CAMS — ACAMS Certified Anti-Money Laundering Specialist Exam Blueprint

Independent exam blueprint for the ACAMS Certified Anti-Money Laundering Specialist (CAMS) exam, focused on AML readiness, scenario judgment, and final review.

How to use this CAMS exam blueprint

Use this checklist as an independent study map for the ACAMS Certified Anti-Money Laundering Specialist (CAMS) exam from ACAMS, exam code CAMS. It is designed to help you translate broad anti-money laundering and counter-terrorist financing concepts into practical readiness tasks.

Because exact exam weights are not provided here, treat the sections below as readiness areas, not as official section percentages. For each area, ask:

  • Can I explain the concept in plain language?
  • Can I apply it to a customer, transaction, product, or investigation scenario?
  • Can I distinguish the best next action from a merely plausible action?
  • Can I identify the documentation, escalation, or control expected in an AML/CFT program?

Use this scale while reviewing:

Readiness markMeaningWhat to do next
GreenYou can answer scenario questions and explain why the answer is best.Maintain with mixed practice.
YellowYou recognize the topic but hesitate on application or exceptions.Review examples and decision points.
RedYou rely on memorized terms but cannot apply them.Rebuild from definitions, controls, and scenarios.

Topic-area readiness map

Readiness areaWhat to reviewYou are ready when you can…Common exam-style cues
AML/CFT foundationsMoney laundering stages, terrorist financing, proliferation financing, predicate offenses, financial crime typologiesExplain how illicit value moves through the financial system and why controls are placed at onboarding, monitoring, and reporting pointsPlacement, layering, integration; use of cash, shells, nominees, trade, wires, crypto or value transfer channels
International standards and cooperationFATF-style risk-based expectations, FIUs, information sharing, supervisory bodies, cross-border cooperationIdentify the purpose of global standards and how local laws, regulators, and institutions interact“International standard,” “financial intelligence unit,” “mutual assistance,” “high-risk jurisdiction”
Risk-based approachEnterprise risk assessment, customer risk, product risk, geography risk, delivery channel risk, inherent and residual riskPrioritize higher-risk activity without treating all customers or products the same“Risk appetite,” “residual risk,” “control effectiveness,” “enhanced due diligence”
Customer due diligenceCustomer identification, verification, beneficial ownership, purpose and nature of relationship, ongoing monitoringSelect appropriate onboarding and refresh actions based on customer type and riskComplex ownership, PEP, legal entity, nominee, inconsistent source of funds
Enhanced due diligenceHigher-risk customers, high-risk geographies, PEPs, correspondent banking, private banking, nonresident customersState what extra information or approval may be needed and whySenior management approval, source of wealth, source of funds, adverse media
Sanctions and screeningSanctions lists, name screening, false positives, potential matches, escalation, blocking/freezing concepts where applicableDistinguish AML monitoring from sanctions screening and know when escalation is neededSimilar names, aliases, ownership/control, hit disposition, restricted country
Transaction monitoringRules, scenarios, alerts, red flags, tuning, escalation, investigationsEvaluate unusual activity using customer profile, expected activity, and supporting factsRapid movement of funds, structuring, funnel activity, unexplained wires, trade anomalies
Investigations and reportingAlert triage, case building, documentation, suspicious activity reporting, tipping-off controlsBuild a defensible case narrative and decide whether activity should be escalated or reported under applicable rules“No apparent lawful purpose,” “inconsistent with profile,” “customer explanation unsupported”
AML compliance programGovernance, policies, procedures, internal controls, training, independent testing, designated responsibilityIdentify program components and how weaknesses create regulatory and operational riskAudit finding, stale policy, missing training, weak escalation, ineffective monitoring
Enforcement, ethics, and accountabilityRegulatory expectations, individual conduct, conflicts, confidentiality, recordkeepingRecognize prohibited conduct, weak governance, and improper handling of sensitive informationTipping off, ignoring red flags, backdating, inadequate documentation
Exam judgmentBest next step, most appropriate control, strongest red flag, most relevant documentChoose practical AML actions, not generic compliance slogans“What should the compliance officer do next?” “Which factor is most concerning?”

Core AML/CFT concepts to know cold

Can you explain these without notes?

  • Money laundering as a process for disguising illicit origin, ownership, movement, or control of funds.
  • The difference between money laundering, terrorist financing, and proliferation financing.
  • Why terrorist financing may involve smaller amounts and legitimate-source funds.
  • The classic stages of money laundering:
    • Placement
    • Layering
    • Integration
  • Why real cases may not follow the stages neatly.
  • What a predicate offense is and why it matters to AML analysis.
  • How shell companies, nominees, intermediaries, and professional facilitators can obscure ownership.
  • Why cross-border activity, cash intensity, complex structures, and secrecy jurisdictions increase risk.
  • How AML controls reduce risk but do not eliminate it.

