CISI Combating Financial Crime study guide for other international and regional bodies, with learning objectives, UK control cues, and exam traps.
Other international and regional bodies belongs to the CISI Combating Financial Crime Money Laundering exam topic, weighted at 8%. Study it as a role-recognition lesson. The exam can name a body directly, describe a public advisory, or show a cross-border case, then test whether you know the difference between standard setting, supervision, intelligence sharing, sanctions administration, law enforcement, market conduct regulation, and the firm’s own AML responsibilities.
| Concept | What to know for CISI CFC review |
|---|---|
| FATF-style regional bodies | Regional organisations that apply FATF-style standards and mutual evaluations in specific parts of the world. |
| Financial intelligence units | National bodies that receive, analyse, and disseminate suspicious activity information; they are not the same as a firm’s MLRO. |
| Supervisory bodies | Regulators and professional supervisors that assess whether firms maintain effective AML systems and controls. |
| Industry standards | Non-legislative guidance and principles can influence control expectations, especially for correspondent banking and higher-risk relationships. |
| Securities regulators | Market regulators can identify suspicious trading, market abuse, and conduct issues that overlap with financial-crime concerns. |
| Sanctions authorities | Sanctions bodies focus on screening, asset freezes, prohibitions, licences, and reporting, which must not be collapsed into generic AML. |
| Exam trap | The correct answer often depends on the body’s role: standard setter, supervisor, FIU, sanctions authority, law enforcement, or firm. |
FATF is the central international standard setter, but the wider AML system depends on many other bodies. CISI CFC questions may name a body directly, or they may describe a role indirectly. The safe approach is to identify what the body does before choosing the firm response.
| Body or role | What it contributes | What the firm should remember |
|---|---|---|
| FATF-style regional body | promotes consistent standards and mutual evaluations in a region | country-risk findings can inform the firm’s risk assessment |
| Financial intelligence unit | receives and analyses suspicious activity reports | the firm escalates internally before external reporting decisions are made |
| Domestic supervisor | reviews systems, controls, governance, and compliance | policies must be evidenced, tested, and updated |
| Industry group or guidance body | publishes practical control expectations | guidance can shape good practice even when not itself legislation |
| Securities or conduct regulator | addresses market integrity, conduct, and suspicious trading | AML, market abuse, and conduct controls may overlap but remain distinct |
| Sanctions authority | administers or enforces sanctions restrictions | screening and freezing obligations require separate discipline from AML suspicion |
| Law-enforcement authority | investigates and prosecutes criminal activity | the firm should preserve evidence and respond through lawful channels |
The exam usually does not require a long institutional history. It requires practical role separation. A regional body may influence country-risk assessment. A supervisor may criticise weak controls. An FIU may receive suspicious-activity information. A sanctions authority may administer freezing restrictions. A securities regulator may detect trading misconduct. The firm must not treat all of these as interchangeable.
FATF-style regional bodies support the global AML framework by applying FATF-style standards within regional contexts. They contribute through mutual evaluations, typology work, peer pressure, technical assistance, and monitoring of national frameworks. Their findings can highlight countries with weaker controls, enforcement gaps, or emerging laundering typologies.
| What a regional body may publish | How a firm should use it |
|---|---|
| mutual evaluation findings | update country risk and control expectations |
| follow-up reports | monitor whether a jurisdiction is improving or deteriorating |
| typology reports | adjust red flags, training, and monitoring scenarios |
| regional risk themes | test exposure across customers, products, and corridors |
| implementation gaps | consider EDD, senior approval, or exit where risk cannot be managed |
The firm should not mechanically reject every customer connected to a jurisdiction mentioned in a report. It should assess the specific customer, ownership, product, transaction pattern, and controls. The key exam phrase is “input into risk assessment,” not “automatic conclusion.”
Financial intelligence units are national bodies that receive suspicious activity information, analyse it, and disseminate intelligence to competent authorities where appropriate. They are important because laundering intelligence often depends on patterns across firms, sectors, and borders.
Do not confuse an FIU with the firm’s MLRO. The firm’s internal reporting function assesses internal suspicion and reporting obligations. The FIU receives and analyses external reports under the applicable national framework. The firm should preserve evidence, avoid tipping off, and follow internal suspicious-activity procedures before external reporting decisions are made.
| FIU-related exam cue | Better answer |
|---|---|
| staff identify suspicious activity | escalate internally through the firm’s reporting route |
| customer asks whether a report has been made | avoid tipping off and follow MLRO/legal guidance |
| authorities request information later | verify authority, preserve audit trail, and respond through controlled channels |
| cross-border pattern appears | recognise that intelligence sharing may matter, but firm duties remain local and immediate |
| inconsistent customer identifiers exist | correct data quality because intelligence matching depends on reliable information |
Weak data can limit intelligence value. If names, dates of birth, company numbers, account references, addresses, or beneficial-owner records are inconsistent across systems, the firm may fail to identify linked activity or respond effectively to authority requests.
