisdiction has met the FATF standards and has a robust AML/CFT system in place.

Conducting successful annual self-assessments, entering into a mutual legal assistance treaty, or joining the Wolfsberg Group are not sufficient reasons for the FATF to remove a jurisdiction from the list, as they do not necessarily reflect the overall compliance with the FATF Recommendations or the resolution of the strategic deficiencies. Moreover, the Wolfsberg Group is a private association of global banks that develops guidance and best practices for the financial sector on AML/CFT issues, and is not affiliated with the FATF.

ACAMS Study Guide for the CAMS Certification Examination - 6th Edition, Chapter 1: Risks and Methods of Money Laundering and Terrorism Financing, page 11.

ACAMS CAMS Certification Video Training Course, Module 1: Risks and Methods of Money Laundering and Terrorism Financing, Lesson 1.4: FATF and the 40 Recommendations.

About the Non-Cooperative Countries and Territories NCCT Initiative, FATF website.

 Structuring is a technique used in the placement stage of money laundering, in which the launderer deposits or withdraws cash in amounts below the reporting threshold to avoid detection or suspicion. Structuring is also known as smurfing, because it involves using multiple individuals or locations to carry out the transactions. Structuring is illegal in many jurisdictions and is a red flag for money laundering12.

Option A is not an example of structuring, but of using an alternative remittance system, which is a method of transferring money outside the formal financial sector. Hawala is a type of alternative remittance system that relies on a network of brokers who settle the transactions through trust and honor. Hawala can be used for legitimate purposes, but also poses a risk for money laundering and terrorist financing13.

Option B is not an example of structuring, but of a large cash transaction, which is a common indicator of money laundering. Large cash transactions may involve the proceeds of crime or the attempt to evade taxes or currency controls. Financial institutions are required to report large cash transactions above a certain threshold to the relevant authorities14.

Option D is not an example of structuring, but of a wire transfer, which is a method of moving funds electronically from one account to another. Wire transfers can be used for legitimate purposes, but also pose a risk for money laundering and terrorist financing, especially if they involve high-risk jurisdictions, shell companies, or complex chains of transactions1 .

According to the CAMS Study Guide, EDD is a higher level of scrutiny applied to customers who pose a greater risk of money laundering or terrorist financing. EDD may include obtaining additional information on the customer’s identity, source of funds, businessactivities, beneficial owners, and expected transactions. Details on individuals with control over the account are relevant for EDD, as they may indicate the involvement of politically exposed persons (PEPs), sanctioned individuals, or other high-risk entities. Therefore, this information should be gathered as part of EDD for a high-risk customer.

CAMS Study Guide, 6th Edition, Chapter 4, page 121.

Designating a country as being of “prime money laundering concern” allows the U.S. government to impose one or more of five special measures under Section 311 of the USA PATRIOT Act12. These special measures are intended to protect the U.S. financial system from the risks posed by the designated country, such as money laundering, terrorist financing, or other illicit activities. The fifth special measure, which is the most severe, authorizes the Treasury Department to prohibit U.S. financial institutions from opening or maintaining correspondent or payable-through accounts for foreign financial institutions that involve the designated country12. Correspondent accounts are accounts that enable foreign banks to access the U.S. financial system and provide services to their customers, while payable-through accounts are accounts that allow foreign banks to offer their customers direct access to the U.S. financial system3. Closing these accounts effectively cuts off the designated country from the U.S. financial system and imposes significant costs and burdens on its financial sector.

1: 311 Actions | U.S. Department of the Treasury

2: Press Releases - U.S. Department of the Treasury

3: Anti-Money Laundering Laws and Regulations USA 2023-2024

The Basel Committee on Banking Supervision (BCBS) issued a paper in October 2001 titled Customer due diligence for banks, which outlined four essential elements of a sound Know Your Customer (KYC) programme. These elements are: customer acceptance policy, customer identification, on-going monitoring of higher risk accounts, and risk management. The paper also recommended that these standards should be applicable to all banks in all countries, regardless of their size, nature, or location. The paper stated that "KYC safeguards go beyond simple account opening and record-keeping and require banks to formulate a customer acceptance policy and a tiered customer identification programme that involves more extensive due diligence for higher risk accounts, and includes proactive account monitoring for suspicious activities."1

Customer due diligence for banks by the Basel Committee on Banking Supervision, October 2001.

Consolidated KYC Risk Management by the Basel Committee on Banking Supervision, October 2004.

Editorial The Basel Committee on Banking Supervision report on customer … by Journal of Banking Regulation, 2002.

According to the ACAMS CAMS Certification Study Guide (6th edition), one of the challenges of information sharing within a financial group is the compliance with privacy and data protection rules that may vary across jurisdictions. Therefore, before sharing information about a customer with an affiliate, a bank should consider whether such sharing is permitted by the applicable laws and regulations, and whether the customer has consented to it. The other options are not relevant factors for information sharing in the case of an investigation.

ACAMS CAMS Certification Study Guide (6th edition), page 971; ACAMS CAMS Certification Video Training Course, Module 4, Lesson 22

 Having inadequate privacy policies and procedures can expose an organization to legal risks such as industry or regulatory sanctions and charges of deceptive business practices. Industry or regulatory sanctions can result from violating the laws and regulations that govern data privacy and protection, such as the GDPR, the CCPA, or the GLBA.These sanctions can include fines, penalties, injunctions, or revocation of licenses. Charges of deceptive business practices can arise from misleading or false statements about how the organization collects, uses, or discloses personal data, or from failing to comply with its own privacy policies and procedures. These charges can lead to lawsuits, settlements, or enforcement actions by authorities such as the FTC or the state attorneys general.

=

The 4 Biggest Risks of Non-Compliance With Data Privacy Regulations

Security and privacy laws, regulations, and compliance: The complete guide

An Ethical Approach to Data Privacy Protection

An FIU is a central, national agency responsible for receiving, analyzing, and disseminating to the competent authorities disclosures of financial information concerning suspected proceeds of crime and potential financing of terrorism or required by nationallegislation or regulation1. FIUs play a crucial role in the detection and prevention of money laundering and terrorist financing by collecting, processing, and analyzing financial intelligence and sharing it with domestic and foreign counterparts2. FIUs may have different organizational structures, functions, and legal frameworks, but they all adhere tothe international standards and best practices set by the Egmont Group of FIUs3.

What We Do | FinCEN.gov

Financial Intelligence Units: An Overview (June 2004) - IMF, page 1

[Egmont Group of Financial Intelligence Units]

ARisk Appetite Statement (RAS)helps financial institutions defineacceptable risk levelsand align them withregulatory compliance and business strategy.

Option A (Correct):Incorporating risk appetite adherence into internal reporting ensures consistent enforcementandaccountabilityacross business functions.

Option D (Correct):Embedding risk appetite into daily processes ensures that compliance is built into the organization’s culture and operations.

Option E (Correct):Training employees on risk appetite awareness helps them understand compliance limits and risk management principles.

Why Other Options Are Incorrect:

Option B (Incorrect):Whiletraining managers on "good" risk-takingis valuable,it does not directly enhance risk appetite awareness for compliance.

Option C (Incorrect):Describing risk controls is useful but insufficientfor embedding risk appetite into an organization’s structure.

Best Practices for Implementing Risk Appetite Awareness:

Ensure risk appetite is a key part of regulatory and operational reporting.

Train employees at all levels on risk tolerance boundaries.

Integrate risk appetite considerations into product development and customer onboarding processes.

According to the FATF Recommendations, financial institutions should maintain all necessary records on transactions and customers for at least five years, and make them available to competent authorities upon appropriate authority1. This includes records and documents related to suspicious transactions that have been reported to the financial intelligence unit (FIU) or other designated authorities. Providing the supporting documentation to competent authorities upon request is essential for the investigation and prosecution of money laundering and terrorist financing offences, as well as for the identification and tracing of criminal assets2.

Hinting to the customer that she should come in and explain her behavior is not a correct answer, as it may tip off the customer about the suspicion and compromise the effectiveness of the reporting system. Financial institutions should not disclose to the customer or to third parties that a suspicious transaction report (STR) or related information is being reported to the FIU3.

Maintaining adequate written documentation of all individuals and transactions reported is not a sufficient answer, as it does not imply cooperation with competent authorities. Financial institutions should not only keep records, but also provide them to the authorities when requested.

Submitting information upon receiving a legal request from parties involved in a civil lawsuit is not a relevant answer, as it does not relate to the cooperation with competent authorities for AML/CFT purposes. Civil lawsuits are not part of the AML/CFT framework, and financial institutions should not disclose confidential information to private parties without proper legal grounds.

