Acams Advanced CAMS-Financial Crimes Investigations CAMS-FCI Exam Questions

Answer : A, C, E

The best next steps for the investigator to take are:

A . Review the customer's transaction history. This can help the investigator identify any patterns or anomalies in the customer's account activity, such as changes in transaction volume, frequency, amount, source, destination, purpose, etc. The investigator can also compare the customer's transaction history with their KYC profile and risk rating to assess if there are any discrepancies or inconsistencies.

C . Check internal KYC information. This can help the investigator verify the customer's identity, business nature, ownership structure, expected activity, source of funds, etc. The investigator can also update or enhance the customer's KYC information based on any new or relevant information obtained from other sources.

E Conduct adverse media and open-source searches on the customer's background. This can help the investigator find out if there is any negative or adverse information about the customer in public data sources, such as news articles, social media posts, blogs, forums, etc. Adverse media and open-source searches can also provide additional context and insight into the customer's reputation, behavior, associations, etc. The other options are incorrect because:

B . Request information from the internet service provider who hosts the website is not feasible, as it may require a legal process or a court order to obtain such information. Moreover, the internet service provider may not have or disclose any useful information about the website or its owner.

D . Research other customer accounts for transactions to the same website is not relevant, as it may not provide any meaningful information about the customer under investigation. Furthermore, it may violate the privacy and confidentiality of other customers who are not related to the investigation.

F . Identify if the customer has opened accounts in an urban city area is not helpful, as it may not have any bearing on the customer's involvement in a drug or drug paraphernalia purchase. Additionally, it may not be possible to access or verify such information without the customer's consent or authorization.

Advanced CAMS-FCI Certification | ACAMS, Section 2: Investigating Financial Crimes, page 11

Leading Complex Investigations Certificate | ACAMS, Module 3: Conducting Research and Analysis, page 6

Adverse Media Screening - Using AI to Mitigate Risk

Legal requirements for adverse media screening - Thomson Reuters

Electronic client due diligence | Ethics helpsheets | ICAEW

6AMLD & FATF: Where Adverse Media Screening Fits In

Free Adverse Media Check | NameScan

Answer : B

The best information to share at the very beginning of a well-written SAR/STR narrative is the purpose of the SAR/STR narrative and a general description of the known or alleged violation. This is because this information provides an overview of why the SAR/STR is being filed and what type of suspicious activity or transaction is involved. It also helps to capture the attention of the reader and set the tone for the rest of the narrative.

Answer : B

A product of analysis is a conclusion or inference that is derived from facts or judgments, using analytical techniques or tools. Option B is a product of analysis because it implies that the investigator has used a tool or technique, such as a threshold analysis, to identify a pattern of structured cash deposits that may indicate an attempt to evade reporting requirements. The other options are facts or judgments that can be verified by evidence or observation.

Answer : C

The correct answer is C because the FI is unable to obtain evidence of required licensing or registration despite suspicion of money transmitting, which is a red flag for money laundering and a violation of federal and state laws. Option A is incorrect because making several deposits in one month that appear to exceed their expected monthly income might not be indicative of suspicious activity, depending on the customer's profile and source of funds. Option B is incorrect because receiving a large, one-time wire from a law firm might not be indicative of suspicious activity, depending on the customer's relationship with the law firm and the purpose of the wire. Option D is incorrect because discovering a large number of securities transactions that appear to be related to day trading might not be indicative of suspicious activity, depending on the customer's investment strategy and risk tolerance.

Answer : C

The correct answer is C because reviewing the structure of the transactions to the three entities can help the investigator to identify any red flags or indicators of fraud, such as unusual amounts, frequency, destinations, or beneficiaries. The other options are not as relevant or effective in this scenario. Option A is not necessary because the investigator already knows the source of funds for the customer. Option B is not advisable because contacting the customer directly may alert them to the investigation and compromise its integrity. Option D is not helpful because inspecting electronic banking login records does not provide any information about the nature or purpose of the transactions.

Advanced CAMS-FCI Study Guide, page 281

Financial Crime Typologies - Intermediate Certificate Course, Module 32

Answer : A

The analyst should clarify discrepancies noted in the customer's declared profile given the downstream impact on the risk assessment. This is because discrepancies between the customer's nature of business and the information on the business registry may indicate that the customer is not operating a legitimate business or is trying to conceal its true activities. The analyst should verify the customer's identity, source of funds, and purpose of transactions to ensure that the customer's risk profile is accurate and consistent with the Fl's risk appetite.

Answer : B

The activity type that the FI should target for creating an automated alert for human trafficking money laundering is multiple deposits between midnight and 4:00 AM (B). This is because this pattern is consistent with the indicators of human trafficking identified by the Financial Action Task Force (FATF) and the Egmont Group1, which include:

Frequent cash deposits, often in round amounts, outside of normal business hours

Deposits made at different branches or ATMs in various locations

Lack of information about the nature and purpose of the business

Involvement in online platforms that advertise sexual services

Expenses related to travel and accommodation

The other options are not as relevant or specific as option B. Payments made to multiple hotels in the same city (A) could be a legitimate business expense or a sign of other types of money laundering, such as tax evasion or fraud. Deposits made within days of major sporting events could also be explained by other factors, such as increased tourism or gambling. Payments made for virtual currency (D) are not directly related to human trafficking, although they could be used to facilitate money laundering in general.

Answer : B, D, D

Some of the negative impacts of illegal wildlife trade and environmental crimes are loss of potential tax proceeds and threats to biodiversity. Loss of potential tax proceeds occurs when illegal wildlife trade and environmental crimes evade taxation and customs duties, depriving governments of revenues that could be used for public services and development. Threats to biodiversity occur when illegal wildlife trade and environmental crimes endanger species, habitats, and ecosystems, reducing their resilience and ability to provide essential services for human well-being. Public health consequences and threats to a country's political stability are not directly related to illegal wildlife trade and environmental crimes, but rather to other types of financial crimes such as money laundering, terrorism financing, or corruption.

Answer : B

Chain hopping is a technique used by criminals to obscure the traceability of cryptocurrency transactions by converting the funds to a different type of cryptocurrency, often using multiple exchanges or platforms. The other options are not related to chain hopping. Reference: Advanced CAMS-FCI Study Guide, page 38.

Answer : D

A more robust supervisory approach is needed by regulators when overseeing small- and medium-sized MSBs compared to larger MSBs for combatting TF because small- and medium-sized MSBs are more at risk of allowing transactions linked to TF due to the lack of skilled compliance resources. Small- and medium-sized MSBs may face challenges in implementing effective AML/CFT controls, such as conducting risk assessments, applying customer due diligence measures, monitoring transactions, detecting suspicious activities, and reporting to the authorities. They may also have limited access to training, guidance, and tools to enhance their compliance capabilities. Therefore, regulators need to provide more supervision and support to small- and medium-sized MSBs to ensure that they comply with the AML/CFT requirements and mitigate the TF risks.

Sustainable Growth for Small and Medium-Sized Enterprises ... - MDPI

Lessons on Resilience for Small and Midsize Businesses - HBR

Answer : C

The best next step in the investigation is to check the jurisdiction's list of known charities with connections to terrorist activity . This is because the FI has a responsibility to verify the legitimacy and reputation of the beneficiary of the funds, especially if it is a charity or non-profit organization that operates in a high-risk jurisdiction or sector. According to the ACAMS Advanced Financial Crimes Investigations Certification Study Guide1, ''the FI should conduct enhanced due diligence on all parties involved in the investigation, including checking various sources of information, such as watch lists, sanctions lists, negative news, and official registries'' (p. 24). The FI should also check if the beneficiary is consistent with the customer's profile and expected activity.

The other options are not as appropriate or effective as option C. Contacting the financial institution in Turkey that has a relationship with Forever Free and advising them of the investigation (A) could violate confidentiality or data protection laws, as well as compromise the investigation or alert the customer or beneficiary of the suspicion. Updating the customer profile to include Forever Free as the recipient of the funds (B) could be premature or inaccurate, as it does not verify the nature and purpose of the transfer or the identity and legitimacy of the beneficiary. Filing a SAR/STR with the new information learned about the beneficiary (D) could also be premature or incomplete, as it does not confirm if there is any suspicious or criminal activity involved in the transfer or if there are any other red flags or indicators.

Answer : D

The purchase of airplane tickets after receiving multiple small deposits from a crowdfunding platform might suggest that the funds are being used to facilitate travel for terrorist purposes. The other options are not necessarily indicative of terrorist financing, as they could be explained by legitimate reasons or other types of financial crimes.

Answer : B

The activity type that the FI should target for creating an automated alert for human trafficking money laundering is multiple deposits between midnight and 4:00 AM (B). This is because this pattern is consistent with the indicators of human trafficking identified by the Financial Action Task Force (FATF) and the Egmont Group1, which include:

Frequent cash deposits, often in round amounts, outside of normal business hours

Deposits made at different branches or ATMs in various locations

Lack of information about the nature and purpose of the business

Involvement in online platforms that advertise sexual services

Expenses related to travel and accommodation

The other options are not as relevant or specific as option B. Payments made to multiple hotels in the same city (A) could be a legitimate business expense or a sign of other types of money laundering, such as tax evasion or fraud. Deposits made within days of major sporting events could also be explained by other factors, such as increased tourism or gambling. Payments made for virtual currency (D) are not directly related to human trafficking, although they could be used to facilitate money laundering in general.

Answer : C

The reason why it is important for the casino to maintain control of the output from the provider is that the casino maintains ultimate responsibility for this activity and should maintain control to avoid non-compliance . This is because the casino is accountable for its own AML/CFT obligations and cannot delegate or outsource them to a third-party provider. According to the ACAMS Advanced Financial Crimes Investigations Certification Study Guide1, ''the FI should ensure that it has adequate oversight and control over any third-party providers that it engages for AML/CFT purposes, such as conducting due diligence, verifying information, or monitoring transactions'' (p. 25). The FI should also ''review and evaluate the performance and quality of the third-party providers on a regular basis, and address any issues or gaps that may arise'' (p. 25).

The other options are not as relevant or accurate as option C. The clients of the casino prefer to know that the casino is keeping their information secure when being held by a third-party (A) is not a reason why the casino should maintain control of the output from the provider, but rather a customer expectation or preference. As with all third-party relationships, proper control must be maintained to ensure profitability (B) is not a reason why the casino should maintain control of the output from the provider, but rather a general business principle or objective. Other casinos are frequently looking to reduce costs and share ideas, so if this relationship is successful, the model can be used by other businesses (D) is not a reason why the casino should maintain control of the output from the provider, but rather a potential benefit or outcome.

Answer : A, C

Money laundering through online marketplaces and trade-based money laundering both involve the manipulation of the value or quantity of goods to disguise the illicit origin of funds. Over-valuation of the stated price of goods and no evidence of delivery of goods or shipping expenses are two common indicators of such schemes. The other options are not specific to these methods of money laundering.

Answer : C

The statement that most accurately characterizes the methods used by transnational criminal organizations is that they routinely engage in many different types of criminal activities as long as they think it will benefit them . This is because transnational criminal organizations are flexible and adaptable, and they exploit opportunities and vulnerabilities in different markets and jurisdictions. According to ACAMS2, ''Transnational criminal organizations are involved in a wide range of illicit activities, such as drug trafficking, human trafficking, arms trafficking, money laundering, cybercrime, environmental crime, fraud, corruption, and terrorism'' (p. 3). They also ''operate across borders and regions, using complex networks and structures to evade detection and prosecution'' (p. 3).

The other statements are not as accurate or comprehensive as option C. Transnational criminal organizations are unlikely to associate with known terrorist organizations due to the reputational risks (A) is false, as transnational criminal organizations may collaborate or cooperate with terrorist organizations for mutual benefit or convenience, such as sharing resources, routes, or contacts. Transnational criminal organizations are likely to specialize in one particular method and continue to refine that method to escape detection (B) is false, as transnational criminal organizations may diversify or change their methods depending on the circumstances or opportunities, such as shifting products, markets, or modus operandi. Transnational criminal organizations see each other as competitors and rarely cooperate (D) is false, as transnational criminal organizations may form alliances or partnerships with other criminal groups for strategic or tactical reasons, such as sharing information, expertise, or influence.

Answer : A, C, F

The observations at the on-site visits that would justify writing a SAR/STR are signs of severe wear and poor maintenance at the site (A), lights turned off at the site during operational hours , and a full parking lot of cars with no staff at the site (F). These observations suggest that the daycare businesses are not operating legitimately or providing adequate services to their customers, and that they may be misusing governmental grants or laundering money through their accounts. These observations are consistent with some of the red flags for fraud identified by ACAMS2, such as:

Inadequate facilities or equipment for the type of business

Lack of visible activity or customers at the business location

Discrepancy between reported income and expenses

Unusual volume or frequency of transactions

The other observations are not as relevant or indicative of fraud as options A, C, and F. A site located in a commercial building (B) could be a normal or legitimate choice for a daycare business, depending on its size, location, and availability. Visible attendance with children being dropped off by parents (D) could show that the daycare business is providing genuine services to its customers, although it does not rule out possible fraud or money laundering. Visible signage indicating the purpose of building (E) could also show that the daycare business is transparent and legitimate, although it does not guarantee its quality or compliance.

Answer : B

The fact that should not be included in the SAR/STR narrative is the request by law enforcement (D). This is because the request by law enforcement is confidential and should not be disclosed to the customer or anyone else who is not authorized to know it. According to the ACAMS Advanced Financial Crimes Investigations Certification Study Guide1, ''the FI should not include any reference to the LE request in the SAR/STR narrative, as this could compromise the LE investigation or alert the customer of the suspicion'' (p. 35). The FI should also not inform the customer of the LE request or delay filing the SAR/STR because of it.

