ACAMS Advanced-CAMS-Audit Practice Test - Questions Answers, Page 3

List of questions
Question 21

Suspicious activity report testing in the last three audits did not identify any metrics to indicate that volume vanes dramatically each month. Which step should the auditor take next?
Assign to continuous monitoring.
Include the lack of metrics as a deficiency in the reporting.
Escalate the finding regarding the lack of metrics to the board of directors.
Review within the IT audit.
Deficiency in Reporting Metrics: AML compliance frameworks require metrics to track trends and unusual patterns in suspicious activity reports (SARs). A lack of such metrics is a deficiency that undermines monitoring and oversight. Why This is the Appropriate Step: Identifying and documenting deficiencies ensures accountability and facilitates corrective action, aligning with AML audit standards.
Question 22

During the interview, the local director informs the audit manager that no internal or regulatory audits have occurred since the local director's appointment The local director relies on a locally-approved independent external review of Company A performed 12 months ago by a local firm How should the audit manager respond?
Validate the accuracy of content of the independent external review report by recommending an audit and assess if the findings of both the independent review and audit are similar.
Review the independent external review report to determine the extent to which reliance can be placed on it and identify matters requiring further review by internal audit.
Rely upon the independent external review report as the base to formulate conclusions of the current onsite visit by internal audit.
Advise the group board that the group should set aside the external review reports as the use of the third party independent reviewer was not authorized at group board level.
Steps to Assess the External Review Report: Validate the scope, methodology, and findings of the external review to determine its adequacy and reliability. Identify any gaps or areas that require additional scrutiny by internal audit. Rationale for Review Instead of Reliance: Relying solely on external reviews without validation risks overlooking key compliance deficiencies. Internal audit must establish an independent assessment to corroborate findings. CAMS-Audit Recommendations: CAMS-Audit stresses the importance of critical evaluation of third-party reports and ensuring internal audit findings align with organizational compliance priorities
Question 23

Which should the auditor recommend to management in terms of the client's risk rating procedures?
Remove enhanced due diligence requirements for long-standing clients that are art collectors and do not transact with precious metals.
Include an assessment of risk factors of channel, credit, and transaction risk to determine the client's composite AML and sanctions risk score.
Provide staff with training on new record retention requirements for occasional transactions.
Remediate client files to verify their AML and sanctions risk rating and document enhanced due diligence measures, where applicable.
Incorporating Comprehensive Risk Factors By including an assessment of channel, credit, and transaction risks, the client's overall risk profile is accurately determined. This aligns with risk-based approaches emphasized by FATF and CAMS-Audit standards. These risk factors provide a granular view of the client's risk level, ensuring proper classification into Standard or Enhanced Due Diligence categories. Regulatory Alignment FATF Recommendations mandate that client risk assessments consider the products, services, and delivery channels used, as well as geographic and transactional risks. Conclusion Implementing composite AML and sanctions risk scores ensures the institution is compliant with regulatory standards and adequately mitigates risks associated with different client profiles.
Question 24

Review of client files reveals that staff members have been performing negative media searches for clients only when they recognize the client name. When an interesting story is identified a print of the results is inserted in the client file. There are no clear procedures on adverse media screening. Which should the auditor recommend? {Select Two.)
Evidence of negative media screening retained in client files must comprise negative reports only.
All staff members should be provided with additional training to ensure they adhere to standard procedures.
Identification of relevant reports via adverse media searches must be escalated for an assessment for materiality.
Privacy regulation requires that clients who have a print copy of the adverse media m their files should be notified.
Procedures should be enhanced to require that all clients are subject to regular negative media screening.
Adverse Media Screening Requirements: Negative media screening is a critical part of customer due diligence (CDD) as highlighted in FATF Recommendation 10. Proper training ensures staff apply consistent procedures. Regular screening of all clients ensures ongoing monitoring of risks, aligning with the risk-based approach mandated by AML standards. Key Compliance Justification: Staff training and procedural updates mitigate the risk of inconsistent adverse media identification, a key finding in compliance audits.
Question 25