FATF Recommendation 11: Record-keeping 1

FATF Recommendation 31: Powers of law enforcement and investigative authorities 2

FATF Recommendation 21: Tipping-off and confidentiality 3

 A financial institution located in a Financial Action Task Force (FATF) member country should address the following issues in its anti-money laundering program when dealing with customers located in countries/jurisdictions that are not members of FATF:

The requirement to identify the beneficial owners of accounts: Beneficial owners are the natural persons who ultimately own or control a customer or a legal entity. Identifying the beneficial owners of accounts is a key component of customer due diligence (CDD) and helps the financial institution to assess the risk profile of the customer, prevent the misuse of legal entities for money laundering or terrorist financing, and comply with the FATF Recommendations12.

The requirement for customer identification for the opening of new accounts: Customer identification is the process of verifying the identity of a customer using reliable and independent sources of information or documents. Customer identification is another essential element of CDD and helps the financial institution to establish a business relationship with the customer, prevent identity fraud, and comply with the FATF Recommendations13.

The financial institution’s obligation to report suspicious transactions: Suspicious transactions are transactions that have no apparent economic or lawful purpose, or are inconsistent with the customer’s known profile or business activities, or indicate involvement in money laundering or terrorist financing. Reporting suspicious transactions to the competent authorities is a core obligation of the financial institution under the FATF Recommendations14 and helps to detect and deter illicit activities and support law enforcement investigations.

The obligation to freeze funds involved in suspicious transactions is not an issue that should be addressed in the anti-money laundering program, as it is not a requirement under the FATF Recommendations. The FATF Recommendations require the financial institution to freeze funds or other assets of designated persons and entities that are subject to targeted financial sanctions related to terrorism, proliferation of weapons of mass destruction, or other threats to the international financial system1 . However, the financial institution is not obliged to freeze funds involved in suspicious transactions, unless it receives a specific order from the competent authorities or the courts.

The FATF Recommendations, as amended November 2023

Interpretive Note to Recommendation 10 (Customer Due Diligence), paragraphs 5(b) and 6

Recommendation 10 (Customer Due Diligence), paragraph 1

Recommendation 20 (Reporting of Suspicious Transactions)

Recommendation 6 (Targeted Financial Sanctions Related to Terrorism and Terrorist Financing), Recommendation 7 (Targeted Financial Sanctions Related to Proliferation), and Recommendation 8 (Non-Profit Organisations)

A (ISO): Ensures information security controls are aligned with AFC efforts, protecting sensitive data and reducing the risk of cyber-enabled financial crime.

D (DPO): Helps ensure compliance with data privacy laws and enables secure, lawful information-sharing for AML purposes.

“Collaboration with the ISO and DPO is critical to maintaining data security and privacy within AFC compliance frameworks.”(CAMS 6th Edition, Governance and Cross-Functional Collaboration)

According to the Basel Committee on Banking Supervision guidelines, the internal audit functionshould evaluate the adequacy and effectiveness of the bank’s compliance function and its compliance risk management framework1. This includes assessing the compliance risk inherent in the bank’s activities, products, services, and systems, as well as the compliance policies, procedures, controls, and reporting mechanisms2. The internal audit function should also review the transactions and records of the bank to ensure compliance with applicable laws, regulations, and internal standards3.

The other statements are incorrect because:

B. An internal audit program of adequacy of the bank’s compliance function should be established, but should not include review of transactions. This statement is false because the internal audit function should review the transactions and records of the bank to ensure compliance, as mentioned above3.

C. The compliance function and internal audit function should be combined. This statement is false because the compliance function and the internal audit function should be separate and independent from each other, to avoid conflicts of interest and ensure objectivity and credibility.

D. The auditors should not discuss internal audit findings with compliance management to maintain independence. This statement is false because the internal audit function should communicate and coordinate with the compliance function on a regular basis, to share information, insights, and recommendations, and to avoid duplication of work. However, the internalaudit function should maintain its independence and report directly to the board of directors or the audit committee.

1: The internal audit function in banks, Principle 10, p. 9

2: The internal audit function in banks, Principle 10, p. 10

3: The internal audit function in banks, Principle 10, p. 11

The internal audit function in banks, Principle 2, p. 4

The internal audit function in banks, Principle 10, p. 11

The customer’s business activity as a domestic carpet cleaning company is not inherently suspicious, as it aligns with their registered business. However, the significant weekly transactions from an international reputable antique auction house raise red flags.

The sudden increase in the customer’s initial international receipt from $15,000 USD to an average of $30,000 USD per transaction per week is also noteworthy. Such a substantial change warrants further scrutiny.

The fact that 90% of the incoming deposits are matched by cash outgoings to non-related individuals could indicate layering or structuring activities associated with money laundering.

Overall, the combination of large international transactions, increased receipts, and cash outflows to unrelated parties from an antique auction house is the most concerning aspect.

The board of directors is ultimately responsible for ensuring that the financial institution has an effective anti-money laundering program that complies with the applicable laws and regulations. If the institution receives a regulatory enforcement action, the board should take prompt and corrective actions to address the deficiencies and mitigate the risks of further violations or penalties. One of the most important actions is to instruct the compliance officer to develop a plan to remediate the institution’s anti-money laundering program, which should include a root cause analysis, a gap assessment, a timeline, and a budget. The board should also monitor the implementation and progress of the remediation plan, and communicate with the regulators on a regular basis.

The other options are not appropriate actions for the board of directors to take in response to a regulatory enforcement action. Terminating the compliance officer and staff may not solve the underlying issues of the anti-money laundering program, and may create more disruption and instability. Purchasing and installing a new suspicious activity monitoring system may not be necessary or sufficient to address the deficiencies, and may entail additional costs and challenges. Hiring an attorney to protest the enforcement action may not be in the best interest of the institution, and may antagonize the regulators and escalate the situation.

CAMS Certification Package - 6th Edition | ACAMS, Chapter 5: Risk Management, Section 5.2: Regulatory Examinations and Enforcement Actions, pp. 171-174.

CAMS Certifications: How to Get CAMS Certified | ACAMS, CAMS Examination Preparation Guide, Section 3: Regulatory Compliance, pp. 23-24.

Financial institutionsoperating in the EU must comply with GDPR and AML directives, ensuring a balance betweenprivacy and AML compliance.

Option B (Correct):Data minimization is a key GDPR principle, ensuring that only necessary data is collected and processed.

Option D (Correct):Strict guidelines apply to AI and machine learning models used in AML complianceto prevent bias and ensure transparency.

Why Other Options Are Incorrect:

Option A (Incorrect):FIs cannot use third parties to supplement missing customer identification unless proper KYC measures are followed.

Option C (Incorrect):Customers cannot be informed about ongoing AML investigations due to “tipping off” restrictions under AML laws.

Best Practices for AML Compliance Under GDPR:

Limit data collection to what is necessary for AML compliance.

Ensure AI and machine learning models comply with transparency regulations.

Prevent unauthorized data access through strict internal controls.

According to the CAMS manual 6th edition, the USA PATRIOT Act allows the US government to subpoena documents from foreign financial institutions (FIs) that have no presence in the US (option B). The manual states that "The USA PATRIOT Act provides US law enforcement agencies with the power to subpoena documents from foreign banks that maintain correspondent accounts with US banks or have no presence in the United States" (p. 77).

A fundraising organization is a type of non-profit organization that may be vulnerable to money laundering and terrorist financing risks, as they often operate in high-risk areas, deal with large amounts of cash, and have complex and opaque structures. Therefore, a fundraising organization warrants enhanced due diligence, which is a higher level of customer verification and monitoring that goes beyond the standard customer due diligence measures. Enhanced due diligence may include obtaining additional information on the source of funds, the purpose of the relationship, the beneficiaries, and the governance of the organization.

ACAMS Study Guide for the CAMS Certification Examination, 6th Edition, Chapter 2: Compliance Standards for Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT), Section 2.2: Customer Due Diligence, p. 33-34

Anti-money laundering – a guide to customer due diligence

Customer due diligence | The Law Society

---Wire transfers are one of the most common methods of moving funds across borders and jurisdictions, and therefore pose a high risk of violating OFAC sanctions. A bank’s OFAC sanctions screening audit program should include a test to review the wire transfer screening processes to ensure that potential name hits are investigated promptly and appropriately, and that any blocked or rejected transactions are reported to OFAC in a timely manner. This test would help the bank to assess the effectivenessof its screening system, identify any gaps or weaknesses, and demonstrate its compliance with OFAC regulations.

A Framework for OFAC Compliance Commitments1, page 4, section 4: Testing and Auditing

OFAC Framework for Sanctions Compliance Programs2, page 2, section 4: Testing and Auditing

OFAC Sanctions List Search Tool3

Typical events to identify and investigate potential AML activities include: A) blocked transactions involving individuals included in the Office of Foreign Assets Control Specially Designated Nationals and Blocked Persons List; B) internal tips from employees of the bank about potential suspicious activity; and C) alerts triggered by the automated AML monitoring system [1]. Blocked transactions are those which involve individuals included on the Specially Designated Nationals and Blocked Persons List – this is a list maintained by the Office of Foreign Assets Control of individuals who are subject to economic or trade sanctions [1], or who may be involved in money laundering or terrorist activities [2]. Internal tips are those which are provided by employees of the bank who may have observed suspicious activity, or have reason to believe that certain transactions or activities may be related to potential money laundering. Alerts triggered by the automated AML monitoring system are those which are generated by the banks systems and processes which are designed to detect potential money laundering.