The other facts should be included in the SAR/STR narrative, as they are relevant and indicative of human trafficking money laundering. The air travel and hotel expenses (A) show that the customer is involved in moving people across different locations, which could be a sign of human smuggling or trafficking. The time of the cash deposits (B) shows that the customer is receiving cash payments during unusual hours, which could be a sign of illicit activities or services. The sporting event shows that the customer is exploiting a high-demand situation for their business, which could be a sign of opportunistic or organized crime.

Answer : A, B

The red flags that would be an indicator that activity is connected to a corruption/bribery typology are large checks issued to various individuals with the memos noting ''gift'', ''thank you'', ''favor'' (A) and negative news found on the customer related to government-issued violations for safety (B). These red flags suggest that the customer is involved in paying or receiving bribes or kickbacks to or from government officials or other parties in exchange for favorable treatment or contracts. These red flags are consistent with some of the indicators of corruption/bribery identified by ACAMS1, such as:

Payments made to or from third parties that are not directly related to the business

Payments made to or from high-risk jurisdictions or sectors

Payments made with vague or incomplete descriptions or justifications

Negative news or reputation of the customer or its associates

The other options are not as relevant or indicative of corruption/bribery as options A and B. Checks issued to an unrelated entity referencing ''rent'' and ''utilities'' in the memos could be a legitimate business expense or a sign of other types of fraud or money laundering, such as tax evasion or shell company schemes. Multiple daycare locations with no active business operations or related account activity (D) could also be a sign of other types of fraud or money laundering, such as embezzlement or front company schemes. The same beneficial owner owning several daycare centers in different locations (E) could be a normal or legitimate business practice, depending on the size, location, and profitability of the centers.

Answer : C

The investigator should document the investigation process and retain all relevant documents in the case management system. This is because documenting the investigation process is a good practice to ensure the quality and consistency of the investigation, as well as to facilitate the review and audit of the investigation. Retaining all relevant documents is also important to support the evidence and findings of the investigation, as well as to comply with the record-keeping requirements of the relevant authorities. The other options are incorrect because:

A . Excluding any open-source information from record-keeping is not advisable, as open-source information can provide valuable insights and context for the investigation, and may not be easily retrievable in the future.

B . Adding all of the information the FI has about the subject, their account(s) activity, research results, KYC information, etc. to the SAR/STR is not necessary, as the SAR/STR should only contain the essential information that is relevant and material to the suspicious activity. Adding too much information may obscure the main points and make the SAR/STR less effective.

D . Not documenting the investigation process if a SAR/STR is not filed is not acceptable, as the investigation process should be documented regardless of the outcome. Documenting the investigation process can help justify why a SAR/STR was not filed, and also provide a reference for future investigations involving the same subject or activity.

Advanced CAMS-FCI Certification | ACAMS, Section 3: Reporting Suspicious Activity, page 14

Leading Complex Investigations Certificate | ACAMS, Module 4: Documenting Your Investigation, page 4

Answer : B

When writing and submitting SARs/STRs, one should consider the guidelines issued by the national financial intelligence unit (FIU) and local regulator and incorporate any country-specific requirements. This ensures that the reports are compliant with the relevant laws and regulations and provide useful information to the authorities. The other options are either incorrect or not best practices.

Answer : B

The best information to share at the very beginning of a well-written SAR/STR narrative is the purpose of the SAR/STR narrative and a general description of the known or alleged violation. This is because this information provides an overview of why the SAR/STR is being filed and what type of suspicious activity or transaction is involved. It also helps to capture the attention of the reader and set the tone for the rest of the narrative.

Answer : A

'The FATF measures the effectiveness of a country's efforts to combat money laundering and terrorist financing through a mutual evaluation process. During a mutual evaluation, the FATF assesses a country's legal and institutional framework, its implementation of measures to combat money laundering and terrorist financing, and the effectiveness of its efforts. The FATF then issues a report with recommendations for improvement' [CAMS Study Guide 6th edition, page 15-16].

Answer : B, C

The identification details of the beneficial owner and authorized signatory are key for law enforcement's physical surveillance of cash activity, as they would help identify the person who controls and operates the company and who is responsible for its financial transactions. The company's operating address is also key, as it would help locate the premises where the cash activity takes place and observe any suspicious movements or behaviors. The identification details of the nominee shareholder and directors are not relevant, as they are not involved in the management or operation of the company. The company's registered address is also not relevant, as it is likely to be a shell or mailbox address that does not reflect the actual location of the business.

Answer : B

Deposit trading is a pattern of suspicious activity where a client deposits large amounts of money into an account, and then transfers the funds to other accounts, often in different jurisdictions or countries. This could be an attempt to disguise the source or destination of the funds, or to avoid reporting requirements. Deposit trading is also known as layering, which is the second stage of money laundering.

Answer : B

Chain hopping is a technique used by criminals to obscure the traceability of cryptocurrency transactions by converting the funds to a different type of cryptocurrency, often using multiple exchanges or platforms. The other options are not related to chain hopping. Reference: Advanced CAMS-FCI Study Guide, page 38.

Answer : A

The correct answer is A because the expected account activities were 1 to 5 transactions per year and around 1 million per transaction amount, but the actual activity showed much more frequent and varied transactions in different currencies and amounts. This indicates a deviation from the customer's profile and risk level.

Answer : C

The bank is out of compliance with CIP regulations because it did not obtain the minimum identifying information from the customer prior to opening the account, as required by 31 CFR 1020.220(a)(2)(i)(A). The bank should have obtained the name, date of birth, address, and identification number of the customer, as well as verified the identity of the customer to the extent reasonable and practicable. The lack of ownership data may also indicate a violation of beneficial ownership regulations, but that is not the primary issue in this case.

Answer : C

The reason why it is important for the casino to maintain control of the output from the provider is that the casino maintains ultimate responsibility for this activity and should maintain control to avoid non-compliance . This is because the casino is accountable for its own AML/CFT obligations and cannot delegate or outsource them to a third-party provider. According to the ACAMS Advanced Financial Crimes Investigations Certification Study Guide1, ''the FI should ensure that it has adequate oversight and control over any third-party providers that it engages for AML/CFT purposes, such as conducting due diligence, verifying information, or monitoring transactions'' (p. 25). The FI should also ''review and evaluate the performance and quality of the third-party providers on a regular basis, and address any issues or gaps that may arise'' (p. 25).

The other options are not as relevant or accurate as option C. The clients of the casino prefer to know that the casino is keeping their information secure when being held by a third-party (A) is not a reason why the casino should maintain control of the output from the provider, but rather a customer expectation or preference. As with all third-party relationships, proper control must be maintained to ensure profitability (B) is not a reason why the casino should maintain control of the output from the provider, but rather a general business principle or objective. Other casinos are frequently looking to reduce costs and share ideas, so if this relationship is successful, the model can be used by other businesses (D) is not a reason why the casino should maintain control of the output from the provider, but rather a potential benefit or outcome.

Answer : B

The activity type that the FI should target for creating an automated alert for human trafficking money laundering is multiple deposits between midnight and 4:00 AM (B). This is because this pattern is consistent with the indicators of human trafficking identified by the Financial Action Task Force (FATF) and the Egmont Group1, which include:

Frequent cash deposits, often in round amounts, outside of normal business hours

Deposits made at different branches or ATMs in various locations

Lack of information about the nature and purpose of the business

Involvement in online platforms that advertise sexual services

Expenses related to travel and accommodation

The other options are not as relevant or specific as option B. Payments made to multiple hotels in the same city (A) could be a legitimate business expense or a sign of other types of money laundering, such as tax evasion or fraud. Deposits made within days of major sporting events could also be explained by other factors, such as increased tourism or gambling. Payments made for virtual currency (D) are not directly related to human trafficking, although they could be used to facilitate money laundering in general.

Answer : C

The best step for the investigator to take next is to request information about the beneficiaries related to the company. This will help to identify the ultimate beneficial owners of the funds and the purpose of the transactions. Requesting information from the company or filing a SAR/STR to the FIU where the company is located may not be feasible or effective, as the company may not cooperate or the FIU may not have jurisdiction over the offshore entity. Conducting an open-source search may provide some information about the ownership and registration of the company, but it may not be sufficient or reliable to determine the nature and legitimacy of the transactions.

SAR Narrative Guidance Package

Best Practices for Drafting an STR or SAR

Answer : B

An investigator should avoid escalating a suspicious event to the chief compliance officer if there is a potential conflict of interest, such as when a close family member of the officer is involved in the transaction. In such a case, the investigator should pursue other channels, such as reporting to a higher authority or an independent committee. The other options do not present a conflict of interest and should be escalated to the chief compliance officer as part of the normal procedure.

Answer : A, C, F

The observations at the on-site visits that would justify writing a SAR/STR are signs of severe wear and poor maintenance at the site (A), lights turned off at the site during operational hours , and a full parking lot of cars with no staff at the site (F). These observations suggest that the daycare businesses are not operating legitimately or providing adequate services to their customers, and that they may be misusing governmental grants or laundering money through their accounts. These observations are consistent with some of the red flags for fraud identified by ACAMS2, such as:

Inadequate facilities or equipment for the type of business

Lack of visible activity or customers at the business location

Discrepancy between reported income and expenses

Unusual volume or frequency of transactions

The other observations are not as relevant or indicative of fraud as options A, C, and F. A site located in a commercial building (B) could be a normal or legitimate choice for a daycare business, depending on its size, location, and availability. Visible attendance with children being dropped off by parents (D) could show that the daycare business is providing genuine services to its customers, although it does not rule out possible fraud or money laundering. Visible signage indicating the purpose of building (E) could also show that the daycare business is transparent and legitimate, although it does not guarantee its quality or compliance.

Answer : D

A more robust supervisory approach is needed by regulators when overseeing small- and medium-sized MSBs compared to larger MSBs for combatting TF because small- and medium-sized MSBs are more at risk of allowing transactions linked to TF due to the lack of skilled compliance resources. Small- and medium-sized MSBs may face challenges in implementing effective AML/CFT controls, such as conducting risk assessments, applying customer due diligence measures, monitoring transactions, detecting suspicious activities, and reporting to the authorities. They may also have limited access to training, guidance, and tools to enhance their compliance capabilities. Therefore, regulators need to provide more supervision and support to small- and medium-sized MSBs to ensure that they comply with the AML/CFT requirements and mitigate the TF risks.

Sustainable Growth for Small and Medium-Sized Enterprises ... - MDPI

Lessons on Resilience for Small and Midsize Businesses - HBR

Answer : D

The additional information that would trigger filing a SAR/STR is the fact that the funds for the seed capital were in the form of 50 cashier's checks of 10,000 GBP each and 50 money orders of 10,000 GBP. This is because this indicates a possible attempt to avoid the reporting threshold of 10,000 GBP for cash transactions, which is a common money laundering technique known as structuring or smurfing12. The other options are not necessarily suspicious, as they do not involve cash transactions or indicate any illicit source of funds. The fact that the client's spouse was a PEP does not automatically make the transaction suspicious unless there are other red flags or risk factors associated with the PEP34

Answer : C

The best next step in the investigation is to check the jurisdiction's list of known charities with connections to terrorist activity . This is because the FI has a responsibility to verify the legitimacy and reputation of the beneficiary of the funds, especially if it is a charity or non-profit organization that operates in a high-risk jurisdiction or sector. According to the ACAMS Advanced Financial Crimes Investigations Certification Study Guide1, ''the FI should conduct enhanced due diligence on all parties involved in the investigation, including checking various sources of information, such as watch lists, sanctions lists, negative news, and official registries'' (p. 24). The FI should also check if the beneficiary is consistent with the customer's profile and expected activity.

The other options are not as appropriate or effective as option C. Contacting the financial institution in Turkey that has a relationship with Forever Free and advising them of the investigation (A) could violate confidentiality or data protection laws, as well as compromise the investigation or alert the customer or beneficiary of the suspicion. Updating the customer profile to include Forever Free as the recipient of the funds (B) could be premature or inaccurate, as it does not verify the nature and purpose of the transfer or the identity and legitimacy of the beneficiary. Filing a SAR/STR with the new information learned about the beneficiary (D) could also be premature or incomplete, as it does not confirm if there is any suspicious or criminal activity involved in the transfer or if there are any other red flags or indicators.

Answer : A

One of the actions that is part of the enhanced due diligence process is collecting beneficial ownership details regarding the client's account. This is important to identify the natural persons who ultimately own or control the client, and to assess the potential risks associated with them. According to the Financial Action Task Force (FATF), beneficial ownership information should include1:

The name, nationality, and country of residence of each beneficial owner.

The date of birth or incorporation of each beneficial owner.

The nature and extent of the beneficial interest held by each beneficial owner.

The means by which the beneficial ownership or control is exercised.

FATF Guidance on Transparency and Beneficial Ownership

Answer : B

According to the CAMS study guide, the Financial Action Task Force (FATF) Regional Style Bodies are organizations created by the FATF to promote the implementation of anti-money laundering and countering the financing of terrorism (AML/CFT) measures in specific regions. One of the key characteristics of these bodies is the implementation of regional mutual evaluation procedures.

Regional mutual evaluations involve member countries evaluating each other's AML/CFT regimes to identify strengths and weaknesses and to develop best practices for improvement. This process allows for greater cooperation between countries and can help to identify and address regional AML/CFT risks more effectively. It also promotes consistency in AML/CFT standards and practices within the region.

Answer : B

The best information to share at the very beginning of a well-written SAR/STR narrative is the purpose of the SAR/STR narrative and a general description of the known or alleged violation. This is because this information provides an overview of why the SAR/STR is being filed and what type of suspicious activity or transaction is involved. It also helps to capture the attention of the reader and set the tone for the rest of the narrative.