Supervisors test whether firms have effective AML systems and controls. They may review governance, business-wide risk assessments, customer due diligence, enhanced due diligence, monitoring, suspicious-activity handling, sanctions screening, training, record keeping, and remediation.
| Supervisory focus | Weakness the exam may describe |
|---|---|
| governance | senior management receives volumes but no actionable risk insight |
| risk assessment | new products, channels, or jurisdictions are not assessed |
| CDD and EDD | files contain documents but no risk-based analysis |
| transaction monitoring | alerts are closed mechanically or rules are not calibrated |
| suspicious-activity procedures | staff delay escalation or warn the customer |
| training | staff attend sessions but cannot identify typologies |
| audit and assurance | findings are closed without retesting |
Supervisory guidance can shape good practice even when it is not the same as primary legislation. A good exam answer recognises that guidance, thematic reviews, enforcement cases, and public statements help firms benchmark their controls and update procedures.
Securities regulators and market-conduct authorities matter because financial crime can appear through trading activity, market abuse, suspicious order patterns, issuer disclosures, insider dealing, manipulation, or use of investment accounts to move proceeds. AML and market-abuse controls are distinct, but they can overlap in the same case.
| Market-related fact pattern | Possible overlap |
|---|---|
| suspicious trading before an announcement | market abuse and possible criminal-property risk |
| rapid investment-account movements with no economic rationale | possible layering through securities accounts |
| nominee or offshore entities trade around sensitive events | beneficial ownership and market-conduct concerns |
| proceeds from fraud are invested and withdrawn | AML, fraud, and account monitoring concerns |
| employee or connected-party trading appears unusual | conduct, conflicts, and possible suspicious-activity escalation |
The firm should not assume that a market-conduct issue replaces AML escalation. It should route the matter through the correct conduct, surveillance, compliance, and financial-crime channels, preserving evidence and avoiding premature customer contact where suspicion exists.
Sanctions authorities focus on prohibitions, asset freezes, licences, ownership and control, reporting, and enforcement. Sanctions risk often overlaps with AML, but the control response differs. A sanctions match may require immediate freezing or prohibition analysis; an AML concern may require suspicious-activity escalation and monitoring.
| If the facts emphasize… | Think first about… |
|---|---|
| designated person or entity | sanctions screening and asset-freeze obligations |
| ownership or control by a sanctioned party | sanctions ownership/control analysis |
| licence, exemption, or permitted payment | sanctions legal route and record keeping |
| unusual funds from a high-risk customer | AML source-of-funds and monitoring analysis |
| shell company used to avoid restrictions | sanctions evasion and AML may both be relevant |
| blocked payment or frozen asset | sanctions reporting and legal/compliance handling |
The exam trap is collapsing sanctions into AML because both are financial crime. The stronger answer keeps the control discipline separate while recognising that a case can require both routes.
Financial-crime cases rarely stay inside one neat category. A bribery case can produce laundering proceeds. A sanctions evasion case can use shell companies and trade documents. A tax evasion scheme can involve false invoices and offshore accounts. A market-abuse case can create suspicious proceeds that later move through investment accounts.
That overlap is why firms need clean internal routing. The front office identifies and records red flags. Compliance and financial-crime teams assess the risk. The MLRO considers suspicious activity reporting. Sanctions teams handle screening and restrictions. Legal and senior management may be involved where exit, consent, litigation, or regulator engagement is sensitive.
| Overlapping issue | Why coordination matters |
|---|---|
| bribery proceeds enter an investment account | AML and bribery controls both matter |
| sanctioned ownership is hidden behind nominees | sanctions, beneficial ownership, and AML all matter |
| suspicious trading generates proceeds | market abuse and AML routes may both be relevant |
| false invoices support cross-border payments | fraud, AML, tax, and trade-based laundering may overlap |
| customer data differs across systems | linked risks may be missed by screening or monitoring |
| foreign authority asks for information | legal authority, confidentiality, and internal escalation must be checked |
The exam often rewards answers that preserve boundaries. A firm should not send every problem to the wrong authority, ignore sanctions because an AML review is ongoing, or assume a securities regulator replaces the firm’s AML escalation route.