Anenterprise-wide risk assessment (EWRA)must beupdated when major changesoccur thatimpact AML risk exposure.

Option A (Correct):New products and services(e.g., cryptocurrency trading, private banking)can introduce new money laundering risks.

Option B (Correct):Restructuring compliance teams can impact AML oversightand risk assessment effectiveness.

Option E (Correct):Mergers and acquisitionsmay bringlegacy compliance issues and different risk cultures.

Why Other Options Are Incorrect:

Option C (Incorrect):Changes in product leadership do not automatically change risk exposureunless the product itself changes.

Option D (Incorrect):Using new technology for existing products does not inherently change AML risks, thoughnew digital products might.

Best Practices for Enterprise-Wide AML Risk Assessment Updates:

Review AML program effectiveness before launching new services.

Assess legacy compliance issues when acquiring or merging with another entity.

Align risk frameworks with regulatory changes.

 The bank’s reputation is not a valid criterion for filing a SAR/STR, as it is not related to the objective assessment of the suspiciousness of the transaction or the activity. The bank should file a SAR/STR based on the facts and circumstances of the case, and not on the potential impact on its image or reputation. The other options are possible indicators of money laundering or terrorist financing, and could warrant a SAR/STR filing,depending on the context and the risk profile of the customer and the transaction. For example, a large, round number wire to an obscure organization could suggest an attempt to conceal the source or destination of the funds, or to support a criminal or terrorist entity. A beneficiary that is largely unknown or has no apparent connection to the customer could indicate a lack of transparency or a false identity. A customer activity that is unreasonable or inconsistent with the customer’s profile, business, or expected behavior could indicate a deviation from the normal or legitimate purpose of the account or the transaction.

CAMS Certification Package - 6th Edition, ACAMS, Chapter 5, page 123

CAMS Certifications: How to Get CAMS Certified, ACAMS

Suspicious Activity Reporting — Overview, FFIEC, page 2

3.2. Basic Structure of an STR or SAR, CBUAE Rulebook, page 1

What is a suspicious activity report?, Thomson Reuters

How to decide if SAR filing is needed, Wipfli

STR (Suspicious Transaction Reports), Ministry of Finance, India

According to the Financial Action Task Force (FATF) methodology, financial institutions (FIs) are required to consider filing a suspicious activity report (SAR) in situations where they suspect or have reasonable grounds to suspect that funds are the proceeds of criminal activity or related to terrorist financing. One such situation is when a beneficiary of a transaction is a politically exposed person (PEP). PEPs are individuals who hold prominent public positions or have close associations with such individuals. Their involvement in transactions can raise red flags due to the potential risk of corruption, money laundering, or other illicit activities1.

The line of business is responsible for creating, implementing and maintaining policies and procedures, as well as communicating these to all personnel. It must also establish processes for screening employees to ensure high ethical and professional standards and deliver appropriate training on AML policies and procedures based on roles and functions performed so employees aware of their responsibilities. To facilitate this, employees should be trained as soon as possible after being hired, with refresher training as appropriate.

According to the Basel Committee on Banking Supervision, a sound KYC program should include four essential elements: customer acceptance policy, customer identification, on-going monitoring of higher risk accounts, and risk management1. Customer acceptance policy defines the types of customers that the financial institution (FI) is willing to accept and the criteria for doing so. Customer identification involves verifying the identity and beneficial ownership of the customers and obtaining information on their activities and sources of funds. On-going monitoring of higher risk accounts involves reviewing the transactions and behavior of the customers that pose higher risks of money laundering or terrorist financing and updating their information and risk profiles. Risk management involves establishing appropriate policies, procedures, controls, and audit functions to ensure the effective implementation and oversight of the KYC program1.

1: Basel Committee on Banking Supervision - Bank for International Settlements1

Fraud and financial crime are often associated withsudden resignations, attempts to evade scrutiny, and financial behaviors inconsistent with legitimate income.

Option A (Correct):Being evasive about past employment suggests potential undisclosed misconduct.

Option D (Correct):Living beyond one’s means is a major financial crime red flag, indicating possible fraud or illicit earnings.

Why Other Options Are Incorrect:

Option B (Incorrect):Nationality alone does not indicate fraud risk.

Option C (Incorrect):Having friends in high-risk industries is not necessarily a direct red flag.

Common Red Flags for Employee-Related Financial Crime:

Reluctance to take vacations or change roles (attempting to conceal wrongdoing).

Sudden resignation or disappearance following internal investigations.

Unusual financial activity, including large unexplained deposits.

Best Practices for Fraud Prevention in Corporations:

Regularly monitor employees in high-risk roles (e.g., finance, procurement).

Use whistleblower channels to detect internal misconduct.

Conduct thorough background checks before hiring employees.

According to the USA PATRIOT Act, US authorities do have the power to subpoena records from foreign banks that maintain correspondent accounts with US banks. This is known as a "section 314(a) request," which allows law enforcement to obtain information related to suspected terrorist financing or money laundering.

However, US authorities are not limited to seizing only funds transferred under OFAC sanctions if there is an equivalent UN sanctions regime that has been contravened. The US government can impose its own sanctions that are independent of the UN, and can seize funds or take other actions to enforce those sanctions.

Therefore, the correct answers to the question are A and C:

A. If the funds are seized, then the foreign bank would be within its rights to dispute such seizure. C. The USA PATRIOT Act authorizes the Secretary of the Treasury or the Attorney General to subpoena records from the foreign bank that maintains a correspondent account with a US bank.

The red flags that most likely triggered the referral are:

B. Several cash deposits along the country's border that are quickly withdrawn by third parties. C. Several lodging and food payments made on the same day at unusual hours for a business.

Red flag B suggests possible structuring activity, where individuals are trying to avoid currency transaction reporting requirements by depositing and withdrawing cash in amounts below the reporting threshold. This activity is often associated with money laundering and could indicate human trafficking activity.

Red flag C suggests unusual activity that may be indicative of human trafficking, such as lodging and food payments made at unusual hours or in unusual patterns. This type of activity could indicate that the business is being used as a front for human trafficking or that the individuals involved in the trafficking are using the business to facilitate their activities.

Concentration accounts are internal accounts used by financial institutions to aggregate funds from or for various clients or other accounts. They are also known as omnibus accounts or suspense accounts. The use of concentration accounts may obscure the audit trail and the identity of the clients involved in the transactions. Therefore, the Wolfsberg Principles on Private Banking, which are a set of voluntary guidelines for preventing money laundering and terrorist financing in the private banking sector, prohibit the use of concentration accounts in a way that would prevent appropriate monitoring or identification of the clients or their funds12.

1: Wolfsberg Anti-Money Laundering Principles for Private Banking (2012), Section 4.3 2: The Wolfsberg Principles - an analysis, Journal of Money Laundering Control, Vol. 7 No. 3, 2004, pp. 237-240

The Wolfsberg Anti-Money Laundering Principles for Private Banking require new clients to be approved by at least one person other than the private banker. This is because the private banker may have a conflict of interest or be influenced by the client’s wealth or reputation. The approval process should involve a senior manager or a compliance officer who can independently assess the client’s risk profile and suitability for the institution’s services12.

1: CAMS Certification Package - 6th Edition | ACAMS, Chapter 2: Money Laundering Risks and Methods, p. 37 2: The Wolfsberg Group, The Wolfsberg Anti-Money Laundering Principles for Private Banking, June 2000, p. 3, https://www.wolfsberg-principles.com/sites/default/files/wb/pdfs/Wolfsberg-AML-Principles-for-Private-Banking-June-2000.pdf

According to the FATF Recommendations (2012), page 111, the FATF calls on its members and urges all jurisdictions to apply enhanced due diligence and, in the most serious cases, countermeasures to protect the international financial system from the money laundering, terrorist financing, and proliferation financing risks emanating from countries with significant strategic AML/CFT deficiencies. Countermeasures are proportionate and effective actions that can be applied by countries individually or collectively to protect their financial systems from these risks. Examples of countermeasures include restricting or prohibiting financial transactions with the high-risk country, requiring financial institutions to review and terminate correspondent relationships with the high-risk country, or applying enhanced reporting mechanisms or systematic reporting of financial transactions with the high-risk country.