Answer : C, E

The correct answer is C and E. The investigator should provide additional information to the LE upon receiving a formal request, and gather all the information that would be useful for LE and recommend filing a SAR/STR. These steps are consistent with the best practices of conducting financial crime investigations and reporting suspicious activity. The investigator should not close the customer's accounts or the investigation, as this may interfere with the ongoing LE inquiry and violate the FI's policies and procedures. The investigator should also not contact local LE directly, as this may compromise the confidentiality of the investigation and the FIU's authority. Reference:

Advanced CAMS-FCI Study Guide, Chapter 4: Reporting Suspicious Activity, pages 40-411

Advanced CAMS-FCI Study Guide, Chapter 5: Governance of an AFC Investigations Unit, pages 48-491

Advanced CAMS-FCI Certification | ACAMS

Answer : A, C

Answer : C

The correct answer is C because the FI is unable to obtain evidence of required licensing or registration despite suspicion of money transmitting, which is a red flag for money laundering and a violation of federal and state laws. Option A is incorrect because making several deposits in one month that appear to exceed their expected monthly income might not be indicative of suspicious activity, depending on the customer's profile and source of funds. Option B is incorrect because receiving a large, one-time wire from a law firm might not be indicative of suspicious activity, depending on the customer's relationship with the law firm and the purpose of the wire. Option D is incorrect because discovering a large number of securities transactions that appear to be related to day trading might not be indicative of suspicious activity, depending on the customer's investment strategy and risk tolerance.

Answer : A, B

The correct answer is A and B because human smuggling/trafficking and terrorist financing are both predicate offenses for money laundering that could be related to the client's activities. Option C is incorrect because there is no indication of narcotics trafficking in the scenario. Option D is incorrect because there is no indication of antiques smuggling in the scenario. Option E is incorrect because there is no indication of tax evasion in the scenario.

Answer : B

According to the Financial Action Task Force (FATF), the use of large amounts of cash is a common method for money launderers to move illicit funds [1]. Purchasing luxury items with cash can indicate an attempt to convert illegal funds into tangible assets that can be easily resold or moved across borders. As a result, businesses that deal with luxury items are required to implement enhanced due diligence measures, including monitoring transactions involving large amounts of cash [1].

Answer : B

Chain hopping is a technique used by criminals to obscure the traceability of cryptocurrency transactions by converting the funds to a different type of cryptocurrency, often using multiple exchanges or platforms. The other options are not related to chain hopping. Reference: Advanced CAMS-FCI Study Guide, page 38.

Answer : A, C, E

The best next steps for the investigator to take are:

A . Review the customer's transaction history. This can help the investigator identify any patterns or anomalies in the customer's account activity, such as changes in transaction volume, frequency, amount, source, destination, purpose, etc. The investigator can also compare the customer's transaction history with their KYC profile and risk rating to assess if there are any discrepancies or inconsistencies.

C . Check internal KYC information. This can help the investigator verify the customer's identity, business nature, ownership structure, expected activity, source of funds, etc. The investigator can also update or enhance the customer's KYC information based on any new or relevant information obtained from other sources.

E Conduct adverse media and open-source searches on the customer's background. This can help the investigator find out if there is any negative or adverse information about the customer in public data sources, such as news articles, social media posts, blogs, forums, etc. Adverse media and open-source searches can also provide additional context and insight into the customer's reputation, behavior, associations, etc. The other options are incorrect because:

B . Request information from the internet service provider who hosts the website is not feasible, as it may require a legal process or a court order to obtain such information. Moreover, the internet service provider may not have or disclose any useful information about the website or its owner.

D . Research other customer accounts for transactions to the same website is not relevant, as it may not provide any meaningful information about the customer under investigation. Furthermore, it may violate the privacy and confidentiality of other customers who are not related to the investigation.

F . Identify if the customer has opened accounts in an urban city area is not helpful, as it may not have any bearing on the customer's involvement in a drug or drug paraphernalia purchase. Additionally, it may not be possible to access or verify such information without the customer's consent or authorization.

Advanced CAMS-FCI Certification | ACAMS, Section 2: Investigating Financial Crimes, page 11

Leading Complex Investigations Certificate | ACAMS, Module 3: Conducting Research and Analysis, page 6

Adverse Media Screening - Using AI to Mitigate Risk

Legal requirements for adverse media screening - Thomson Reuters

Electronic client due diligence | Ethics helpsheets | ICAEW

6AMLD & FATF: Where Adverse Media Screening Fits In

Free Adverse Media Check | NameScan

Answer : C

The reason why it is important for the casino to maintain control of the output from the provider is that the casino maintains ultimate responsibility for this activity and should maintain control to avoid non-compliance . This is because the casino is accountable for its own AML/CFT obligations and cannot delegate or outsource them to a third-party provider. According to the ACAMS Advanced Financial Crimes Investigations Certification Study Guide1, ''the FI should ensure that it has adequate oversight and control over any third-party providers that it engages for AML/CFT purposes, such as conducting due diligence, verifying information, or monitoring transactions'' (p. 25). The FI should also ''review and evaluate the performance and quality of the third-party providers on a regular basis, and address any issues or gaps that may arise'' (p. 25).

The other options are not as relevant or accurate as option C. The clients of the casino prefer to know that the casino is keeping their information secure when being held by a third-party (A) is not a reason why the casino should maintain control of the output from the provider, but rather a customer expectation or preference. As with all third-party relationships, proper control must be maintained to ensure profitability (B) is not a reason why the casino should maintain control of the output from the provider, but rather a general business principle or objective. Other casinos are frequently looking to reduce costs and share ideas, so if this relationship is successful, the model can be used by other businesses (D) is not a reason why the casino should maintain control of the output from the provider, but rather a potential benefit or outcome.

Answer : B

Deposit trading is a pattern of suspicious activity where a client deposits large amounts of money into an account, and then transfers the funds to other accounts, often in different jurisdictions or countries. This could be an attempt to disguise the source or destination of the funds, or to avoid reporting requirements. Deposit trading is also known as layering, which is the second stage of money laundering.

Answer : B

The fact that should not be included in the SAR/STR narrative is the request by law enforcement (D). This is because the request by law enforcement is confidential and should not be disclosed to the customer or anyone else who is not authorized to know it. According to the ACAMS Advanced Financial Crimes Investigations Certification Study Guide1, ''the FI should not include any reference to the LE request in the SAR/STR narrative, as this could compromise the LE investigation or alert the customer of the suspicion'' (p. 35). The FI should also not inform the customer of the LE request or delay filing the SAR/STR because of it.

The other facts should be included in the SAR/STR narrative, as they are relevant and indicative of human trafficking money laundering. The air travel and hotel expenses (A) show that the customer is involved in moving people across different locations, which could be a sign of human smuggling or trafficking. The time of the cash deposits (B) shows that the customer is receiving cash payments during unusual hours, which could be a sign of illicit activities or services. The sporting event shows that the customer is exploiting a high-demand situation for their business, which could be a sign of opportunistic or organized crime.

Answer : C

The SAR/STR should include any information that is relevant to the suspicious activity, such as the customer information, the transaction details, and any other indicators of potential money laundering or criminal activity. The fact that one of the transactors occasionally smelled of marijuana smoke is an indicator that the customer may be involved in the illicit drug trade, which is a predicate offense for money laundering. Therefore, this information should be included in the SAR/STR. Reference: Advanced CAMS-FCI Study Guide, page 25.

Answer : A

The instruction that the person in charge of the broker-dealer should provide to their employees is to take notes on the questions and comments made by the agents (A). This is because taking notes can help the employees to recall and document what happened during the search warrant execution, which can be useful for legal or regulatory purposes. According to ACAMS3, ''the FI should instruct its staff to cooperate with LE agents during a search warrant execution, but also to take notes of what is being searched, seized, or asked by the agents'' (p. 35). The FI should also ''keep copies of any documents or records that are taken by LE agents'' (p. 35).

The other instructions are not correct. The person in charge of the broker-dealer should not instruct their employees to sign consent forms permitting the agents to search employees' offices (B), as this is unnecessary and potentially risky, as the agents already have a valid search warrant that authorizes them to search the premises. The person in charge of the broker-dealer should not instruct their employees to provide agents with unlimited access to customers' personal data , as this could violate privacy or data protection laws, as well as compromise customer trust and confidentiality. The person in charge of the broker-dealer should not instruct their employees to volunteer information not requested by the agents that they think may be useful (D), as this could interfere with the LE investigation or expose them to legal or regulatory risks.

Introduction to Transnational Organized Crime

ACAMS Law Enforcement and Financial Crimes Investigations eLearning Course Module

Law Enforcement Requests and Actions

Answer : A

When writing or reviewing a SAR/STR, it is important to ensure that the narrative is kept to the point; easy to read; and addresses the who, what, when, where, why, and how. This is because the narrative is the most crucial part of the SAR/STR, as it provides a clear and concise summary of the suspicious activity or transaction that triggered the report. The narrative should include all the relevant information that would help law enforcement or regulators to understand the nature and context of the activity or transaction, such as123:

The who: The names, addresses, account numbers, and other identifying information of the parties involved in the activity or transaction, such as customers, beneficiaries, intermediaries, or third parties.

The what: The type, amount, frequency, and purpose of the activity or transaction, such as cash deposits, wire transfers, check payments, or purchases of goods or services.

The when: The date, time, and duration of the activity or transaction, and whether it was a one-time occurrence or part of a pattern or trend.

The where: The location or channel of the activity or transaction, such as branches, ATMs, online platforms, or mobile applications.

The why: The reason or rationale for the activity or transaction, and why it was considered suspicious or unusual based on the customer's profile, behavior, or expected activity.

The how: The method or mechanism of the activity or transaction, such as cash, check, debit card, credit card, cryptocurrency, or prepaid card.

How to write the perfect ''Suspicious Activity Reports'' (SAR)? | i-AML

Writing for Prosecution: Best Practices For Composing SAR Narratives That Assist Prosecutors | ACAMS

SAR Writing Examples and Proper Formatting: Write for Your Reader - Alessa

Answer : B, C

The identification details of the beneficial owner and authorized signatory are key for law enforcement's physical surveillance of cash activity, as they would help identify the person who controls and operates the company and who is responsible for its financial transactions. The company's operating address is also key, as it would help locate the premises where the cash activity takes place and observe any suspicious movements or behaviors. The identification details of the nominee shareholder and directors are not relevant, as they are not involved in the management or operation of the company. The company's registered address is also not relevant, as it is likely to be a shell or mailbox address that does not reflect the actual location of the business.

Answer : A

The correct answer is A because a SAR/STR narrative should be concise, clear, and complete, addressing the who, what, when, where, why, and how of the suspicious activity. Option B is incorrect because providing too much information can make the narrative confusing and irrelevant. Option C is incorrect because the introduction should provide a summary of the suspicious activity, not the conclusion. Option D is incorrect because suspect names should be mentioned in the narrative to identify the parties involved in the suspicious activity.

Answer : A

The correct answer is A because this scenario describes a possible case of ticket laundering, which is a form of money laundering where criminals use gambling tickets to disguise the source of their illicit funds. The customers who deposit the tickets are either complicit or unaware of the scheme, and they receive a commission or a fee for their service. The other options are not likely because they do not explain why the customers would deposit multiple tickets from the same gambling company and withdraw cash the next day.

Answer : A, B

This information can be found in the Certified Anti-Money Laundering Specialist (CAMS) study guide, 6th edition, under the section on Unusual Customer Identification Scenarios. The guide explains that two indicators that should be included in awareness training for unusual customer identification scenarios are:

A . The customer opens the account in the name of a family member who begins making large deposits.

This is an indicator of potential structuring, where a customer may be attempting to avoid triggering reporting thresholds by depositing funds in smaller amounts over time. It is important for staff to be aware of this scenario and to monitor accounts for potential suspicious activity.

B . The customer's name and home address cannot be verified.

This is an indicator of potential identity theft or other fraudulent activity. If a customer's identifying information cannot be verified, it is important for staff to conduct additional due diligence to ensure that the customer is legitimate and that the account is not being used for illicit purposes.

Answer : A, B

The correct answer is A and B because human smuggling/trafficking and terrorist financing are both predicate offenses for money laundering that could be related to the client's activities. Option C is incorrect because there is no indication of narcotics trafficking in the scenario. Option D is incorrect because there is no indication of antiques smuggling in the scenario. Option E is incorrect because there is no indication of tax evasion in the scenario.

Answer : A

The correct answer is A because the expected account activities were 1 to 5 transactions per year and around 1 million per transaction amount, but the actual activity showed much more frequent and varied transactions in different currencies and amounts. This indicates a deviation from the customer's profile and risk level.

Answer : B

The Fl should review the corporate account's activity and transactions. This is because a grand jury subpoena is a legal request for information or testimony that may be used in a criminal investigation or prosecution. The Fl should review the account for any suspicious or unusual activity that may be related to the subpoena or indicate money laundering, terrorist financing, or other financial crimes. The Fl should also document its review and retain any relevant records.

Answer : A, C

Answer : C

The reason why it is important for the casino to maintain control of the output from the provider is that the casino maintains ultimate responsibility for this activity and should maintain control to avoid non-compliance . This is because the casino is accountable for its own AML/CFT obligations and cannot delegate or outsource them to a third-party provider. According to the ACAMS Advanced Financial Crimes Investigations Certification Study Guide1, ''the FI should ensure that it has adequate oversight and control over any third-party providers that it engages for AML/CFT purposes, such as conducting due diligence, verifying information, or monitoring transactions'' (p. 25). The FI should also ''review and evaluate the performance and quality of the third-party providers on a regular basis, and address any issues or gaps that may arise'' (p. 25).