The standard audit report format requires that an executive summary of the findings is included. Which statement is most appropriate for summarizing detailed findings'?
Although the evidence of enhanced due diligence performed was not available audit was satisfied that the risk of higher risk clients has been appropriately mitigated.
Deletion of transaction records for completed occasional transactions is operationally an efficient practice.
The dealers have assured they are able to identify long-standing regular clients that are typically collectors and customers for occasional transactions.
Evidence indicated inconsistent application of the client risk rating procedures and lack of evidence of enhanced due diligence measures for higher risk clients.
Executive Summary Requirements: The statement focuses on clear, evidence-based findings, critical for reflecting material deficiencies in enhanced due diligence (EDD) for high-risk clients. Guidelines for Reporting: FATF emphasizes the consistent application of risk rating systems to ensure ML/TF risks are adequately mitigated.
Question 26

When sample testing client transaction records, the auditor finds that a client offered to sell a piece of art on a commission basis. A sale was completed and the purchase price was remitted to the client with less commission. What further investigation should the auditor undertake?
Update the national art registry with the sale price of the art work so that art-based money laundering can be detected.
Perform enhanced due diligence on the seller and buyer and update client records with findings
Review procedures for accepting commission sales and determining the buyer's source of funds on a best effort basis
Commission an external investigator to perform enhanced due diligence on the buyer.
Enhanced due diligence is necessary to identify potential risks associated with high-value transactions such as art sales, a known method for money laundering. CAMS-Audit guidelines recommend updating client records with findings to maintain transparency and prepare for regulatory scrutiny. This approach ensures compliance with due diligence requirements and mitigates reputational and financial crime risks.
Question 27

An auditor is asked to select a judgmental sample from a population of 1 000 clients onboarded during the previous 12 months. Which step should the auditor take first?
Review the CDD onboarding policies and procedures to determine the criteria for selection.
Evaluate quality assurance processes tor onboarding new clients.
Initially sample 10% of new clients onboarded.
Request a list of high-risk clients onboarded from management.
First Steps for Sampling: Reviewing onboarding policies ensures the sampling aligns with established risk criteria, improving the relevance and accuracy of the audit findings. Regulatory Emphasis: FATF guidance stresses aligning audit sampling with organizational risk assessments and onboarding standards.
Question 28

An audit determines that an important control is not being performed. The operational manager responds to the audit comment stating that they do not have adequate resources in the department to accomplish this task. The audit item discussion between the auditor and the operational manager is a(n):
general license authorizing a transaction for an entity, and a specific license authorizing a transaction for an individual.
internal control test.
sustainability assessment.
root cause analysis
Nature of Discussion: Root cause analysis is required to identify underlying reasons for the failure to perform the control, particularly resource constraints. Key Compliance Justification: Addressing the root cause aligns with Basel Committee guidelines on improving control environments and addressing systemic issues in AML compliance.
Question 29

A financial institution (FI) recently updated its transaction monitoring (TM) thresholds During validation which should be provided as evidence of optimized thresholds'? (Select Two.)
A copy of the FI's AML risk assessment
Comparison against past suspicious activity reported
Above-the-line and below-the-line testing
Length of time the FI has deployed the software program
Proof of validation from the TM software provider
Comparison Against Past Suspicious Activity Reported: This evaluates whether the new thresholds are identifying similar or improved patterns of suspicious activity compared to prior thresholds. Helps validate that the updated thresholds align with the institution's AML risk profile and regulatory expectations. Above-the-Line and Below-the-Line Testing: Above-the-line tests verify that alerts generated by the thresholds include expected suspicious transactions. Below-the-line tests assess transactions below the threshold to ensure no significant suspicious activities are missed. CAMS-Audit
Reference: Advanced CAMS-Audit frameworks emphasize the importance of both historical comparison and robust testing methodologies to validate transaction monitoring system updates.
Question 30

What is the role of the internal audit in the governance process?
Perform quality assurance testing of transaction monitoring.
Monitor the risks of noncompliance with applicable laws and regulations.
Periodically evaluate the effectiveness of processes and controls.
Execute the corrective action plan.
Role of Internal Audit: Internal audit is tasked with evaluating and improving the effectiveness of governance, risk management, and control processes within the organization. Periodic evaluations ensure that AML/CFT processes remain robust and effective against emerging risks. Alignment with CAMS-Audit Guidance: Advanced CAMS-Audit training highlights the need for internal audit to focus on process effectiveness rather than operational responsibilities, such as quality assurance or corrective actions.
Question