The USA PATRIOT Act is a comprehensive legislation that was enacted in response to the terrorist attacks of September 11, 2001, and aimed to strengthen the US government’s ability to prevent, detect, and prosecute money laundering and terrorist financing. Among its many provisions, the USA PATRIOT Act contains several sections that have extraterritorial reach, meaning that they apply to foreign entities or activities that have a nexus with the US. Three of these sections are:

Section 319(b), which allows for the US Attorney General or the Secretary of the Treasury to issue a subpoena or other legal order to any foreign bank that maintains a correspondent account in the US, requiring the production of records relating to such account or any account at the foreign bank, including records maintained outside the US12. This section also allows foreign banksto voluntarily designate a registered agent in the US to accept service of such subpoenas or orders12.

Section 313, which prohibits US financial institutions from establishing, maintaining, administering, or managing correspondent accounts for foreign shell banks, which are banks thathave no physical presence in any country and are not affiliated with a regulated financial group34. This section also requires US financial institutions to take reasonable steps to ensure that their correspondent accounts with foreign banks are not being used to provide banking services indirectly to foreign shell banks34.

Section 311, which authorizes the Secretary of the Treasury to designate foreign jurisdictions, financial institutions, classes of transactions, or types of accounts as being of “primary money laundering concern” and to impose special measures to address such concerns . These special measures may include requiring US financial institutions to obtain and retain information on the beneficial owners of foreign accounts, prohibiting or imposing conditions on the opening or maintaining of correspondent or payable-through accounts for foreign financial institutions, or requiring US financial institutions to identify the customers of their foreign correspondent account holders . The Secretary of the Treasury may also order a US financial institution to terminate a correspondent account within 10 days if the foreign bank fails to comply with a subpoena or other request for information under Section 319(b) .

1: USA PATRIOT Act, Section 319(b)

2: ACAMS, CAMS Certification Package - 6th Edition, Chapter 4, page 121

3: USA PATRIOT Act, Section 313

4: ACAMS, CAMS Certification Package - 6th Edition, Chapter 4, page 120

USA PATRIOT Act, Section 311

ACAMS, CAMS Certification Package - 6th Edition, Chapter 4, page 119

 the account officer should avoid disclosing any details of the investigation to the customer, as this could compromise the integrity of the law enforcement inquiry, or even constitute tipping off, which is a criminal offense in many jurisdictions12. The account officer should only inform the customer that a legal request has been made, and that the bank is obliged to comply with it, without revealing the nature or scope of the request3. The account officer should also document the communication with the customer, and report it to the appropriate internal authority, such as the compliance officer or the legal department4.

1: CAMS Study Guide, 6th Edition, Chapter 5: Compliance Standards for Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT), page 151-152. 2: Tipping Off: What It Is and How to Avoid It, ACAMS Today, March 2019. 3: How to Handle Law Enforcement Requests, ACAMS Webinar, June 2018. 4: Best Practices for Responding to Law Enforcement Inquiries, ACAMS White Paper, October 2017.

The USA PATRIOT Act imposes several requirements on U.S. financial institutions when dealing with foreign financial institutions, especially those that pose a high risk of money laundering or terrorist financing. Two of these requirements are:

Performing enhanced due diligence on shell banks: A shell bank is a bank that has no physical presence in any country and is not affiliated with a regulated financial group. The USA PATRIOT Act prohibits U.S. financial institutions from opening or maintaining correspondent accounts for shell banks, and requires them to take reasonable steps to ensure that their correspondent accounts are not being used by shell banks indirectly12.

Performing due diligence on correspondent accounts: A correspondent account is an account established by a financial institution to receive deposits from, make payments on behalf of, or handle other financial transactions for a foreign financial institution. The USA PATRIOT Act requires U.S. financial institutions to collect and verify certain information about the foreign financial institution, such as its ownership, licensing, and anti-money laundering policies, and to assess the risk of money laundering or terrorist financing associated with the correspondent account13.

CAMS Certification Package - 6th Edition | ACAMS, Chapter 3: Compliance Standards for Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT), pages 82-84

CAMS Certifications: How to Get CAMS Certified |ACAMS, Candidate Handbook, page 14

ACAMS CAMS Certification Video Training Course - Exam-Labs, Video 3.4: Correspondent Banking and Money Laundering Risks

 Section 311 of the USA PATRIOT Act grants the Secretary of the Treasury the authority to designate foreign jurisdictions, financial institutions, classes of transactions, or types of accounts as being of primary money laundering concern, and to impose one or more of five special measures on them. These special measures range from requiring enhanced recordkeeping and reporting to prohibiting U.S. financial institutions from opening or maintaining correspondent accounts for the designated entities. The purpose of these special measures is to protect the U.S. financial system from money laundering and terrorist financing risks posed by the designated entities.

USA PATRIOT Act | FinCEN.gov

FACT SHEET for Section 312 of the USA PATRIOT Act Final Regulation and Notice of Proposed Rulemaking | FinCEN.gov

International Financial Crime: Treasury’s Roles and Responsibilities Should Be Updated - GovInfo

Using cash to buy multiple cashier's checks over a period of time is considered suspicious activity of money laundering. This method is commonly known as structuring, where individuals or entities use cash to buy multiple monetary instruments such as cashier's checks in small amounts, to avoid reporting requirements. This behavior could be an attempt to evade transaction monitoring and reporting requirements by a financial institution. Additionally, the fact that the account also receives multiple electronic transfers for the same amount could be a red flag for money laundering as it is a common technique used to layer or disguise the origin of illicit funds.

Alternative remittance, also known as underground banking or informal value transfer systems, is a method of transferring money or value without using formal financial institutions or channels. It is often used by migrant workers, refugees, or people who lack access to formal banking services. However, it can also be exploited by criminals and terrorists to move funds across borders without detection or regulation. The Wolfsberg Group, a group of leading international banks that promotes best practices in anti-money laundering and counter-terrorist financing, cited alternative remittance as one of the sectors and activities that are widely used for the financing of terrorism in its Statement on the Suppression of the Financing of Terrorism. The Wolfsberg Group recommended that financial institutions apply enhanced and appropriate due diligence to customers engaged in alternative remittance and report any suspicious transactions to the relevant authorities.

Wolfsberg Group (2002). Wolfsberg Statement on Anti-Terrorism Financing1

Pieth, M. (ed.) (2002). Financing Terrorism. Springer, Dordrecht2

ACAMS (2020). CAMS Certification Package (6th Edition)3

1. Information Technology Staff: These employees handle systems, databases, and software used for transaction monitoring, customer due diligence (CDD), and other AML processes. They need to understand how to configure and maintain AML systems, recognize suspicious patterns, and ensure data security.

2. Customer Facing Staff: Frontline employees, such as tellers, relationship managers, and customer service representatives, interact directly with customers. They play a crucial role in identifying red flags, conducting enhanced due diligence (EDD), and reporting suspicious activities. Training helps them recognize unusual behavior and follow proper procedures.

3. AML/Compliance Staff: These professionals are directly responsible for AML program management, policy development, and regulatory compliance. They need in-depth knowledge of AML laws, regulations, and best practices. Training ensures they stay updated and can effectively implement AML controls.

The practice of brokerage firms maintaining securities as nominees and the speed of the transactions are two factors specific to the securities industry that increase the exposure to money laundering risk. Nominee accounts can be used to conceal beneficial ownership and obscure transaction trails. The speed of transactions can make it difficult to detect and prevent suspicious activity in real time.

Terminating customer relationships due toAML risksrequiresclear procedures and documentation.

Option B (Correct):Astandardized termination procedureensurescompliance, fairness, and consistency.

Option C (Correct):Afinal review of transactionshelps identifysuspicious activity before closure.

Option D (Correct):Documenting termination decisionsprotects the FI fromlegal and regulatory risks.

Option A (Incorrect):Whileclear communication is important, termination decisions should beconsistent and policy-driven.

Option E (Incorrect):Customers should benotified appropriatelybut not necessarilyaftertermination.

An internal investigation log is primarily intended to track the status of investigations into unusual activity. This is to ensure that the investigations are conducted in a timely, thorough, and consistent manner, and that the results and recommendations are documented and communicated to the relevant parties12. An internal investigation log can also help the organization to identify any trends, patterns, or gaps in its anti-money laundering (AML) compliance program, and to measure its effectiveness and efficiency3.

An internal investigation log is not intended to provide training on investigations to the anti-money laundering officer and Financial Intelligence Unit (FIU), report status of investigations to the Board of Directors, or detect and monitor possible suspicious activity. These are separate functions that may involve the use of the internal investigation log, but are not its primary purpose.

1: How to Conduct Effective AML Investigations - Blog | Unit211 2: BSA/AML Internal Audit: PwC2 3: Anti-Money Laundering: 5 Steps to Conduct an Audit3

Verified Answer: = A. Collect further customer reference data and determine what must be screened and at which frequency. and C. Deploy an independent risk-based test to ensure the screening on this customer is effective.