The other options are not as relevant or accurate as option C. The clients of the casino prefer to know that the casino is keeping their information secure when being held by a third-party (A) is not a reason why the casino should maintain control of the output from the provider, but rather a customer expectation or preference. As with all third-party relationships, proper control must be maintained to ensure profitability (B) is not a reason why the casino should maintain control of the output from the provider, but rather a general business principle or objective. Other casinos are frequently looking to reduce costs and share ideas, so if this relationship is successful, the model can be used by other businesses (D) is not a reason why the casino should maintain control of the output from the provider, but rather a potential benefit or outcome.

Answer : B

According to the CAMS study guide, the Financial Action Task Force (FATF) Regional Style Bodies are organizations created by the FATF to promote the implementation of anti-money laundering and countering the financing of terrorism (AML/CFT) measures in specific regions. One of the key characteristics of these bodies is the implementation of regional mutual evaluation procedures.

Regional mutual evaluations involve member countries evaluating each other's AML/CFT regimes to identify strengths and weaknesses and to develop best practices for improvement. This process allows for greater cooperation between countries and can help to identify and address regional AML/CFT risks more effectively. It also promotes consistency in AML/CFT standards and practices within the region.

Answer : B, D

The sources of funds that Bank A should conduct additional scrutiny on are the third-party transfer and the transfer from Bank B. This is because these sources may pose higher risks of money laundering, terrorist financing, fraud, or other illicit activities. Some of the reasons why these sources require more scrutiny are23:

Third-party transfers may involve unknown or unrelated parties that may have ulterior motives or hidden agendas. They may also be used to obscure the origin or destination of funds, or to circumvent sanctions or other regulatory restrictions.

Transfers from Bank B may involve jurisdictions that have weak anti-money laundering and counter-terrorist financing (AML/CFT) regimes, high levels of corruption, or significant criminal activity. They may also involve banks that have poor reputation, compliance, or transparency standards.

Third Party Payments - Wolfsberg Group

Guidance on Correspondent Banking Services - FATF

Answer : B

The activity type that the FI should target for creating an automated alert for human trafficking money laundering is multiple deposits between midnight and 4:00 AM (B). This is because this pattern is consistent with the indicators of human trafficking identified by the Financial Action Task Force (FATF) and the Egmont Group1, which include:

Frequent cash deposits, often in round amounts, outside of normal business hours

Deposits made at different branches or ATMs in various locations

Lack of information about the nature and purpose of the business

Involvement in online platforms that advertise sexual services

Expenses related to travel and accommodation

The other options are not as relevant or specific as option B. Payments made to multiple hotels in the same city (A) could be a legitimate business expense or a sign of other types of money laundering, such as tax evasion or fraud. Deposits made within days of major sporting events could also be explained by other factors, such as increased tourism or gambling. Payments made for virtual currency (D) are not directly related to human trafficking, although they could be used to facilitate money laundering in general.

Answer : C

The best step for the investigator to take next is to request information about the beneficiaries related to the company. This will help to identify the ultimate beneficial owners of the funds and the purpose of the transactions. Requesting information from the company or filing a SAR/STR to the FIU where the company is located may not be feasible or effective, as the company may not cooperate or the FIU may not have jurisdiction over the offshore entity. Conducting an open-source search may provide some information about the ownership and registration of the company, but it may not be sufficient or reliable to determine the nature and legitimacy of the transactions.

SAR Narrative Guidance Package

Best Practices for Drafting an STR or SAR

Answer : A, B

The red flags that would be an indicator that activity is connected to a corruption/bribery typology are large checks issued to various individuals with the memos noting ''gift'', ''thank you'', ''favor'' (A) and negative news found on the customer related to government-issued violations for safety (B). These red flags suggest that the customer is involved in paying or receiving bribes or kickbacks to or from government officials or other parties in exchange for favorable treatment or contracts. These red flags are consistent with some of the indicators of corruption/bribery identified by ACAMS1, such as:

Payments made to or from third parties that are not directly related to the business

Payments made to or from high-risk jurisdictions or sectors

Payments made with vague or incomplete descriptions or justifications

Negative news or reputation of the customer or its associates

The other options are not as relevant or indicative of corruption/bribery as options A and B. Checks issued to an unrelated entity referencing ''rent'' and ''utilities'' in the memos could be a legitimate business expense or a sign of other types of fraud or money laundering, such as tax evasion or shell company schemes. Multiple daycare locations with no active business operations or related account activity (D) could also be a sign of other types of fraud or money laundering, such as embezzlement or front company schemes. The same beneficial owner owning several daycare centers in different locations (E) could be a normal or legitimate business practice, depending on the size, location, and profitability of the centers.

Answer : B

When writing and submitting SARs/STRs, one should consider the guidelines issued by the national financial intelligence unit (FIU) and local regulator and incorporate any country-specific requirements. This ensures that the reports are compliant with the relevant laws and regulations and provide useful information to the authorities. The other options are either incorrect or not best practices.

Answer : C

The statement that most accurately characterizes the methods used by transnational criminal organizations is that they routinely engage in many different types of criminal activities as long as they think it will benefit them . This is because transnational criminal organizations are flexible and adaptable, and they exploit opportunities and vulnerabilities in different markets and jurisdictions. According to ACAMS2, ''Transnational criminal organizations are involved in a wide range of illicit activities, such as drug trafficking, human trafficking, arms trafficking, money laundering, cybercrime, environmental crime, fraud, corruption, and terrorism'' (p. 3). They also ''operate across borders and regions, using complex networks and structures to evade detection and prosecution'' (p. 3).

The other statements are not as accurate or comprehensive as option C. Transnational criminal organizations are unlikely to associate with known terrorist organizations due to the reputational risks (A) is false, as transnational criminal organizations may collaborate or cooperate with terrorist organizations for mutual benefit or convenience, such as sharing resources, routes, or contacts. Transnational criminal organizations are likely to specialize in one particular method and continue to refine that method to escape detection (B) is false, as transnational criminal organizations may diversify or change their methods depending on the circumstances or opportunities, such as shifting products, markets, or modus operandi. Transnational criminal organizations see each other as competitors and rarely cooperate (D) is false, as transnational criminal organizations may form alliances or partnerships with other criminal groups for strategic or tactical reasons, such as sharing information, expertise, or influence.

Answer : B

The illegal activity that the investigator has reasonable grounds to suspect Richard Aston of is aftermarket sales of entertainment admission tickets. This is because aftermarket sales of entertainment admission tickets involve reselling tickets for events, concerts, festivals, etc. at a higher price than their face value, often through online platforms or scalpers. This practice can be illegal or unethical, depending on the jurisdiction and the terms and conditions of the original ticket seller. The investigator should look for indicators of aftermarket sales of entertainment admission tickets, such as high volume or frequency of incoming payments from various individuals, correlation between incoming payments and major events or conferences, and discrepancy between the customer's profile and the nature of the transactions. The other options are incorrect because:

A . Embezzling from the hotel is not likely, as it would involve stealing money or property from the hotel by an employee or a person in a position of trust. There is no evidence that Richard Aston works for or has access to the hotel's assets.

C . Human trafficking is not probable, as it would involve exploiting people for forced labor or commercial sexual exploitation. There is no indication that Richard Aston is involved in any form of human trafficking or has any connection to victims or perpetrators.

D . Sports betting is not plausible, as it would involve wagering money on the outcome of sporting events or games. There is no sign that Richard Aston is engaged in any sports betting activity or has any association with bookmakers or gamblers.

Advanced CAMS-FCI Certification | ACAMS, Section 2: Investigating Financial Crimes, page 10

TicketSwap: The safest way to buy and sell tickets

Ticketing 101 | Ticketmaster

10 Types of Tickets For Events (+ Why & When To Use Them) - Eventbrite

Answer : A

One of the actions that is part of the enhanced due diligence process is collecting beneficial ownership details regarding the client's account. This is important to identify the natural persons who ultimately own or control the client, and to assess the potential risks associated with them. According to the Financial Action Task Force (FATF), beneficial ownership information should include1:

The name, nationality, and country of residence of each beneficial owner.

The date of birth or incorporation of each beneficial owner.

The nature and extent of the beneficial interest held by each beneficial owner.

The means by which the beneficial ownership or control is exercised.

FATF Guidance on Transparency and Beneficial Ownership

Answer : A, D, F

The investigator should review all client-signed documents relating to all accounts (A) to check for any discrepancies or red flags. The investigator should also perform secondary scans of the client's other owners/authorized signers (D) to identify any possible connections or associations with the second client or the Paradise Papers. Additionally, the investigator should prepare a relationship flow chart of all existing accounts (F) to better understand the client's activities and patterns. These steps are consistent with the ACAMS Advanced Financial Crimes Investigations Certification Study Guide1, which states that investigators should ''review all relevant documentation, including account opening documents, transaction records, and customer correspondence'' (p. 23), ''conduct enhanced due diligence on all parties involved in the investigation'' (p. 24), and ''use data visualization tools to map out complex relationships and transactions'' (p. 25).

Answer : C

The investigator should document the investigation process and retain all relevant documents in the case management system. This is because documenting the investigation process is a good practice to ensure the quality and consistency of the investigation, as well as to facilitate the review and audit of the investigation. Retaining all relevant documents is also important to support the evidence and findings of the investigation, as well as to comply with the record-keeping requirements of the relevant authorities. The other options are incorrect because:

A . Excluding any open-source information from record-keeping is not advisable, as open-source information can provide valuable insights and context for the investigation, and may not be easily retrievable in the future.

B . Adding all of the information the FI has about the subject, their account(s) activity, research results, KYC information, etc. to the SAR/STR is not necessary, as the SAR/STR should only contain the essential information that is relevant and material to the suspicious activity. Adding too much information may obscure the main points and make the SAR/STR less effective.

D . Not documenting the investigation process if a SAR/STR is not filed is not acceptable, as the investigation process should be documented regardless of the outcome. Documenting the investigation process can help justify why a SAR/STR was not filed, and also provide a reference for future investigations involving the same subject or activity.

Advanced CAMS-FCI Certification | ACAMS, Section 3: Reporting Suspicious Activity, page 14

Leading Complex Investigations Certificate | ACAMS, Module 4: Documenting Your Investigation, page 4

Answer : C

The SAR/STR should include any information that is relevant to the suspicious activity, such as the customer information, the transaction details, and any other indicators of potential money laundering or criminal activity. The fact that one of the transactors occasionally smelled of marijuana smoke is an indicator that the customer may be involved in the illicit drug trade, which is a predicate offense for money laundering. Therefore, this information should be included in the SAR/STR. Reference: Advanced CAMS-FCI Study Guide, page 25.

Answer : D

The correct answer is A because this scenario describes a possible case of human trafficking, which is a crime where people are exploited for labor or sexual services against their will. Human traffickers may use bank accounts to launder their proceeds and pay their victims, and they may use fake or stolen identities to avoid detection. The other options are not likely because they do not explain why multiple deposits from the same employer under different employees' names would occur, nor why cash withdrawals would follow each deposit.

Answer : C

The reason why it is important for the casino to maintain control of the output from the provider is that the casino maintains ultimate responsibility for this activity and should maintain control to avoid non-compliance . This is because the casino is accountable for its own AML/CFT obligations and cannot delegate or outsource them to a third-party provider. According to the ACAMS Advanced Financial Crimes Investigations Certification Study Guide1, ''the FI should ensure that it has adequate oversight and control over any third-party providers that it engages for AML/CFT purposes, such as conducting due diligence, verifying information, or monitoring transactions'' (p. 25). The FI should also ''review and evaluate the performance and quality of the third-party providers on a regular basis, and address any issues or gaps that may arise'' (p. 25).

The other options are not as relevant or accurate as option C. The clients of the casino prefer to know that the casino is keeping their information secure when being held by a third-party (A) is not a reason why the casino should maintain control of the output from the provider, but rather a customer expectation or preference. As with all third-party relationships, proper control must be maintained to ensure profitability (B) is not a reason why the casino should maintain control of the output from the provider, but rather a general business principle or objective. Other casinos are frequently looking to reduce costs and share ideas, so if this relationship is successful, the model can be used by other businesses (D) is not a reason why the casino should maintain control of the output from the provider, but rather a potential benefit or outcome.

Answer : B, C

The identification details of the beneficial owner and authorized signatory are key for law enforcement's physical surveillance of cash activity, as they would help identify the person who controls and operates the company and who is responsible for its financial transactions. The company's operating address is also key, as it would help locate the premises where the cash activity takes place and observe any suspicious movements or behaviors. The identification details of the nominee shareholder and directors are not relevant, as they are not involved in the management or operation of the company. The company's registered address is also not relevant, as it is likely to be a shell or mailbox address that does not reflect the actual location of the business.

Answer : D

The initial focus of the investigation should be to review the customer due diligence documents of each entity and examine the year of incorporation and onboarding channel, as this would help identify the beneficial owners, the source of funds, and the purpose of the business relationship. This would also help determine if the entities are shell companies or have any red flags that indicate potential misuse of legal persons. Using data analytics to extract and analyze the linkages between the different entities would be a subsequent step, not the initial one. Conducting a network link analysis on all customers of the bank would be too broad and time-consuming. Finding out whether customer A has relationships with other financial institutions would be relevant, but not the initial focus. Reference: [Advanced CAMS-FCI Study Guide], page 44-45; [FATF Guidance on Transparency and Beneficial Ownership], page 12-13.

Answer : A, B

The correct answer is A and B because human smuggling/trafficking and terrorist financing are both predicate offenses for money laundering that could be related to the client's activities. Option C is incorrect because there is no indication of narcotics trafficking in the scenario. Option D is incorrect because there is no indication of antiques smuggling in the scenario. Option E is incorrect because there is no indication of tax evasion in the scenario.

Answer : C

The best step for the investigator to take next is to request information about the beneficiaries related to the company. This will help to identify the ultimate beneficial owners of the funds and the purpose of the transactions. Requesting information from the company or filing a SAR/STR to the FIU where the company is located may not be feasible or effective, as the company may not cooperate or the FIU may not have jurisdiction over the offshore entity. Conducting an open-source search may provide some information about the ownership and registration of the company, but it may not be sufficient or reliable to determine the nature and legitimacy of the transactions.