Public advisories, supervisory notices, high-risk lists, typology reports, mutual-evaluation findings, enforcement cases, and thematic reviews are inputs into risk assessment. They help a firm update country risk, product risk, typology awareness, transaction-monitoring scenarios, training, and escalation procedures.
They are not automatic conclusions. A body can flag a risk area, but the firm must still assess the customer, transaction, ownership, purpose, product, and evidence. A good exam answer says how the information changes the control response: enhanced due diligence, tighter monitoring, senior approval, additional documentation, escalation, remediation, or refusal where risk cannot be mitigated.
| External signal | Better internal response |
|---|---|
| country added to a high-risk list | update country risk and identify exposed customers or transactions |
| typology report on trade-based laundering | review relevant invoices, counterparties, goods, routes, and monitoring rules |
| thematic review criticises weak EDD | sample high-risk files and remediate gaps |
| sanctions advisory highlights evasion methods | update screening, ownership checks, and staff guidance |
| enforcement case against peer firm | compare the firm’s controls with the control failure described |
| FIU or law-enforcement alert | preserve evidence, search exposure where lawful, and escalate findings |
Data quality is a practical control issue because different authorities, regulators, and internal teams may later review the same case. If records do not match, the firm may miss linked activity or struggle to explain its decisions.
| Data problem | Why it matters |
|---|---|
| customer name varies across systems | screening and monitoring may miss matches |
| beneficial owner not linked to all accounts | exposure to high-risk or designated persons may be hidden |
| outdated jurisdiction information | country-risk controls may be wrong |
| inconsistent transaction purpose codes | monitoring scenarios may not detect unusual activity |
| weak case notes | supervisors cannot see why alerts were closed |
| missing source-of-funds evidence | later review cannot reconstruct whether suspicion was considered |
Good data quality supports effective screening, monitoring, intelligence sharing, suspicious-activity review, and regulator response. It also helps the firm show that decisions were reasonable at the time, even if a later investigation develops additional facts.
When more than one body or authority is relevant, do not choose the answer that simply names the most official-sounding organisation. Choose the answer that keeps the firm’s operational duties clear.
| Scenario | Stronger firm-side response |
|---|---|
| regional body reports weak controls in a country | update country-risk assessment and review exposed relationships |
| supervisor warns of a typology | assess exposure, adjust monitoring, train staff, and document action |
| FIU-related suspicion arises | escalate internally, preserve records, and avoid tipping off |
| sanctions advisory overlaps with AML concern | run sanctions and AML analysis in parallel through proper channels |
| securities regulator highlights market-abuse pattern | involve surveillance/conduct teams and consider AML escalation if proceeds or suspicious movement appear |
| overseas authority seeks customer information | verify authority and scope before disclosure |
The practical answer usually combines risk assessment, internal routing, records, and escalation. It should not bypass the firm’s procedures by contacting an external body casually or releasing confidential information without authority.
A firm receives a supervisory notice warning about trade-based laundering typologies in a region where several corporate clients operate. One client uses complex invoices and related-party payments that do not match its stated business. What should the firm do first?
A. Treat the notice as background only because it is not a direct law-enforcement order. B. Update the relevant risk assessment and review affected clients, transactions, ownership, and documentation for escalation under the firm’s AML procedures. C. Send the client details to a regional standard-setting body without internal review. D. Freeze all client assets because every trade-based typology is a sanctions breach.
Answer: B. External notices and typology alerts should feed the firm’s risk assessment and monitoring. The firm should review the specific customer facts, document the analysis, and escalate where suspicion or control weakness is identified. The notice is not ignored, but it also does not replace the firm’s own case assessment.
When revising, build a role ladder: international standard setter, regional assessor, domestic supervisor, FIU, sanctions authority, securities or conduct regulator, law enforcement, and regulated firm. Then practise saying what each does and what it does not do.
Use this quick distinction:
| If the exam says… | Ask… |
|---|---|
| “regional body” | Is this an input into country risk, mutual evaluation, or typology awareness? |
| “FIU” | Has the firm followed internal suspicious-activity escalation and confidentiality controls? |
| “supervisor” | What systems, controls, governance, or records may be weak? |
| “sanctions authority” | Is the issue screening, freezing, ownership/control, licensing, or reporting? |
| “securities regulator” | Is there market abuse, suspicious trading, conduct risk, or proceeds movement? |
| “industry guidance” | How should the firm adapt controls without treating guidance as identical to law? |
Return to the CISI Combating Financial Crime guide for the full exam-topic table, or use the CFC Cheat Sheet for threat classification, UK authority cues, and final review prompts.