Comprehensive Detailed Explanation: = When an existing customer changes its business scope and jurisdictions, banks need to manage sanctions compliance risk effectively. Here are the steps they should take:

1. Collect Further Customer Reference Data: Obtain updated information about the customer’s new business activities, locations, and counterparties. Understand the nature of their transactions and assess the associated risks. Determine what specific data elements need to be screened (e.g., names, addresses, beneficial owners) and establish the appropriate screening frequency.

2. Deploy an Independent Risk-Based Test: Conduct a comprehensive risk assessment tailored to the customer’s changes. This assessment should consider factors such as the customer’s industry, geographic exposure, and transaction volume. The risk assessment helps identify high-risk areas that require enhanced scrutiny.

3. Screen Directors and Ultimate Beneficial Owners: Perform sanctions screening not only on the customer but also on their directors and ultimate beneficial owners. This ensures that any potential risks associated with these individuals are identified and mitigated.

4. Perform Politically Exposed Person (PEP) and Negative Media Screenings: Continue to screen the customer and related parties against PEP lists and negative media sources. This helps detect any adverse information related to politically exposed individuals or entities.

By following these steps, banks can proactively manage sanctions compliance risk and safeguard their institution’s reputation while adhering to regulatory requirements12.

Suspicious transaction report (STR) information is confidential and should not be disclosed to anyone outside the compliance function or law enforcement authorities. Providing STR information to the credit department could compromise the integrity of the reporting process and expose the institution to legal risks. The compliance officer should decline to provide the STR information to the credit department and explain the reasons for doing so.

CAMS Certification Package - 6th Edition | ACAMS, Chapter 4: Conducting and Supporting the Investigation Process, page 136

CAMS Certifications: How to Get CAMS Certified | ACAMS, Candidate Handbook, page 16

ACAMS CAMS Certification Video Training Course - Exam-Labs, Video 4.3: Suspicious Transaction Reporting

Exam CAMS: Certified Anti-Money Laundering Specialist (the 6th edition), Practice Test 1,

The Asian/Pacific Financial Action Task Force-Style Regional Body (APG) helps its members implement recommendations from the FATF by facilitating the adoption and implementation of internationally accepted AML measures by member jurisdictions (CAMS Manual, 6th Edition, Page 22). The APG also encourages cooperative AML efforts in the region, which can include information-sharing and mutual evaluations to assess member compliance with FATF recommendations (CAMS Manual, 6th Edition, Page 25). Therefore, options C and D are the correct answers.

According to the Certified Anti-Money Laundering Specialist (CAMS) Manual[1], 6th edition, financial entities that violate Anti-Money Laundering (AML) laws can face several reputational risks such as loss of high-profile customers, seizure of assets, increased audit costs to monitor behavior, and monetary penalties. For example, the US Treasury's Financial Crimes Enforcement Network (FinCEN) imposes civil money penalties on "persons who willfully violate, attempt to violate, conspire to violate, or cause any violation of any provision of the Bank Secrecy Act or its implementing regulations." (CAMS Manual, 6th edition, page 26).

The CAMS 6th Edition clearly identifies a risk-based approach as the cornerstone of effective AML/CFT programs. Risk assessments should consider various risk factors that directly influence exposure to ML/TF.

Product risk (A): Certain products or services may present higher ML/TF risks, such as private banking, correspondent banking, or cash-intensive products.“Products and services offered, and their inherent risk levels, must be assessed as part of the risk-based approach.”(CAMS 6th Edition, AML Compliance Program, Risk Assessment)

Geographic risk (C): Jurisdictions where the customer operates or where transactions are conducted may present higher or lower risks due to factors such as weak AML regulations or high corruption.“Geographic risk considers where a customer is located and/or where transactions occur, referencing countries with increased risk, such as those identified by the FATF.”(CAMS 6th Edition, Risk Assessment Factors)

Customer risk (D): The type of customer, such as PEPs, non-residents, or companies with complex structures, may present higher ML/TF risks.“Customer risk assessment is based on the customer’s profile, activity, and ownership structure, and is a critical component in risk-based monitoring.”(CAMS 6th Edition, CDD/EDD)

Incorrect Options:

B (Credit risk): Related to creditworthiness, not ML/TF.

E (Liquidity risk): Refers to a firm’s ability to meet financial obligations; not an AML risk factor.

According to the ACAMS CAMS Study Guide, one of the key elements of an effective anti-money laundering (AML) program is ongoing training for all relevant staff. Training should cover the legal and regulatory obligations, the risks and red flags of money laundering and terrorist financing, the procedures and controls for customer due diligence and transaction monitoring, the reporting and record-keeping requirements, and theroles and responsibilities of the staff and the management. Training should also be tailored to the specific functions and needs of the staff, and should be updated regularly to reflect the changes in the AML environment and the FI’s policies and procedures.

PEPs are considered high-risk customers for AML purposes, as they may abuse their positions of power and influence to commit or facilitate corruption, bribery, embezzlement, or other financial crimes. Therefore, it is essential that the FI’s staff are aware of the definition and categories of PEPs, the sources and methods to identify and verify PEPs, the enhanced due diligence measures and ongoing monitoring that apply to PEPs, and the escalation and reporting procedures for suspicious activities involving PEPs .

If an internal audit reveals that a large group of employees do not know how to handle PEPs, this indicates a serious gap in the FI’s AML training program, which could expose the FI to regulatory sanctions, reputational damage, and legal liabilities. Therefore, the next course of action that should be taken is to create a company-wide training program that covers the relevant aspects of PEPs, and to ensure that the training is delivered to all staff who deal with PEPs or have access to PEP-related information. The training should also be evaluated for its effectiveness and impact, and the results should be reported to the senior management and the board of directors.

ACAMS CAMS Study Guide, 6th Edition, Chapter 2: Developing an Effective Anti-Money Laundering Program, page 51-52

ACAMS CAMS Study Guide, 6th Edition, Chapter 3: Conducting Customer Due Diligence, page 75-78

FATF Guidance: Politically Exposed Persons (Recommendations 12 and 22), June 2013, 1

ACAMS CAMS Study Guide, 6th Edition, Chapter 4: Conducting Ongoing Monitoring, page 97-98

A robust AML training program should incorporate the followingbest practicesto ensure awareness and ongoing engagement:

Option A – Tailored and regular training:

Training should berisk-based and role-specific, ensuring employees understand how AML applies to their function.

Option D – Variety and resources:

Use ofinteractive, digital, live, and scenario-based methodskeeps training effective and adaptable. Providing materials and resources supports continued learning.

Option E – Communication and measurement:

Ongoing AML awareness campaigns andfeedback mechanismshelp assess theeffectivenessof training and reinforce its importance.

Option Bis too vague and not recognized as a best practice.

Option C, while helpful, isnot sufficient alone—annual frequency without contextual or tailored content is inadequate.

The correct answer is A and D, as these two statements are directly quoted from the Wolfsberg Group’s “Suppression of the Financing of Terrorism” document1. Statement A describes the general role of financial institutions in the fight against terrorism, while statement D describes the specific due diligence measures that financial institutions should apply to customers engaged in high-risk sectors or activities. Statement B and C are not part of the Wolfsberg Group’s document, and they are not accurate descriptions of the role of financial institutions in the fight against terrorism. Statement B is too vague and unrealistic, as financial institutions cannot guarantee to drive down terrorism by analyzing activity types. Statement C is too narrow and prescriptive, as financial institutions may not have the resources or the mandate to create dedicated financial intelligence units for terrorist financing.

 1: The Suppression of the Financing of Terrorism – Wolfsberg Statement, page 213-214.

The Egmont Group is a global network of Financial Intelligence Units (FIUs) that aims to enhance the capabilities and cooperation of its members in combating money laundering, terrorist financing, and other financial crimes. The Egmont Group supports its FIU members by helping them to expand and systematize the exchange of financial intelligence and information, improve expertise and capabilities of personnel, and enable secure communication with one another12. The Egmont Group does not issue due diligence models for financial institutions, as this is the responsibility of national regulators and standard-setting bodies. The Egmont Group does not issue strategic products for law enforcement agencies and FIUs, as this is the role of other international organizations such as the Financial Action Task Force (FATF) and the United Nations Office on Drugs and Crime (UNODC). The Egmont Group does not expand the ability of FIUs to enforce laws and exchange information globally, as this depends on the legal and operational frameworks of each FIU and the bilateral or multilateral agreements they have with other FIUs.

Egmont Group

Working Groups - Egmont Group

Overview of the Egmont Group of Financial Intelligence Units

The Egmont Group of Financial Intelligence Units | FinCEN.gov

Egmont Group - Qatar Financial Information Unit

According to a report by the OECD, government officers are among the occupations that are particularly vulnerable to the use of false identities and identity theft. This is because government officers have access to sensitive and confidential information, such as personal data, tax records, social security benefits, passports, visas, and licenses. Identity fraudsters may target government officers to obtain or alter such information, or to impersonate them to access restricted areas or systems. Identity fraud involving government officers may facilitate tax evasion, money laundering, corruption, terrorism, and other crimes1.