SAR Narrative Guidance Package

Best Practices for Drafting an STR or SAR

Answer : C

The bank is out of compliance with CIP regulations because it did not obtain the minimum identifying information from the customer prior to opening the account, as required by 31 CFR 1020.220(a)(2)(i)(A). The bank should have obtained the name, date of birth, address, and identification number of the customer, as well as verified the identity of the customer to the extent reasonable and practicable. The lack of ownership data may also indicate a violation of beneficial ownership regulations, but that is not the primary issue in this case.

Answer : D

The condition that should be met to satisfy the regulator is that the program is drafted using a risk-based approach to avoid the FI being used as a conduit for criminal activities. A risk-based approach means that the FI identifies, assesses, and understands its exposure to financial crime risks and applies appropriate measures to mitigate them. This is consistent with the international standards and best practices for anti-financial crime compliance. The program being aligned with the financial industry's anti-financial crime priorities, meeting the minimum requirements of anti-financial crime standards published by a financial industry association, or having no high-severity issues in internal auditing results are not sufficient to satisfy the regulator, as they do not necessarily reflect the specific risks faced by the FI or demonstrate its effectiveness in preventing and detecting financial crimes.

Answer : B

According to the Financial Action Task Force (FATF), the use of large amounts of cash is a common method for money launderers to move illicit funds [1]. Purchasing luxury items with cash can indicate an attempt to convert illegal funds into tangible assets that can be easily resold or moved across borders. As a result, businesses that deal with luxury items are required to implement enhanced due diligence measures, including monitoring transactions involving large amounts of cash [1].

Answer : C

The correct answer is C because the FI is unable to obtain evidence of required licensing or registration despite suspicion of money transmitting, which is a red flag for money laundering and a violation of federal and state laws. Option A is incorrect because making several deposits in one month that appear to exceed their expected monthly income might not be indicative of suspicious activity, depending on the customer's profile and source of funds. Option B is incorrect because receiving a large, one-time wire from a law firm might not be indicative of suspicious activity, depending on the customer's relationship with the law firm and the purpose of the wire. Option D is incorrect because discovering a large number of securities transactions that appear to be related to day trading might not be indicative of suspicious activity, depending on the customer's investment strategy and risk tolerance.

Answer : D, E

The actions that the investigator should recommend to mitigate risk are conducting enhanced due diligence (D) and re-evaluating the customer risk profile (E). These actions are appropriate and prudent, as they allow the investigator to obtain more information and evidence about the nature and purpose of the transactions, the source and destination of the funds, and the identity and legitimacy of the parties involved. According to the ACAMS Advanced Financial Crimes Investigations Certification Study Guide1, ''the FI should conduct enhanced due diligence on all parties involved in the investigation, including checking various sources of information, such as watch lists, sanctions lists, negative news, and official registries'' (p. 24). The FI should also ''re-assess the customer risk profile based on any new information obtained during the investigation, and adjust the customer due diligence and monitoring requirements accordingly'' (p. 25).

The other options are not as appropriate or effective as options D and E. The investigator should not recommend exiting the relationship with the customer (A), as this could be premature or disproportionate, as well as potentially discriminatory or illegal. The investigator should not recommend documenting and maintaining a file with the investigative findings (B), as this is not an action to mitigate risk, but rather a standard procedure for any investigation. The investigator should not recommend discussing the investigation findings with the customer , as this could compromise the integrity and objectivity of the investigation, as well as expose the FI to legal or regulatory risks.

Answer : A, D

The correct answer is A and C because these indicators suggest that the customer is using fraudulent documents and misrepresenting the goods to conceal the illicit nature of the transactions. Fentanyl traffickers often use front companies and falsified invoices to disguise their shipments as legitimate products, such as medical supplies or chemicals. Reviewing the invoices and transportation documents, as well as the FDA product certifications, can help to identify discrepancies or anomalies that indicate fraud or deception.

Answer : A, C, F

The observations at the on-site visits that would justify writing a SAR/STR are signs of severe wear and poor maintenance at the site (A), lights turned off at the site during operational hours , and a full parking lot of cars with no staff at the site (F). These observations suggest that the daycare businesses are not operating legitimately or providing adequate services to their customers, and that they may be misusing governmental grants or laundering money through their accounts. These observations are consistent with some of the red flags for fraud identified by ACAMS2, such as:

Inadequate facilities or equipment for the type of business

Lack of visible activity or customers at the business location

Discrepancy between reported income and expenses

Unusual volume or frequency of transactions

The other observations are not as relevant or indicative of fraud as options A, C, and F. A site located in a commercial building (B) could be a normal or legitimate choice for a daycare business, depending on its size, location, and availability. Visible attendance with children being dropped off by parents (D) could show that the daycare business is providing genuine services to its customers, although it does not rule out possible fraud or money laundering. Visible signage indicating the purpose of building (E) could also show that the daycare business is transparent and legitimate, although it does not guarantee its quality or compliance.

Answer : D

The initial focus of the investigation should be to review the customer due diligence documents of each entity and examine the year of incorporation and onboarding channel, as this would help identify the beneficial owners, the source of funds, and the purpose of the business relationship. This would also help determine if the entities are shell companies or have any red flags that indicate potential misuse of legal persons. Using data analytics to extract and analyze the linkages between the different entities would be a subsequent step, not the initial one. Conducting a network link analysis on all customers of the bank would be too broad and time-consuming. Finding out whether customer A has relationships with other financial institutions would be relevant, but not the initial focus. Reference: [Advanced CAMS-FCI Study Guide], page 44-45; [FATF Guidance on Transparency and Beneficial Ownership], page 12-13.

Answer : D

The additional information that would trigger filing a SAR/STR is the fact that the funds for the seed capital were in the form of 50 cashier's checks of 10,000 GBP each and 50 money orders of 10,000 GBP. This is because this indicates a possible attempt to avoid the reporting threshold of 10,000 GBP for cash transactions, which is a common money laundering technique known as structuring or smurfing12. The other options are not necessarily suspicious, as they do not involve cash transactions or indicate any illicit source of funds. The fact that the client's spouse was a PEP does not automatically make the transaction suspicious unless there are other red flags or risk factors associated with the PEP34

Answer : B

An investigator should avoid escalating a suspicious event to the chief compliance officer if there is a potential conflict of interest, such as when a close family member of the officer is involved in the transaction. In such a case, the investigator should pursue other channels, such as reporting to a higher authority or an independent committee. The other options do not present a conflict of interest and should be escalated to the chief compliance officer as part of the normal procedure.

Answer : B

Deposit trading is a pattern of suspicious activity where a client deposits large amounts of money into an account, and then transfers the funds to other accounts, often in different jurisdictions or countries. This could be an attempt to disguise the source or destination of the funds, or to avoid reporting requirements. Deposit trading is also known as layering, which is the second stage of money laundering.

Answer : A, D, D

The investigator should recommend a SAR/STR be filed regarding the second client's use of a questionable trust to open an account, as this could indicate an attempt to conceal the source and ownership of funds, and to evade taxes and sanctions. The investigator should also monitor all accounts and entities related to the second client, as they may be involved in illegal activities or pose a high risk to the FI. The investigator should not review all accounts that have opened trust accounts, as this would be too broad and inefficient. The investigator should not inform FI management of deficiencies in their AML program, as this is not their role or responsibility. The investigator should not inform FI management of the start of a serious risk-based investigation, as this may compromise the confidentiality and integrity of the investigation.

Answer : C

The statement that most accurately characterizes the methods used by transnational criminal organizations is that they routinely engage in many different types of criminal activities as long as they think it will benefit them . This is because transnational criminal organizations are flexible and adaptable, and they exploit opportunities and vulnerabilities in different markets and jurisdictions. According to ACAMS2, ''Transnational criminal organizations are involved in a wide range of illicit activities, such as drug trafficking, human trafficking, arms trafficking, money laundering, cybercrime, environmental crime, fraud, corruption, and terrorism'' (p. 3). They also ''operate across borders and regions, using complex networks and structures to evade detection and prosecution'' (p. 3).

The other statements are not as accurate or comprehensive as option C. Transnational criminal organizations are unlikely to associate with known terrorist organizations due to the reputational risks (A) is false, as transnational criminal organizations may collaborate or cooperate with terrorist organizations for mutual benefit or convenience, such as sharing resources, routes, or contacts. Transnational criminal organizations are likely to specialize in one particular method and continue to refine that method to escape detection (B) is false, as transnational criminal organizations may diversify or change their methods depending on the circumstances or opportunities, such as shifting products, markets, or modus operandi. Transnational criminal organizations see each other as competitors and rarely cooperate (D) is false, as transnational criminal organizations may form alliances or partnerships with other criminal groups for strategic or tactical reasons, such as sharing information, expertise, or influence.

Answer : B

The fact that should not be included in the SAR/STR narrative is the request by law enforcement (D). This is because the request by law enforcement is confidential and should not be disclosed to the customer or anyone else who is not authorized to know it. According to the ACAMS Advanced Financial Crimes Investigations Certification Study Guide1, ''the FI should not include any reference to the LE request in the SAR/STR narrative, as this could compromise the LE investigation or alert the customer of the suspicion'' (p. 35). The FI should also not inform the customer of the LE request or delay filing the SAR/STR because of it.

The other facts should be included in the SAR/STR narrative, as they are relevant and indicative of human trafficking money laundering. The air travel and hotel expenses (A) show that the customer is involved in moving people across different locations, which could be a sign of human smuggling or trafficking. The time of the cash deposits (B) shows that the customer is receiving cash payments during unusual hours, which could be a sign of illicit activities or services. The sporting event shows that the customer is exploiting a high-demand situation for their business, which could be a sign of opportunistic or organized crime.

Answer : D

If the investigator uncovers evidence that foreign nationals are involved in this activity, they should also note the possible presence of human smuggling (D). This is because human smuggling is the illegal movement of people across borders, often facilitated by criminal networks that exploit vulnerable migrants. According to the FATF and Egmont Group report on Financial Flows from Human Trafficking2, ''human smuggling can be closely linked to human trafficking, as smuggled migrants may become victims of trafficking along their journey or at their destination'' (p. 9). The report also states that some indicators of human smuggling are similar to those of human trafficking, such as:

Frequent cash deposits or withdrawals in different locations

Use of false or fraudulent identification documents

Expenses related to travel and accommodation

Involvement in online platforms that advertise sexual services

The other options are not as relevant or specific as option D. Tax fraud (A) is the evasion of taxes by individuals or businesses, which may or may not be related to human trafficking or smuggling. Black market peso exchange (B) is a money laundering scheme that involves exchanging illicit proceeds in one currency for another currency at a discounted rate, which is more commonly associated with drug trafficking or trade-based laundering. Trade-based laundering is the manipulation of trade transactions to disguise the origin and ownership of illicit funds, which is also more likely to be linked to drug trafficking or other types of fraud.

Answer : C, E

The correct answer is C and E. The investigator should provide additional information to the LE upon receiving a formal request, and gather all the information that would be useful for LE and recommend filing a SAR/STR. These steps are consistent with the best practices of conducting financial crime investigations and reporting suspicious activity. The investigator should not close the customer's accounts or the investigation, as this may interfere with the ongoing LE inquiry and violate the FI's policies and procedures. The investigator should also not contact local LE directly, as this may compromise the confidentiality of the investigation and the FIU's authority. Reference:

Advanced CAMS-FCI Study Guide, Chapter 4: Reporting Suspicious Activity, pages 40-411

Advanced CAMS-FCI Study Guide, Chapter 5: Governance of an AFC Investigations Unit, pages 48-491

Advanced CAMS-FCI Certification | ACAMS

Answer : B, D

The FIU should cross-reference the databases of international commerce/logistics transactions between the country and WMD proliferation sanctioned states with the corresponding international financial operations of those transactions, as this would help identify any discrepancies or anomalies that could indicate sanctions evasion. The FIU should also evaluate a sample of the amount of false-positive and false-negative alerts that FIs have regarding proliferation sanctions evasion to determine root causes of non-detection, such as inadequate screening systems, lack of training, or human error. These actions would help the FIU assess the proliferation financing risk and provide feedback and guidance to FIs on how to improve their detection and prevention capabilities.

Answer : C

The SAR/STR should include any information that is relevant to the suspicious activity, such as the customer information, the transaction details, and any other indicators of potential money laundering or criminal activity. The fact that one of the transactors occasionally smelled of marijuana smoke is an indicator that the customer may be involved in the illicit drug trade, which is a predicate offense for money laundering. Therefore, this information should be included in the SAR/STR. Reference: Advanced CAMS-FCI Study Guide, page 25.

Answer : A

The correct answer is A because a SAR/STR narrative should be concise, clear, and complete, addressing the who, what, when, where, why, and how of the suspicious activity. Option B is incorrect because providing too much information can make the narrative confusing and irrelevant. Option C is incorrect because the introduction should provide a summary of the suspicious activity, not the conclusion. Option D is incorrect because suspect names should be mentioned in the narrative to identify the parties involved in the suspicious activity.

Answer : A, B, D

Financial institutions should perform the following actions to ensure proper data governance:

Establish an appropriate data management method for collecting and storing information. This is important to ensure that the data is consistent, reliable, and accessible for various purposes, such as risk assessment, compliance reporting, and customer service. Data management methods may include defining data standards, policies, and procedures; implementing data quality controls and validation checks; and using appropriate data storage systems and formats.

Ensure the accuracy of customer identification records and transaction records and appropriately manage data as a prerequisite for the effective use of IT systems. This is important to comply with the anti-money laundering and counter-terrorist financing (AML/CFT) requirements, such as customer due diligence, transaction monitoring, and suspicious activity reporting. Accurate and complete customer and transaction data also enables financial institutions to use IT systems more effectively for data analysis, risk management, and decision making.