Some examples of identity fraud schemes involving government officers are:

Rogue agents in the immigration services sector who issue fake or fraudulent documents, such as passports, visas, orresidence permits, to facilitate the entry or stay of illegal immigrants, criminals, or terrorists12.

Corrupt tax officials who use false identities to create fictitious taxpayers or employers, or to modify tax records, to evade taxes or to claim fraudulent refunds or credits13.

Impostors who pose as government officers, such as police, customs, or revenue agents, to extort money or information from unsuspecting victims, or to access secure facilities or databases1 .

REPORT ON IDENTITY FRAUD: TAX EVASION AND MONEY LAUNDERING VULNERABILITIES

Identity Fraud and Immigration Services

Identity Theft and Tax Fraud

[Identity Theft and Government Impersonation Scams]

When seekinglegal evidence across borders,MLATsare themost formal and effective mechanism.

Option A (Correct):MLATsprovide alegal frameworkfor exchangingevidence in criminal investigations.

Option B (Incorrect):TheEgmont Secure Webfacilitatesintelligence sharing between FIUs, butnot legal evidence.

Option C (Incorrect):INTERPOL focuses on law enforcement cooperation, but not formalevidence gathering for prosecutions.

Option D (Incorrect):Direct requestsbetween anti-corruption authorities may not havelegal standing in court.

Using self-hosted wallets, or wallets that are stored on the user’s computer, is one of the tactics that may be used to finance terrorism with virtual assets such as Bitcoin. By creating many different donation addresses that are updated continuously, law enforcement will have a harder time tracing transactions. It is also important to note that using the same donation address across multiple donation campaigns and media types, as well as forming relationships with virtual asset service providers that have strong KYC processes in place, can draw attention from law enforcement and should be avoided.

 According to the Basel Committee guidelines, banks should formulate a customer acceptance policy and a tiered customer identification programme that involves more extensive due diligence for higher risk customers12. The customer acceptance policy should be approved by senior management and include clear guidelines on the types of customers that are likely to pose a higher than average risk to the bank1. Senior management should also ensure that the bank has adequate resources and systems to effectively manage the risks associated with higher risk customers1. Therefore, senior management should determine whether or not to enter business relationships with higher risk customers, based on the bank’s risk appetite, policies, and procedures.

PEPs are recognized by CAMS 6th Edition and FATF as posing elevated risk due to:

A. The family members and close associates of PEPs may be involved in illicit activities:“The risks extend beyond the PEP to family members and close associates, who may be used to conceal the movement of illicit funds.”(CAMS 6th Edition, PEP Risk Factors; FATF Guidance)

C. PEPs may exploit embassy activities to conceal bribery and corruption transactions:“PEPs may use their position or diplomatic privileges, such as embassy operations, to disguise or facilitate the movement of illicit funds.”(CAMS 6th Edition, Corruption and PEP Risks)

Incorrect Options:

B: There is no such legal provision granting PEPs financial immunity or unlimited credit.

D: Banks may (and often must) exit PEP relationships not in line with their risk appetite.

The auditor should include the regulatory violation in the audit report and report it to the board of directors. This is because the auditor has the responsibility to report any findings of non-compliance or material weaknesses in the institution’s internal controls, policies, and procedures. The auditor should also provide recommendations for corrective actions and follow-up on their implementation. The board of directors has the ultimate oversight and accountability for the institution’s compliance program and should be informed of any significant issues or risks that may affect the institution’s reputation, operations, or regulatory status12.

1: CAMS Certification Package - 6th Edition | ACAMS, Chapter 6: Developing an Effective Anti-Money Laundering Program, p. 125-126 2: The Wolfsberg Group, The Wolfsberg Anti-Money Laundering Principles for Correspondent Banking, October 2014, p. 7, https://www.wolfsberg-principles.com/sites/default/files/wb/pdfs/Wolfsberg-Correspondent-Banking-Principles-2014.pdf

According to the CDD Rule, covered financial institutions must establish and maintain written procedures that are reasonably designed to identify and verify beneficial owners of legal entity customers and to include such procedures in their anti-money laundering compliance program1. These procedures should also be updated as necessary to reflect changes in the law or the institution’s risk profile2. Moreover, the institution should provide adequate training to its employees on the new requirements and monitor their compliance3.

1: FinCEN Guidance, FIN-2020-G002, August 3, 2020, p. 1

2: Your responsibilities under money laundering supervision - GOV.UK, Section: Customer due diligence requirements

3: Customer identification: Know your customer (KYC) | AUSTRAC, Section: Training and awareness

An enterprise-wide compliance culture is a centralized, coordinated approach to ethics and compliance program design and assessment that cuts across multiple business units within an organization1. One key aspect of promoting such a culture is that the relevant information should be shared throughout the organization, so that all employees are aware of the compliance risks, policies, procedures, and expectations, and can act accordingly2. Sharing information also facilitates collaboration, communication, and feedback among different functions and levels of the organization, and helps identify and address any gaps or issues in the compliance program3. By contrast, the other options are not conducive to an enterprise-wide compliance culture, as they either create silos, conflicts, or inefficiencies in the compliance function.

1: Enterprise Compliance Risk Management Services | Deloitte US

2: Enterprise Risk Management and Risk Culture - McKinsey & Company

3: FRB: Speech, Bies–Enterprise-wide Compliance Programs–February 4, 2004

In the context ofgambling and gaming sectors, a well-known money laundering typology is the use of platforms tointroduce illicit funds and withdraw them as "winnings". When a customerdeposits large cash amounts and quickly withdraws themwithout engaging in actual gambling, it indicates"placement and layering"techniques.

This behavior is indicative of attempts todisguise the origin of illicit funds, converting them into legitimate-looking financial flows. It is considered a classic red flag in AML programs related to casinos and online gaming.

Trade-based money laundering (TBML) is a method to finance terrorism that involves falsifying transaction-related documents, such as invoices, contracts, bills of lading, or customs declarations, to conceal the origin, destination, value, or purpose of illicit funds. TBML can be used to move money, goods, or services to or from sanctioned orhigh-risk jurisdictions, to evade taxes, duties, or currency controls, to launder proceeds of crime, or to support terrorist activities. TBML can involve over- or under-invoicing, over- or under-shipping, multiple-invoicing, or falsely describing goods or services. TBML can also be linked to other methods of money laundering or terrorist financing, such as bribery, black market peso exchange, or informal value transfer systems.

ACAMS CAMS Certification Video Training Course, Module 2: Compliance Standards for Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT), Lesson 4: Trade-Based Money Laundering

Money Laundering and Terrorist Financing Related to Counterfeiting of Currency, Financial Action Task Force (FATF), page 28

Tracing terrorist finances, INTERPOL

The customer directing the payment of the money borrowed to an unrelated third party is a red flag for potential money laundering, as it could indicate layering or integration of illicit funds. The other options are not necessarily indicative of money laundering, although they could warrant further monitoring or due diligence depending on the customer profile and risk assessment.

D (Independent testing): The third line of defense (internal audit) must conduct truly independent testing and assessments of the AFC/AML program to provide objective, unbiased assurance.

“The third line of defense (internal audit) provides independent assurance of the effectiveness of AML/CFT programs and controls by conducting unbiased reviews and testing.”(CAMS 6th Edition, Three Lines of Defense Model; Basel Committee on Banking Supervision (BCBS) Guidance)

B: When a subpoena is received, the institution should first consult with legal counsel to ensure the validity and scope of the subpoena. Compliance with law enforcement requests is mandatory and subject to strict legal obligations. All documentation and responses should be properly recorded.

“A subpoena requires a legal response; consult legal counsel to validate the request and respond as required by law.”

FinCEN 314(b) information-sharing requests are voluntary and can proceed only after fulfilling required legal steps, such as verifying membership in the program and ensuring information-sharing agreements are in place.

CAMS 6th Edition clarifies that “under no circumstances should a customer be notified of a law enforcement inquiry or subpoena.”

Structured transactions are a common method of money laundering, where large amounts of cash are broken down into smaller deposits or withdrawals to avoid reporting thresholds or detection. The most effective tool to detect such transactions is a software program that can link apparently unrelated transactions by using various criteria, such as customer name, address, account number, identification number, transaction amount, date, time, location, etc. Such a program can help identify patterns, trends, and anomalies that may indicate money laundering activity.