Periodically validate integrity and accuracy of information used for IT systems such as customer information, customer identification records, and transaction records. This is important to ensure that the data remains up-to-date, relevant, and reliable over time. Data validation may include verifying the source and quality of the data; identifying and correcting any errors or inconsistencies; and updating or deleting any obsolete or redundant data.

Data Governance for Financial Institutions - Capgemini

Small and Medium-Sized Deposit-Taking Institutions (SMSBs) Capital and Liquidity Requirements - OSFI

Answer : C

The best next step in the investigation is to check the jurisdiction's list of known charities with connections to terrorist activity . This is because the FI has a responsibility to verify the legitimacy and reputation of the beneficiary of the funds, especially if it is a charity or non-profit organization that operates in a high-risk jurisdiction or sector. According to the ACAMS Advanced Financial Crimes Investigations Certification Study Guide1, ''the FI should conduct enhanced due diligence on all parties involved in the investigation, including checking various sources of information, such as watch lists, sanctions lists, negative news, and official registries'' (p. 24). The FI should also check if the beneficiary is consistent with the customer's profile and expected activity.

The other options are not as appropriate or effective as option C. Contacting the financial institution in Turkey that has a relationship with Forever Free and advising them of the investigation (A) could violate confidentiality or data protection laws, as well as compromise the investigation or alert the customer or beneficiary of the suspicion. Updating the customer profile to include Forever Free as the recipient of the funds (B) could be premature or inaccurate, as it does not verify the nature and purpose of the transfer or the identity and legitimacy of the beneficiary. Filing a SAR/STR with the new information learned about the beneficiary (D) could also be premature or incomplete, as it does not confirm if there is any suspicious or criminal activity involved in the transfer or if there are any other red flags or indicators.

Answer : A, C

Answer : A, C

Money laundering through online marketplaces and trade-based money laundering both involve the manipulation of the value or quantity of goods to disguise the illicit origin of funds. Over-valuation of the stated price of goods and no evidence of delivery of goods or shipping expenses are two common indicators of such schemes. The other options are not specific to these methods of money laundering.

Answer : B

An investigator should avoid escalating a suspicious event to the chief compliance officer if there is a potential conflict of interest, such as when a close family member of the officer is involved in the transaction. In such a case, the investigator should pursue other channels, such as reporting to a higher authority or an independent committee. The other options do not present a conflict of interest and should be escalated to the chief compliance officer as part of the normal procedure.

Answer : B

A product of analysis is a conclusion or inference that is derived from facts or judgments, using analytical techniques or tools. Option B is a product of analysis because it implies that the investigator has used a tool or technique, such as a threshold analysis, to identify a pattern of structured cash deposits that may indicate an attempt to evade reporting requirements. The other options are facts or judgments that can be verified by evidence or observation.

Answer : C

The reason why it is important for the casino to maintain control of the output from the provider is that the casino maintains ultimate responsibility for this activity and should maintain control to avoid non-compliance . This is because the casino is accountable for its own AML/CFT obligations and cannot delegate or outsource them to a third-party provider. According to the ACAMS Advanced Financial Crimes Investigations Certification Study Guide1, ''the FI should ensure that it has adequate oversight and control over any third-party providers that it engages for AML/CFT purposes, such as conducting due diligence, verifying information, or monitoring transactions'' (p. 25). The FI should also ''review and evaluate the performance and quality of the third-party providers on a regular basis, and address any issues or gaps that may arise'' (p. 25).

The other options are not as relevant or accurate as option C. The clients of the casino prefer to know that the casino is keeping their information secure when being held by a third-party (A) is not a reason why the casino should maintain control of the output from the provider, but rather a customer expectation or preference. As with all third-party relationships, proper control must be maintained to ensure profitability (B) is not a reason why the casino should maintain control of the output from the provider, but rather a general business principle or objective. Other casinos are frequently looking to reduce costs and share ideas, so if this relationship is successful, the model can be used by other businesses (D) is not a reason why the casino should maintain control of the output from the provider, but rather a potential benefit or outcome.

Answer : B

Chain hopping is a technique used by criminals to obscure the traceability of cryptocurrency transactions by converting the funds to a different type of cryptocurrency, often using multiple exchanges or platforms. The other options are not related to chain hopping. Reference: Advanced CAMS-FCI Study Guide, page 38.

Answer : D, E

A SAR/STR narrative that is useful to law enforcement should include a detailed description of the known or suspected criminal violation or suspicious activity, as well as ensure that all information in the SAR/STR is complete and accurate based on what the institution knows. These elements help law enforcement to understand the nature and scope of the suspicious activity, and to follow up with further investigation if needed. The other options are not essential for a useful SAR/STR narrative, as they either provide irrelevant or redundant information, or could compromise the confidentiality of the report.

Answer : B

Deposit trading is a pattern of suspicious activity where a client deposits large amounts of money into an account, and then transfers the funds to other accounts, often in different jurisdictions or countries. This could be an attempt to disguise the source or destination of the funds, or to avoid reporting requirements. Deposit trading is also known as layering, which is the second stage of money laundering.

Answer : D

If the investigator uncovers evidence that foreign nationals are involved in this activity, they should also note the possible presence of human smuggling (D). This is because human smuggling is the illegal movement of people across borders, often facilitated by criminal networks that exploit vulnerable migrants. According to the FATF and Egmont Group report on Financial Flows from Human Trafficking2, ''human smuggling can be closely linked to human trafficking, as smuggled migrants may become victims of trafficking along their journey or at their destination'' (p. 9). The report also states that some indicators of human smuggling are similar to those of human trafficking, such as:

Frequent cash deposits or withdrawals in different locations

Use of false or fraudulent identification documents

Expenses related to travel and accommodation

Involvement in online platforms that advertise sexual services

The other options are not as relevant or specific as option D. Tax fraud (A) is the evasion of taxes by individuals or businesses, which may or may not be related to human trafficking or smuggling. Black market peso exchange (B) is a money laundering scheme that involves exchanging illicit proceeds in one currency for another currency at a discounted rate, which is more commonly associated with drug trafficking or trade-based laundering. Trade-based laundering is the manipulation of trade transactions to disguise the origin and ownership of illicit funds, which is also more likely to be linked to drug trafficking or other types of fraud.

Answer : A

The correct answer is A because the expected account activities were 1 to 5 transactions per year and around 1 million per transaction amount, but the actual activity showed much more frequent and varied transactions in different currencies and amounts. This indicates a deviation from the customer's profile and risk level.

Answer : A

'The FATF measures the effectiveness of a country's efforts to combat money laundering and terrorist financing through a mutual evaluation process. During a mutual evaluation, the FATF assesses a country's legal and institutional framework, its implementation of measures to combat money laundering and terrorist financing, and the effectiveness of its efforts. The FATF then issues a report with recommendations for improvement' [CAMS Study Guide 6th edition, page 15-16].

Answer : D

A more robust supervisory approach is needed by regulators when overseeing small- and medium-sized MSBs compared to larger MSBs for combatting TF because small- and medium-sized MSBs are more at risk of allowing transactions linked to TF due to the lack of skilled compliance resources. Small- and medium-sized MSBs may face challenges in implementing effective AML/CFT controls, such as conducting risk assessments, applying customer due diligence measures, monitoring transactions, detecting suspicious activities, and reporting to the authorities. They may also have limited access to training, guidance, and tools to enhance their compliance capabilities. Therefore, regulators need to provide more supervision and support to small- and medium-sized MSBs to ensure that they comply with the AML/CFT requirements and mitigate the TF risks.

Sustainable Growth for Small and Medium-Sized Enterprises ... - MDPI

Lessons on Resilience for Small and Midsize Businesses - HBR

Answer : A, D

The correct answer is A and C because these indicators suggest that the customer is using fraudulent documents and misrepresenting the goods to conceal the illicit nature of the transactions. Fentanyl traffickers often use front companies and falsified invoices to disguise their shipments as legitimate products, such as medical supplies or chemicals. Reviewing the invoices and transportation documents, as well as the FDA product certifications, can help to identify discrepancies or anomalies that indicate fraud or deception.

Answer : D, E, F

According to the FinCEN's 314(a) Fact Sheet1, the steps that the investigator should take when fulfilling the request are:

Search its records expeditiously to determine whether it maintains(ed) any accounts for the subject(s) listed in the request. This is option F.

Report back to the Financial Crimes Enforcement Network (FinCEN) within 15 days of receipt of the request via a secure internet website. This is option E.

Report to Financial Crimes Enforcement Network (FinCEN) that a match was found without revealing any other details. This is option D.

The other options are incorrect because:

Exiting the relationship with the business since it appears that customer is under investigation is not required by the 314(a) program and may interfere with law enforcement's investigation. This is option A.

Not responding to Financial Crimes Enforcement Network (FinCEN) if the requested information is not present in the financial institution's system of records is contrary to the 314(a) program, which requires financial institutions to respond whether or not they have a match. This is option B.

Reviewing the account(s) activity and proactively filing a SAR/STR using the 314(a) request as the basis for the filing is not appropriate, as the 314(a) request itself is not a sufficient reason to file a SAR/STR. The financial institution should only file a SAR/STR if it has its own independent suspicion of money laundering or terrorist financing. This is option C.

Answer : D

The correct answer is D because it is a suspicious activity that Y, who is the authorized signatory of the customer, also signed on behalf of the lenders. This indicates a possible conflict of interest, collusion, or fraud. The other options are not suspicious activities based on the information given.

Answer : A

When writing or reviewing a SAR/STR, it is important to ensure that the narrative is kept to the point; easy to read; and addresses the who, what, when, where, why, and how. This is because the narrative is the most crucial part of the SAR/STR, as it provides a clear and concise summary of the suspicious activity or transaction that triggered the report. The narrative should include all the relevant information that would help law enforcement or regulators to understand the nature and context of the activity or transaction, such as123:

The who: The names, addresses, account numbers, and other identifying information of the parties involved in the activity or transaction, such as customers, beneficiaries, intermediaries, or third parties.

The what: The type, amount, frequency, and purpose of the activity or transaction, such as cash deposits, wire transfers, check payments, or purchases of goods or services.

The when: The date, time, and duration of the activity or transaction, and whether it was a one-time occurrence or part of a pattern or trend.

The where: The location or channel of the activity or transaction, such as branches, ATMs, online platforms, or mobile applications.

The why: The reason or rationale for the activity or transaction, and why it was considered suspicious or unusual based on the customer's profile, behavior, or expected activity.

The how: The method or mechanism of the activity or transaction, such as cash, check, debit card, credit card, cryptocurrency, or prepaid card.

How to write the perfect ''Suspicious Activity Reports'' (SAR)? | i-AML

Writing for Prosecution: Best Practices For Composing SAR Narratives That Assist Prosecutors | ACAMS

SAR Writing Examples and Proper Formatting: Write for Your Reader - Alessa

Answer : A, C

Money laundering through online marketplaces and trade-based money laundering both involve the manipulation of the value or quantity of goods to disguise the illicit origin of funds. Over-valuation of the stated price of goods and no evidence of delivery of goods or shipping expenses are two common indicators of such schemes. The other options are not specific to these methods of money laundering.

Answer : D

The additional information that would trigger filing a SAR/STR is the fact that the funds for the seed capital were in the form of 50 cashier's checks of 10,000 GBP each and 50 money orders of 10,000 GBP. This is because this indicates a possible attempt to avoid the reporting threshold of 10,000 GBP for cash transactions, which is a common money laundering technique known as structuring or smurfing12. The other options are not necessarily suspicious, as they do not involve cash transactions or indicate any illicit source of funds. The fact that the client's spouse was a PEP does not automatically make the transaction suspicious unless there are other red flags or risk factors associated with the PEP34

Answer : A, C, E

The best next steps for the investigator to take are:

A . Review the customer's transaction history. This can help the investigator identify any patterns or anomalies in the customer's account activity, such as changes in transaction volume, frequency, amount, source, destination, purpose, etc. The investigator can also compare the customer's transaction history with their KYC profile and risk rating to assess if there are any discrepancies or inconsistencies.

C . Check internal KYC information. This can help the investigator verify the customer's identity, business nature, ownership structure, expected activity, source of funds, etc. The investigator can also update or enhance the customer's KYC information based on any new or relevant information obtained from other sources.

E Conduct adverse media and open-source searches on the customer's background. This can help the investigator find out if there is any negative or adverse information about the customer in public data sources, such as news articles, social media posts, blogs, forums, etc. Adverse media and open-source searches can also provide additional context and insight into the customer's reputation, behavior, associations, etc. The other options are incorrect because:

B . Request information from the internet service provider who hosts the website is not feasible, as it may require a legal process or a court order to obtain such information. Moreover, the internet service provider may not have or disclose any useful information about the website or its owner.

D . Research other customer accounts for transactions to the same website is not relevant, as it may not provide any meaningful information about the customer under investigation. Furthermore, it may violate the privacy and confidentiality of other customers who are not related to the investigation.

F . Identify if the customer has opened accounts in an urban city area is not helpful, as it may not have any bearing on the customer's involvement in a drug or drug paraphernalia purchase. Additionally, it may not be possible to access or verify such information without the customer's consent or authorization.