ACAMS CAMS Certification Study Guide1, Chapter 2: Money Laundering Risks and Methods, Section 2.2: Common Money Laundering Methods, pp. 51-52

ACAMS CAMS Certification Video Training Course2, Module 2: Money Laundering Risks and Methods, Lesson 2.2: Common Money Laundering Methods

ACAMS CAMS Certification Exam Outline3, Domain 2: Compliance Standards for Anti-Money Laundering (AML) and Combating the Financing of Terrorism (CFT), Task 2.2: Implement risk-based CDD, EDD and ongoing due diligence policies, procedures and processes, p. 13

According to the Anti-Money Laundering Specialist (the 6th edition) study guide, one of the best practices for conducting an internal investigation is to request formal company authorization to conduct the investigation. Such authorization should be granted, if possible, by the board of directors or audit committee, as this will help to establish the independence and legitimacy of the investigation, as well as the protection of the attorney-client privilege and the work product doctrine1. The other options are incorrect because:

B. Refusing to provide any records or documents to law enforcement may be seen as obstructing justice or violating regulatory obligations, and may also result in the loss of the privilege or the imposition of sanctions or penalties23.

C. Letting the bank hire any and all contract investigators may compromise the quality and integrity of the investigation, as well as the protection of the privilege or the work product doctrine, as the investigators may not be properly supervised or instructed by legal counsel, or may not be covered by the Kovel doctrine45.

D. Not marking files or documents with privileged and confidential: attorney-client privilege and/or work-product may undermine the claim of the privilege or the work product doctrine, as it may indicate that the materials were not prepared for the purpose of seeking or providing legal advice or in anticipation of litigation, or that they were not intended to be kept confidential67.

1: ACAMS, CAMS Certification Package - 6th Edition, Chapter 5, page 150

2: ACAMS, CAMS Certification Package - 6th Edition, Chapter 5, page 151

3: Perkins Coie, Protecting Internal Investigation Materials From Disclosure, Updates, August 10, 2020

4: ACAMS, CAMS Certification Package - 6th Edition, Chapter 5, page 150

5: Eversheds Sutherland, Legal privilege of corporate internal investigations under US law - 2019 caselaw update, JDSupra, December 20, 2019

6: ACAMS, CAMS Certification Package - 6th Edition, Chapter 5, page 150

7: Norton Rose Fulbright, Internal investigations: when does privilege apply?, Global law firm, September 11, 2018

According to Section 319(b) of the USA PATRIOT Act, U.S. financial institutions that provide correspondent accounts to foreign banks must maintain records of the owners of the foreign banks and the name and address of a U.S. resident authorized to accept service of legal process for records regarding the correspondent accounts. This requirement is intended to prevent foreign shell banks from accessing the U.S. financial system and to facilitate the investigation and prosecution of money laundering and terrorist financing activities involving foreign banks.

US PATRIOT ACT | State Street

Foreign Correspondent Banking Fact Sheet - U.S. Department of the Treasury

FACT SHEET for Section 312 of the USA PATRIOT Act Final Regulation and Notice of Proposed Rulemaking | FinCEN.gov

Thetimely filing of SARs is legally mandated, and financial institutions mustfollow jurisdiction-specific reporting deadlines.

Option A (Correct):Regulatory requirements dictate SAR filing deadlines(e.g., in the U.S., SARs must be filed within30 calendar daysof detecting suspicious activity).

Option B (Incorrect):30 days is the U.S. standard, but different jurisdictions may havedifferent SAR deadlines(e.g.,EU AMLD mandates prompt reporting).

Option C (Incorrect):Complexity-based reporting delaysare not permitted if theyexceed regulatory timelines.

Option D (Incorrect):Relying solely on professional judgmentrather than regulatory rules can lead tonon-compliance.

SAR Filing Deadlines in Different Jurisdictions:

Jurisdiction

SAR Filing Deadline

United States (FinCEN)

30 calendar days(60 days if no suspect is identified)

United Kingdom (FCA/NCA)

As soon as practicable

European Union (6AMLD)

"Promptly" (no fixed number of days)

Australia (AUSTRAC)

3 business daysfor terrorism financing,14 business daysfor other cases

Why Timely SAR Filing Matters:

Delays in reporting can result in regulatory penalties.

Early SAR filing enables FIUs to take swift action against financial crime.

Non-compliance can lead to fines, criminal charges, and reputational damage.

The FATF 40 Recommendations are the international standards for combating money laundering, terrorist financing, and proliferation financing. They provide a comprehensive and consistent framework of measures that countries should implement in their national systems. Recommendation 5 of the FATF 40 Recommendations states that countries should criminalize the financing of terrorism, terrorist acts and terrorist organizations. This means that countries should adopt laws that make it an offence to provide or collect funds or other assets with the intention or knowledge that they will be used to carry out terrorist acts or support terrorist organizations. Countries should also ensure that such offences are punishable by effective, proportionate and dissuasive sanctions. Furthermore, countries should ensure that terrorist financing offences extend to any person who wilfully provides or collects funds or other assets by any means, directly or indirectly, with the unlawful intention that they should be used or in the knowledge that they are to be used, in full or in part, in order to carry out terrorist acts or support terrorist organizations. Therefore, the correct answer is D. Criminalize, as this is the action that countries should take related to the financing of terrorist acts in accordance with the FATF 40 Recommendations.

FATF website

FATF 40 Recommendations - February 2012

FATF Recommendation 5 - Criminalisation of Terrorist Financing

TheFATF Grey Listconsists of countries withAML/CFT deficienciesthat havecommitted to reforms.

Option C (Correct):Grey-listed jurisdictionsare underincreased monitoringand mustaddress identified deficiencieswithin a set timeframe.

Option A (Incorrect):Yellow noticesare used byINTERPOL, not FATF.

Option B (Incorrect):Red noticesrefer toINTERPOL arrest warrants, not FATF monitoring lists.

Option D (Incorrect):FATF doesnot maintain a "white list"of compliant jurisdictions.

The CAMS 6th Edition specifically lists environmental crime as a predicate offense for money laundering. Environmental crimes include activities such as illegal logging, illegal mining, and illegal trade in wildlife.

“Environmental crime, including illegal logging and mining, is recognized as a predicate offense to money laundering. Such crimes often involve complex corporate structures to hide the illicit origin of the proceeds.”

(CAMS 6th Edition, Chapter: Risks and Methods of Money Laundering and Terrorist Financing; FATF Recommendations, Predicate Offenses)

Incorrect Options:

A: Trade-based ML refers to manipulating trade transactions, not the underlying crime.

B: Corruption may be involved, but the primary crime is environmental.

C: Illicit resource trade describes the act, but the official predicate crime category is environmental crime.

 This involves breaking down large amounts of cash into smaller transactions that are below the reporting threshold of $10,000 in the United States, in order to avoid detection and reporting by the financial institution. Structuring is a red flag for money laundering and should be reported to the authorities as a suspicious activity. The other options are not necessarily indicative of money laundering, as they could have legitimate explanations. For example, the customers may have a family or business connection to the same recipient in Country B, or they may have a regular need to send money three times a week.

ACAMS CAMS Certification Video Training Course, Chapter 2: Money Laundering Risks and Methods, Section 2.2: Common Money Laundering Techniques

Exam CAMS: Certified Anti-Money Laundering Specialist (the 6th edition), Question 91

CAMS Certification Package - 6th Edition, Study Guide, Chapter 2: Money Laundering Risks and Methods, Page 38

D: “Cooperation and coordination between regulatory authorities, law enforcement agencies, and FIUs are essential for effective AML investigations, especially in cross-border cases. This is often accomplished through formal agreements, MOUs, and information-sharing mechanisms.”(CAMS 6th Edition, International Cooperation in AML/CFT; FATF Recommendations 36-40)

According to the Anti-Money Laundering Specialist (the 6th edition) study guide, one of the main challenges of providing on-line services to customers is the verification of theiridentity and the authentication of their transactions1. The lack of face-to-face contact and the use of electronic documents increase the risk of identity fraud, impersonation, and account takeover2. Therefore, financial institutions offering on-line services need to implement robust customer due diligence (CDD) measures, such as using multiple sources of information, verifying biometric data, and applying risk-based monitoring3.

1: CAMS Study Guide, 6th Edition, Chapter 4, Section 4.1, page 103

2: CAMS Study Guide, 6th Edition, Chapter 4, Section 4.2, page 104

3: CAMS Study Guide, 6th Edition, Chapter 4, Section 4.3, page 105

 According to the USA PATRIOT Act, a shell bank is defined as “a bank that has no physical presence in any country” (Section 313(a)(1)). A physical presence means “a place of business that is maintained by a bank and is located at a fixed address, other than solely a post office box or an electronic address, in a country in which the bank is authorized to conduct banking activities, at which location the bank employs one or more individuals on a full-time basis and maintains operating records related to its banking activities” (Section 313(a)(2)). Therefore, option A is the correct answer, as it describes a bank that has no physical presence or employees in any country. Options B, C, and D are not correct, as they describe banks that have some form of physical presence or affiliation with another bank in a country.