Advanced CAMS-FCI Certification | ACAMS, Section 2: Investigating Financial Crimes, page 11

Leading Complex Investigations Certificate | ACAMS, Module 3: Conducting Research and Analysis, page 6

Adverse Media Screening - Using AI to Mitigate Risk

Legal requirements for adverse media screening - Thomson Reuters

Electronic client due diligence | Ethics helpsheets | ICAEW

6AMLD & FATF: Where Adverse Media Screening Fits In

Free Adverse Media Check | NameScan

Answer : C

The statement that most accurately characterizes the methods used by transnational criminal organizations is that they routinely engage in many different types of criminal activities as long as they think it will benefit them . This is because transnational criminal organizations are flexible and adaptable, and they exploit opportunities and vulnerabilities in different markets and jurisdictions. According to ACAMS2, ''Transnational criminal organizations are involved in a wide range of illicit activities, such as drug trafficking, human trafficking, arms trafficking, money laundering, cybercrime, environmental crime, fraud, corruption, and terrorism'' (p. 3). They also ''operate across borders and regions, using complex networks and structures to evade detection and prosecution'' (p. 3).

The other statements are not as accurate or comprehensive as option C. Transnational criminal organizations are unlikely to associate with known terrorist organizations due to the reputational risks (A) is false, as transnational criminal organizations may collaborate or cooperate with terrorist organizations for mutual benefit or convenience, such as sharing resources, routes, or contacts. Transnational criminal organizations are likely to specialize in one particular method and continue to refine that method to escape detection (B) is false, as transnational criminal organizations may diversify or change their methods depending on the circumstances or opportunities, such as shifting products, markets, or modus operandi. Transnational criminal organizations see each other as competitors and rarely cooperate (D) is false, as transnational criminal organizations may form alliances or partnerships with other criminal groups for strategic or tactical reasons, such as sharing information, expertise, or influence.

Answer : B, D

The sources of funds that Bank A should conduct additional scrutiny on are the third-party transfer and the transfer from Bank B. This is because these sources may pose higher risks of money laundering, terrorist financing, fraud, or other illicit activities. Some of the reasons why these sources require more scrutiny are23:

Third-party transfers may involve unknown or unrelated parties that may have ulterior motives or hidden agendas. They may also be used to obscure the origin or destination of funds, or to circumvent sanctions or other regulatory restrictions.

Transfers from Bank B may involve jurisdictions that have weak anti-money laundering and counter-terrorist financing (AML/CFT) regimes, high levels of corruption, or significant criminal activity. They may also involve banks that have poor reputation, compliance, or transparency standards.

Third Party Payments - Wolfsberg Group

Guidance on Correspondent Banking Services - FATF

Answer : B

An investigator should avoid escalating a suspicious event to the chief compliance officer if there is a potential conflict of interest, such as when a close family member of the officer is involved in the transaction. In such a case, the investigator should pursue other channels, such as reporting to a higher authority or an independent committee. The other options do not present a conflict of interest and should be escalated to the chief compliance officer as part of the normal procedure.

Answer : B

A product of analysis is a conclusion or inference that is derived from facts or judgments, using analytical techniques or tools. Option B is a product of analysis because it implies that the investigator has used a tool or technique, such as a threshold analysis, to identify a pattern of structured cash deposits that may indicate an attempt to evade reporting requirements. The other options are facts or judgments that can be verified by evidence or observation.

Answer : A, B, D

Financial institutions should perform the following actions to ensure proper data governance:

Establish an appropriate data management method for collecting and storing information. This is important to ensure that the data is consistent, reliable, and accessible for various purposes, such as risk assessment, compliance reporting, and customer service. Data management methods may include defining data standards, policies, and procedures; implementing data quality controls and validation checks; and using appropriate data storage systems and formats.

Ensure the accuracy of customer identification records and transaction records and appropriately manage data as a prerequisite for the effective use of IT systems. This is important to comply with the anti-money laundering and counter-terrorist financing (AML/CFT) requirements, such as customer due diligence, transaction monitoring, and suspicious activity reporting. Accurate and complete customer and transaction data also enables financial institutions to use IT systems more effectively for data analysis, risk management, and decision making.

Periodically validate integrity and accuracy of information used for IT systems such as customer information, customer identification records, and transaction records. This is important to ensure that the data remains up-to-date, relevant, and reliable over time. Data validation may include verifying the source and quality of the data; identifying and correcting any errors or inconsistencies; and updating or deleting any obsolete or redundant data.

Data Governance for Financial Institutions - Capgemini

Small and Medium-Sized Deposit-Taking Institutions (SMSBs) Capital and Liquidity Requirements - OSFI

Answer : A

'The FATF measures the effectiveness of a country's efforts to combat money laundering and terrorist financing through a mutual evaluation process. During a mutual evaluation, the FATF assesses a country's legal and institutional framework, its implementation of measures to combat money laundering and terrorist financing, and the effectiveness of its efforts. The FATF then issues a report with recommendations for improvement' [CAMS Study Guide 6th edition, page 15-16].

Answer : A

The best reason for an investigator to continue an investigation is that the end-user is a military force. This is because supplying aviation parts to a military force may involve sanctions risk, export control risk, or human rights risk, depending on the nature and destination of the military force. The investigator should conduct further due diligence to determine if the customer is complying with the relevant laws and regulations, and if the bank is exposed to any reputational or legal risk by providing services to the customer.

Former Airline Employee and Aircraft Part Sellers Charged in Kickback ...

Former Airline Employee and Aircraft Part Sellers Charged in Kickback ...

Former airline employee and aircraft part sellers charged in kickback ...

Answer : A, D, D

The investigator should recommend a SAR/STR be filed regarding the second client's use of a questionable trust to open an account, as this could indicate an attempt to conceal the source and ownership of funds, and to evade taxes and sanctions. The investigator should also monitor all accounts and entities related to the second client, as they may be involved in illegal activities or pose a high risk to the FI. The investigator should not review all accounts that have opened trust accounts, as this would be too broad and inefficient. The investigator should not inform FI management of deficiencies in their AML program, as this is not their role or responsibility. The investigator should not inform FI management of the start of a serious risk-based investigation, as this may compromise the confidentiality and integrity of the investigation.

Answer : A

The analyst should clarify discrepancies noted in the customer's declared profile given the downstream impact on the risk assessment. This is because discrepancies between the customer's nature of business and the information on the business registry may indicate that the customer is not operating a legitimate business or is trying to conceal its true activities. The analyst should verify the customer's identity, source of funds, and purpose of transactions to ensure that the customer's risk profile is accurate and consistent with the Fl's risk appetite.

Answer : A

One of the actions that is part of the enhanced due diligence process is collecting beneficial ownership details regarding the client's account. This is important to identify the natural persons who ultimately own or control the client, and to assess the potential risks associated with them. According to the Financial Action Task Force (FATF), beneficial ownership information should include1:

The name, nationality, and country of residence of each beneficial owner.

The date of birth or incorporation of each beneficial owner.

The nature and extent of the beneficial interest held by each beneficial owner.

The means by which the beneficial ownership or control is exercised.

FATF Guidance on Transparency and Beneficial Ownership

Answer : C, E

The correct answer is C and E. The investigator should provide additional information to the LE upon receiving a formal request, and gather all the information that would be useful for LE and recommend filing a SAR/STR. These steps are consistent with the best practices of conducting financial crime investigations and reporting suspicious activity. The investigator should not close the customer's accounts or the investigation, as this may interfere with the ongoing LE inquiry and violate the FI's policies and procedures. The investigator should also not contact local LE directly, as this may compromise the confidentiality of the investigation and the FIU's authority. Reference:

Advanced CAMS-FCI Study Guide, Chapter 4: Reporting Suspicious Activity, pages 40-411

Advanced CAMS-FCI Study Guide, Chapter 5: Governance of an AFC Investigations Unit, pages 48-491

Advanced CAMS-FCI Certification | ACAMS

Answer : D

A more robust supervisory approach is needed by regulators when overseeing small- and medium-sized MSBs compared to larger MSBs for combatting TF because small- and medium-sized MSBs are more at risk of allowing transactions linked to TF due to the lack of skilled compliance resources. Small- and medium-sized MSBs may face challenges in implementing effective AML/CFT controls, such as conducting risk assessments, applying customer due diligence measures, monitoring transactions, detecting suspicious activities, and reporting to the authorities. They may also have limited access to training, guidance, and tools to enhance their compliance capabilities. Therefore, regulators need to provide more supervision and support to small- and medium-sized MSBs to ensure that they comply with the AML/CFT requirements and mitigate the TF risks.

Sustainable Growth for Small and Medium-Sized Enterprises ... - MDPI

Lessons on Resilience for Small and Midsize Businesses - HBR

Answer : A, B

The red flags that would be an indicator that activity is connected to a corruption/bribery typology are large checks issued to various individuals with the memos noting ''gift'', ''thank you'', ''favor'' (A) and negative news found on the customer related to government-issued violations for safety (B). These red flags suggest that the customer is involved in paying or receiving bribes or kickbacks to or from government officials or other parties in exchange for favorable treatment or contracts. These red flags are consistent with some of the indicators of corruption/bribery identified by ACAMS1, such as:

Payments made to or from third parties that are not directly related to the business

Payments made to or from high-risk jurisdictions or sectors

Payments made with vague or incomplete descriptions or justifications

Negative news or reputation of the customer or its associates

The other options are not as relevant or indicative of corruption/bribery as options A and B. Checks issued to an unrelated entity referencing ''rent'' and ''utilities'' in the memos could be a legitimate business expense or a sign of other types of fraud or money laundering, such as tax evasion or shell company schemes. Multiple daycare locations with no active business operations or related account activity (D) could also be a sign of other types of fraud or money laundering, such as embezzlement or front company schemes. The same beneficial owner owning several daycare centers in different locations (E) could be a normal or legitimate business practice, depending on the size, location, and profitability of the centers.

Answer : B

According to the Financial Action Task Force (FATF), the use of large amounts of cash is a common method for money launderers to move illicit funds [1]. Purchasing luxury items with cash can indicate an attempt to convert illegal funds into tangible assets that can be easily resold or moved across borders. As a result, businesses that deal with luxury items are required to implement enhanced due diligence measures, including monitoring transactions involving large amounts of cash [1].

Answer : D

The purchase of airplane tickets after receiving multiple small deposits from a crowdfunding platform might suggest that the funds are being used to facilitate travel for terrorist purposes. The other options are not necessarily indicative of terrorist financing, as they could be explained by legitimate reasons or other types of financial crimes.

Answer : D, E

A SAR/STR narrative that is useful to law enforcement should include a detailed description of the known or suspected criminal violation or suspicious activity, as well as ensure that all information in the SAR/STR is complete and accurate based on what the institution knows. These elements help law enforcement to understand the nature and scope of the suspicious activity, and to follow up with further investigation if needed. The other options are not essential for a useful SAR/STR narrative, as they either provide irrelevant or redundant information, or could compromise the confidentiality of the report.

Answer : A, C

Money laundering through online marketplaces and trade-based money laundering both involve the manipulation of the value or quantity of goods to disguise the illicit origin of funds. Over-valuation of the stated price of goods and no evidence of delivery of goods or shipping expenses are two common indicators of such schemes. The other options are not specific to these methods of money laundering.

Answer : A, B

This information can be found in the Certified Anti-Money Laundering Specialist (CAMS) study guide, 6th edition, under the section on Unusual Customer Identification Scenarios. The guide explains that two indicators that should be included in awareness training for unusual customer identification scenarios are:

A . The customer opens the account in the name of a family member who begins making large deposits.

This is an indicator of potential structuring, where a customer may be attempting to avoid triggering reporting thresholds by depositing funds in smaller amounts over time. It is important for staff to be aware of this scenario and to monitor accounts for potential suspicious activity.

B . The customer's name and home address cannot be verified.

This is an indicator of potential identity theft or other fraudulent activity. If a customer's identifying information cannot be verified, it is important for staff to conduct additional due diligence to ensure that the customer is legitimate and that the account is not being used for illicit purposes.

Answer : B

Deposit trading is a pattern of suspicious activity where a client deposits large amounts of money into an account, and then transfers the funds to other accounts, often in different jurisdictions or countries. This could be an attempt to disguise the source or destination of the funds, or to avoid reporting requirements. Deposit trading is also known as layering, which is the second stage of money laundering.

Answer : B

The illegal activity that the investigator has reasonable grounds to suspect Richard Aston of is aftermarket sales of entertainment admission tickets. This is because aftermarket sales of entertainment admission tickets involve reselling tickets for events, concerts, festivals, etc. at a higher price than their face value, often through online platforms or scalpers. This practice can be illegal or unethical, depending on the jurisdiction and the terms and conditions of the original ticket seller. The investigator should look for indicators of aftermarket sales of entertainment admission tickets, such as high volume or frequency of incoming payments from various individuals, correlation between incoming payments and major events or conferences, and discrepancy between the customer's profile and the nature of the transactions. The other options are incorrect because:

A . Embezzling from the hotel is not likely, as it would involve stealing money or property from the hotel by an employee or a person in a position of trust. There is no evidence that Richard Aston works for or has access to the hotel's assets.

C . Human trafficking is not probable, as it would involve exploiting people for forced labor or commercial sexual exploitation. There is no indication that Richard Aston is involved in any form of human trafficking or has any connection to victims or perpetrators.

D . Sports betting is not plausible, as it would involve wagering money on the outcome of sporting events or games. There is no sign that Richard Aston is engaged in any sports betting activity or has any association with bookmakers or gamblers.

Advanced CAMS-FCI Certification | ACAMS, Section 2: Investigating Financial Crimes, page 10

TicketSwap: The safest way to buy and sell tickets

Ticketing 101 | Ticketmaster

10 Types of Tickets For Events (+ Why & When To Use Them) - Eventbrite

Answer : C

The SAR/STR should include any information that is relevant to the suspicious activity, such as the customer information, the transaction details, and any other indicators of potential money laundering or criminal activity. The fact that one of the transactors occasionally smelled of marijuana smoke is an indicator that the customer may be involved in the illicit drug trade, which is a predicate offense for money laundering. Therefore, this information should be included in the SAR/STR. Reference: Advanced CAMS-FCI Study Guide, page 25.