USA PATRIOT Act, Title III, Subtitle A, Section 313, Prohibition on United States Correspondent Accounts with Foreign Shell Banks, 1.

ACAMS Study Guide for the Certified Anti-Money Laundering Specialist (the 6th edition), Chapter 4: International Standards and Global Initiatives, page 103.

The primary responsibility of a financial intelligence unit is to act as an intermediary between the entities subject to money laundering obligations and law enforcement agencies. Financial intelligence units are responsible for receiving and analyzing suspicious activity reports (SARs) from entities subject to money laundering obligations, and then forwarding relevant information to the appropriate law enforcement agencies. Additionally, the financial intelligence units are responsible for providing expertise to Egmont working groups to help develop new techniques to detect and prevent money laundering.

The Third European Union Money Laundering Directive (3MLD) is a legal framework that aims to prevent the use of the financial system for the purposes of money laundering and terrorist financing. It was adopted in 2005 and repealed by the Fourth European Union Money Laundering Directive (4MLD) in 2015. The 3MLD applies to a range of entities that are considered to be exposed to the risk of money laundering and terrorist financing, such as:

Financial institutions, which include credit institutions, financial intermediaries, insurance companies, investment firms, and payment service providers.

Casinos, which include both online and offline gambling services that involve wagering a stake with monetary value.

Real estate agents, which include both natural and legal persons that act as intermediaries in the buying and selling of real property or rights over it.

The 3MLD requires these entities to implement a number of measures to prevent and detect money laundering and terrorist financing, such as:

Conducting customer due diligence, which involves identifying and verifying the customer and the beneficial owner, understanding the purpose and nature of the business relationship, and applying enhanced or simplified measures depending on the level of risk.

Keeping records of customer and transaction data for at least five years after the end of the business relationship or the execution of the transaction.

Reporting suspicious transactions or activities to the competent authorities without delay and without tipping off the customer.

Establishing internal policies, procedures, and controls to ensure compliance with the 3MLD, and providing adequate training and awareness to staff.

Cooperating with the relevant supervisory and regulatory authorities and financial intelligence units.

The 3MLD does not apply to defense attorneys, as they are not considered to be obliged entities under the directive. However, the 3MLD does apply to other legal professionals, such as notaries, lawyers, and accountants, when they perform certain activities on behalf of their clients, such as:

Buying and selling of real property or business entities

Managing of client money, securities, or other assets

Opening or managing bank, savings, or securities accounts

Organizing contributions for the creation, operation, or management of companies

Creating, operating, or managing trusts, companies, foundations, or similar structures

THE THIRD EU DIRECTIVE ON MONEY LAUNDERING AND TERRORIST FINANCING, page 11-12

Anti-money laundering and countering the financing of terrorism legislative package, page 1

CAMS Study Guide - 6th Edition, Chapter 1, Section 1.2, page 11

V

This is a common red flag of money laundering that involves layering, which is the process of moving funds through multiple accounts or entities to conceal their origin and ownership. Layering often involves cross-border transfers, especially to high-risk jurisdictions, and rapid movement of funds to avoid detection or tracing. A compliance officer should prioritize this red flag for investigation, as it may indicate a complex money laundering scheme or the financing of terrorism or proliferation.

AML Red Flags – What are the Top 10 Indicators? - ComplyAdvantage, section “Red flags related to transaction patterns”

AML 101: The 10 Most Common Red Flags - KYC-Chain, section “Red flag indicators related to geographical risks”

Anti-money laundering red flags, page 2, bullet point 5

According to the Anti-Money Laundering Specialist (the 6th edition) study guide, individuals who violate anti-money laundering laws can face severe consequences, such as imprisonment, fines, asset forfeiture, and sanctions. These penalties can apply not only to the perpetrators of money laundering, but also to the employees, managers, directors, and officers of financial institutions or other entities that fail to comply with their anti-money laundering obligations. Therefore, violations of anti-money laundering laws can pose a significant risk to individuals, both personally and professionally.

Anti-Money Laundering Specialist (the 6th edition) study guide, page 9

ACAMS website, section on CAMS certification

Money Laundering website, article on “The Consequences of Non-Compliance with Anti-Money Laundering Laws”

The anti-money laundering officer should advise the bank that compliance should have been involved during product development to perform a risk assessment of the product. This is because stored-value cards are considered high-risk products for money laundering and terrorist financing, as they can be used to store, transfer, or access funds anonymously, across borders, or through third parties. A risk assessment would help the bank identify and mitigate the potential vulnerabilities and threats associated with the product, such as customer due diligence, transaction monitoring, record keeping, reporting, and training. A risk assessment would also help the bank comply with the regulatory requirements and expectations for offering such products, as well as the industry best practices and standards.

ACAMS CAMS Certification Study Guide, 6th Edition, Chapter 5, Section 5.3.2, p. 140-1411

ACAMS CAMS Certification Exam Outline, 6th Edition, Domain 1, Task 1.1, p. 42

FATF Guidance on the Risk-Based Approach for Prepaid Cards, Mobile Payments and Internet-Based Payment Services, June 2013, p. 9-103

The Office of Foreign Assets Control (OFAC) sanctions are extraterritorial in nature, meaning that they apply beyond the national borders of the United States. OFAC sanctions are intended to restrict transactions and the movement of assets between the U.S. and designated persons and organizations. These sanctions are imposed to disrupt the economic and financial relations between foreign countries and designated persons, organizations, or countries. These sanctionsinclude prohibiting transactions, requiring the blocking of assets, and implementing targeted measures such as arms embargoes, travel bans, and financial or commodity restrictions.

According to the Anti-Money Laundering Specialist (the 6th edition) resources, one of the essential elements of an effective AML program is the establishment of a written AML policy that sets out the bank’s commitment to comply with the applicable AML laws and regulations, as well asthe roles and responsibilities of the board of directors, senior management, and staff in implementing the AML program. The AML policy should also include the bank’s risk assessment, customer due diligence, transaction monitoring, record keeping, reporting, training, and audit procedures. The AML policy should be approved by the board of directors and communicated to all staff from the top down. The other options are not incorrect, but they are not the primary responsibility of the board of directors in demonstrating commitment to AML compliance.

The potential red flag that alludes to money laundering is option B, where the trio engage in minimal gambling and combine the funds to request a casino cheque for the chips presented. This behavior is indicative of structuring, which involves breaking down large transactions into smaller ones to avoid detection by the casino and regulatory authorities. The fact that the trio only used a small amount of chips to play games, and then combined their funds to request a casino cheque, raises suspicions that they may be attempting to disguise the origin of their funds.

According to the ACAMS CAMS Study Guide (the 6th edition), one of the common methods of money laundering in the insurance sector is to purchase policies with illicit funds, overpay premiums, and then cancel or surrender the policies to receive refunds or payouts1. This allows criminals to move and disguise the source of their funds through the insurance company. Therefore, the regular withdrawals from the policy by the end of the month could indicate a money laundering scheme. Moreover, the FATF Guidance for a Risk-Based Approach for the Life Insurance Sector states that unidentified third parties depositing cash to the policy could also pose a high money laundering risk, as cash transactions are difficult to trace and third parties may act as intermediaries or nominees for the real beneficiaries2. Therefore, the insurance company should conduct enhanced due diligence on the policyholder and the third parties, and monitor the transactions for any suspicious activity.

FATF and CAMS 6th Edition highlight certain third-party activities as red flags for money laundering in the life insurance sector:

Payments are regularly received from third parties that have no apparent relationship with the policy holder (C):“Red flags include payments made by third parties, especially where there is no apparent connection between the third party and the policy holder.”(FATF, Risk-Based Approach for Life Insurance Sector, Section IV: Red Flags; CAMS 6th Edition, Customer Due Diligence for Life Insurance)

A customer names an apparently unrelated third party as a beneficiary (D):“Another warning sign is when beneficiaries have no apparent relation to the policyholder.”(FATF, Ibid; CAMS 6th Edition, Life Insurance ML/TF Red Flags)

Incorrect Options:

A: Consulting an attorney is not, by itself, a red flag.

B: Policy transfer may warrant review but is not specifically a red flag for third-party involvement.

According to the Basel Committee on Banking Supervisionprinciples, one of the core principles for effective banking supervision is that the supervisor determines that banks have adequate policies and processes for identifying, assessing and managing the risk and impact of exposures to and transactions with related parties, and that these policies and processes are effectively implemented1. Failure to conduct proper due diligence on a close relative of a senior manager who requests to open an account posesthe highest operational risk, as it could result in conflicts of interest, reputational damage, legal liability, or financial losses for the bank. The other options are not necessarily the highest operational risk, as they depend on the nature and extent of the relationship, the type and size of the account, and the regulatory and legal framework of the jurisdiction.

 1 Core principles for effective banking supervision, Principle 20.