Answer : B

The correct answer is B because the FATF recommendations state that financial institutions should provide feedback to the FIU as quickly as possible, especially in cases involving the financing of terrorism that could imply an imminent threat to the country. Option A is incorrect because requesting an official court subpoena would delay the response and might not be necessary for the FIU to access the information. Option C is incorrect because establishing a committee would also delay the response and might not be in compliance with the FIU's request. Option D is incorrect because informing the public relations department is irrelevant to the question and might compromise the confidentiality of the investigation.

Answer : A

The instruction that the person in charge of the broker-dealer should provide to their employees is to take notes on the questions and comments made by the agents (A). This is because taking notes can help the employees to recall and document what happened during the search warrant execution, which can be useful for legal or regulatory purposes. According to ACAMS3, ''the FI should instruct its staff to cooperate with LE agents during a search warrant execution, but also to take notes of what is being searched, seized, or asked by the agents'' (p. 35). The FI should also ''keep copies of any documents or records that are taken by LE agents'' (p. 35).

The other instructions are not correct. The person in charge of the broker-dealer should not instruct their employees to sign consent forms permitting the agents to search employees' offices (B), as this is unnecessary and potentially risky, as the agents already have a valid search warrant that authorizes them to search the premises. The person in charge of the broker-dealer should not instruct their employees to provide agents with unlimited access to customers' personal data , as this could violate privacy or data protection laws, as well as compromise customer trust and confidentiality. The person in charge of the broker-dealer should not instruct their employees to volunteer information not requested by the agents that they think may be useful (D), as this could interfere with the LE investigation or expose them to legal or regulatory risks.

Introduction to Transnational Organized Crime

ACAMS Law Enforcement and Financial Crimes Investigations eLearning Course Module

Law Enforcement Requests and Actions

Answer : A, B

The red flags that would be an indicator that activity is connected to a corruption/bribery typology are large checks issued to various individuals with the memos noting ''gift'', ''thank you'', ''favor'' (A) and negative news found on the customer related to government-issued violations for safety (B). These red flags suggest that the customer is involved in paying or receiving bribes or kickbacks to or from government officials or other parties in exchange for favorable treatment or contracts. These red flags are consistent with some of the indicators of corruption/bribery identified by ACAMS1, such as:

Payments made to or from third parties that are not directly related to the business

Payments made to or from high-risk jurisdictions or sectors

Payments made with vague or incomplete descriptions or justifications

Negative news or reputation of the customer or its associates

The other options are not as relevant or indicative of corruption/bribery as options A and B. Checks issued to an unrelated entity referencing ''rent'' and ''utilities'' in the memos could be a legitimate business expense or a sign of other types of fraud or money laundering, such as tax evasion or shell company schemes. Multiple daycare locations with no active business operations or related account activity (D) could also be a sign of other types of fraud or money laundering, such as embezzlement or front company schemes. The same beneficial owner owning several daycare centers in different locations (E) could be a normal or legitimate business practice, depending on the size, location, and profitability of the centers.

Answer : C

The bank is out of compliance with CIP regulations because it did not obtain the minimum identifying information from the customer prior to opening the account, as required by 31 CFR 1020.220(a)(2)(i)(A). The bank should have obtained the name, date of birth, address, and identification number of the customer, as well as verified the identity of the customer to the extent reasonable and practicable. The lack of ownership data may also indicate a violation of beneficial ownership regulations, but that is not the primary issue in this case.

Answer : A, B

The correct answer is A and B because human smuggling/trafficking and terrorist financing are both predicate offenses for money laundering that could be related to the client's activities. Option C is incorrect because there is no indication of narcotics trafficking in the scenario. Option D is incorrect because there is no indication of antiques smuggling in the scenario. Option E is incorrect because there is no indication of tax evasion in the scenario.

Answer : B

The activity type that the FI should target for creating an automated alert for human trafficking money laundering is multiple deposits between midnight and 4:00 AM (B). This is because this pattern is consistent with the indicators of human trafficking identified by the Financial Action Task Force (FATF) and the Egmont Group1, which include:

Frequent cash deposits, often in round amounts, outside of normal business hours

Deposits made at different branches or ATMs in various locations

Lack of information about the nature and purpose of the business

Involvement in online platforms that advertise sexual services

Expenses related to travel and accommodation

The other options are not as relevant or specific as option B. Payments made to multiple hotels in the same city (A) could be a legitimate business expense or a sign of other types of money laundering, such as tax evasion or fraud. Deposits made within days of major sporting events could also be explained by other factors, such as increased tourism or gambling. Payments made for virtual currency (D) are not directly related to human trafficking, although they could be used to facilitate money laundering in general.

Answer : B

The pattern of activity that most strongly indicates an individual is a foreign terrorist fighter is a large cash advance on a credit card and purchases at travel and sporting goods websites. This is because this pattern may suggest that the individual is preparing to travel to a conflict zone and purchase equipment or supplies for terrorist activities. According to the United Nations Office on Drugs and Crime, some of the indicators of foreign terrorist fighters include1:

Sudden or increased financial activity, such as cash withdrawals, transfers, or deposits, especially in large amounts or involving foreign currency or locations.

Purchases of travel-related items, such as airline tickets, passports, visas, luggage, or clothing, especially to or from high-risk destinations or transit hubs.

Purchases of items that could be used for terrorist purposes, such as weapons, explosives, chemicals, communication devices, or survival gear.

Changes in behavior, such as expressing radical views, cutting ties with family or friends, joining extremist groups, or displaying signs of emotional distress.

Foreign Terrorist Fighters - United Nations Office on Drugs and Crime

Answer : D

A more robust supervisory approach is needed by regulators when overseeing small- and medium-sized MSBs compared to larger MSBs for combatting TF because small- and medium-sized MSBs are more at risk of allowing transactions linked to TF due to the lack of skilled compliance resources. Small- and medium-sized MSBs may face challenges in implementing effective AML/CFT controls, such as conducting risk assessments, applying customer due diligence measures, monitoring transactions, detecting suspicious activities, and reporting to the authorities. They may also have limited access to training, guidance, and tools to enhance their compliance capabilities. Therefore, regulators need to provide more supervision and support to small- and medium-sized MSBs to ensure that they comply with the AML/CFT requirements and mitigate the TF risks.

Sustainable Growth for Small and Medium-Sized Enterprises ... - MDPI

Lessons on Resilience for Small and Midsize Businesses - HBR

Answer : D, E, F

According to the FinCEN's 314(a) Fact Sheet1, the steps that the investigator should take when fulfilling the request are:

Search its records expeditiously to determine whether it maintains(ed) any accounts for the subject(s) listed in the request. This is option F.

Report back to the Financial Crimes Enforcement Network (FinCEN) within 15 days of receipt of the request via a secure internet website. This is option E.

Report to Financial Crimes Enforcement Network (FinCEN) that a match was found without revealing any other details. This is option D.

The other options are incorrect because:

Exiting the relationship with the business since it appears that customer is under investigation is not required by the 314(a) program and may interfere with law enforcement's investigation. This is option A.

Not responding to Financial Crimes Enforcement Network (FinCEN) if the requested information is not present in the financial institution's system of records is contrary to the 314(a) program, which requires financial institutions to respond whether or not they have a match. This is option B.

Reviewing the account(s) activity and proactively filing a SAR/STR using the 314(a) request as the basis for the filing is not appropriate, as the 314(a) request itself is not a sufficient reason to file a SAR/STR. The financial institution should only file a SAR/STR if it has its own independent suspicion of money laundering or terrorist financing. This is option C.

Answer : B

The best information to share at the very beginning of a well-written SAR/STR narrative is the purpose of the SAR/STR narrative and a general description of the known or alleged violation. This is because this information provides an overview of why the SAR/STR is being filed and what type of suspicious activity or transaction is involved. It also helps to capture the attention of the reader and set the tone for the rest of the narrative.

Answer : B

Chain hopping is a technique used by criminals to obscure the traceability of cryptocurrency transactions by converting the funds to a different type of cryptocurrency, often using multiple exchanges or platforms. The other options are not related to chain hopping. Reference: Advanced CAMS-FCI Study Guide, page 38.

Answer : B, D

The FIU should cross-reference the databases of international commerce/logistics transactions between the country and WMD proliferation sanctioned states with the corresponding international financial operations of those transactions, as this would help identify any discrepancies or anomalies that could indicate sanctions evasion. The FIU should also evaluate a sample of the amount of false-positive and false-negative alerts that FIs have regarding proliferation sanctions evasion to determine root causes of non-detection, such as inadequate screening systems, lack of training, or human error. These actions would help the FIU assess the proliferation financing risk and provide feedback and guidance to FIs on how to improve their detection and prevention capabilities.

Answer : C, E

The correct answer is C and E. The investigator should provide additional information to the LE upon receiving a formal request, and gather all the information that would be useful for LE and recommend filing a SAR/STR. These steps are consistent with the best practices of conducting financial crime investigations and reporting suspicious activity. The investigator should not close the customer's accounts or the investigation, as this may interfere with the ongoing LE inquiry and violate the FI's policies and procedures. The investigator should also not contact local LE directly, as this may compromise the confidentiality of the investigation and the FIU's authority. Reference:

Advanced CAMS-FCI Study Guide, Chapter 4: Reporting Suspicious Activity, pages 40-411

Advanced CAMS-FCI Study Guide, Chapter 5: Governance of an AFC Investigations Unit, pages 48-491

Advanced CAMS-FCI Certification | ACAMS

Answer : B

The fact that should not be included in the SAR/STR narrative is the request by law enforcement (D). This is because the request by law enforcement is confidential and should not be disclosed to the customer or anyone else who is not authorized to know it. According to the ACAMS Advanced Financial Crimes Investigations Certification Study Guide1, ''the FI should not include any reference to the LE request in the SAR/STR narrative, as this could compromise the LE investigation or alert the customer of the suspicion'' (p. 35). The FI should also not inform the customer of the LE request or delay filing the SAR/STR because of it.

The other facts should be included in the SAR/STR narrative, as they are relevant and indicative of human trafficking money laundering. The air travel and hotel expenses (A) show that the customer is involved in moving people across different locations, which could be a sign of human smuggling or trafficking. The time of the cash deposits (B) shows that the customer is receiving cash payments during unusual hours, which could be a sign of illicit activities or services. The sporting event shows that the customer is exploiting a high-demand situation for their business, which could be a sign of opportunistic or organized crime.

Answer : B, D, D

Some of the negative impacts of illegal wildlife trade and environmental crimes are loss of potential tax proceeds and threats to biodiversity. Loss of potential tax proceeds occurs when illegal wildlife trade and environmental crimes evade taxation and customs duties, depriving governments of revenues that could be used for public services and development. Threats to biodiversity occur when illegal wildlife trade and environmental crimes endanger species, habitats, and ecosystems, reducing their resilience and ability to provide essential services for human well-being. Public health consequences and threats to a country's political stability are not directly related to illegal wildlife trade and environmental crimes, but rather to other types of financial crimes such as money laundering, terrorism financing, or corruption.

Answer : A

The correct answer is A because the expected account activities were 1 to 5 transactions per year and around 1 million per transaction amount, but the actual activity showed much more frequent and varied transactions in different currencies and amounts. This indicates a deviation from the customer's profile and risk level.

Answer : B

Deposit trading is a pattern of suspicious activity where a client deposits large amounts of money into an account, and then transfers the funds to other accounts, often in different jurisdictions or countries. This could be an attempt to disguise the source or destination of the funds, or to avoid reporting requirements. Deposit trading is also known as layering, which is the second stage of money laundering.

Answer : D

The correct answer is D because it is a suspicious activity that Y, who is the authorized signatory of the customer, also signed on behalf of the lenders. This indicates a possible conflict of interest, collusion, or fraud. The other options are not suspicious activities based on the information given.

Answer : B

The correct answer is B because the FATF recommendations state that financial institutions should provide feedback to the FIU as quickly as possible, especially in cases involving the financing of terrorism that could imply an imminent threat to the country. Option A is incorrect because requesting an official court subpoena would delay the response and might not be necessary for the FIU to access the information. Option C is incorrect because establishing a committee would also delay the response and might not be in compliance with the FIU's request. Option D is incorrect because informing the public relations department is irrelevant to the question and might compromise the confidentiality of the investigation.

Answer : C

The investigator should document the investigation process and retain all relevant documents in the case management system. This is because documenting the investigation process is a good practice to ensure the quality and consistency of the investigation, as well as to facilitate the review and audit of the investigation. Retaining all relevant documents is also important to support the evidence and findings of the investigation, as well as to comply with the record-keeping requirements of the relevant authorities. The other options are incorrect because:

A . Excluding any open-source information from record-keeping is not advisable, as open-source information can provide valuable insights and context for the investigation, and may not be easily retrievable in the future.

B . Adding all of the information the FI has about the subject, their account(s) activity, research results, KYC information, etc. to the SAR/STR is not necessary, as the SAR/STR should only contain the essential information that is relevant and material to the suspicious activity. Adding too much information may obscure the main points and make the SAR/STR less effective.

D . Not documenting the investigation process if a SAR/STR is not filed is not acceptable, as the investigation process should be documented regardless of the outcome. Documenting the investigation process can help justify why a SAR/STR was not filed, and also provide a reference for future investigations involving the same subject or activity.

Advanced CAMS-FCI Certification | ACAMS, Section 3: Reporting Suspicious Activity, page 14

Leading Complex Investigations Certificate | ACAMS, Module 4: Documenting Your Investigation, page 4

Answer : B

According to the Financial Action Task Force (FATF), the use of large amounts of cash is a common method for money launderers to move illicit funds [1]. Purchasing luxury items with cash can indicate an attempt to convert illegal funds into tangible assets that can be easily resold or moved across borders. As a result, businesses that deal with luxury items are required to implement enhanced due diligence measures, including monitoring transactions involving large amounts of cash [1].