Key vocabulary readiness

TermBe able to defineBe able to apply in a scenario
Customer due diligenceUnderstanding who the customer is and the expected relationshipIdentify what information is missing from a customer file
Enhanced due diligenceAdditional scrutiny for higher-risk relationshipsDecide when source of wealth, source of funds, or senior approval is relevant
Beneficial ownerNatural person or persons who ultimately own or control a customer under applicable rulesLook through legal entities, nominees, and control arrangements
Suspicious activityActivity that may indicate illicit conduct, evasion, or lack of legitimate purposeDecide whether an alert should become a case or report
Tipping offImproperly revealing an investigation or report to a customer or unauthorized partyRecognize unsafe customer communications
Risk-based approachApplying stronger controls where risk is higherAvoid one-size-fits-all decisions
Residual riskRisk remaining after controlsExplain why a high-risk product may be acceptable only with strong controls
Politically exposed personPerson with prominent public function or related exposure, depending on applicable definitionsIdentify corruption, bribery, and influence-risk concerns
Sanctions matchPotential or confirmed link to a sanctioned person, entity, vessel, country, or restrictionEscalate rather than treat it as a normal AML alert
Financial intelligence unitGovernment body that receives and analyzes financial intelligence reportsUnderstand reporting and information-sharing roles

Risk-based approach checklist

The CAMS exam often rewards candidates who can think like an AML professional: identify risk, apply proportionate controls, document the rationale, and escalate when required.

Risk factorWhat to assessStrong readiness looks likeWeak-area warning
Customer typeIndividual, legal entity, trust, nonprofit, MSB, professional intermediary, cash-intensive businessYou can explain why some customer types require more scrutinyTreating customer type alone as proof of suspicious activity
GeographyResidence, incorporation, operations, transaction corridors, counterpartiesYou can connect geography to sanctions, corruption, terrorism, secrecy, or weak AML controlsAssuming every foreign transaction is suspicious
Product or serviceDeposits, wires, trade finance, private banking, correspondent banking, prepaid access, virtual asset exposureYou know how each product can be misusedMemorizing products without understanding abuse methods
Delivery channelIn-person, non-face-to-face, intermediated, digitalYou can identify verification and impersonation risksIgnoring non-face-to-face onboarding risk
Transaction behaviorVolume, velocity, purpose, counterparties, round-dollar patterns, reversalsYou compare behavior to expected activityLooking at transactions in isolation
Ownership and controlBeneficial owners, controllers, nominees, layered entitiesYou know when ownership complexity increases riskStopping at the first legal entity name
Source of funds and wealthOrigin of transaction funds and overall wealthYou can distinguish source of funds from source of wealthTreating a bank statement as full source-of-wealth evidence
ControlsScreening, monitoring, approvals, limits, audits, trainingYou can explain how controls reduce inherent riskConfusing control existence with control effectiveness

Inherent risk vs. residual risk

Be ready to explain this concept in plain words:

  • Inherent risk: risk before controls are considered.
  • Control effectiveness: how well policies, systems, people, and oversight reduce risk.
  • Residual risk: risk that remains after controls.

A common exam trap is assuming a high-risk customer or product must always be rejected. A risk-based approach may allow the relationship if the institution can understand, monitor, document, and control the risk within its risk appetite.

Customer due diligence and onboarding readiness

Minimum reasoning tasks

Can you do the following?

  • Identify the customer and understand whether the customer is an individual, legal entity, trust, intermediary, or regulated institution.
  • Determine what information is needed to understand the customer’s purpose and expected account activity.
  • Recognize when beneficial ownership or control information is incomplete.
  • Compare customer-provided information to independent or reliable evidence where required.
  • Identify when enhanced due diligence is appropriate.
  • Explain why onboarding is not a one-time event; customer information must remain reasonably current.
  • Recognize when refusal to provide information is itself a risk indicator.
  • Document the rationale for onboarding, escalation, approval, or exit.

CDD file review checklist

File elementReview questionPossible concern
Customer identityIs the customer clearly identified and verified according to applicable procedures?Missing or inconsistent identity information
Business purposeIs there a plausible reason for the account or relationship?Vague purpose, inconsistent business description
Expected activityAre expected volumes, products, geographies, and counterparties documented?Monitoring cannot compare activity to baseline
Beneficial ownershipAre ultimate owners/controllers understood where required?Layered entities, nominees, bearer-like control, unexplained ownership
Source of fundsIs the origin of funds for transactions understood when risk warrants?Third-party funding, unexplained cash, circular transfers
Source of wealthIs the customer’s overall wealth origin understood when risk warrants?PEP wealth inconsistent with known income
Screening resultsAre sanctions, PEP, and adverse media results reviewed and dispositioned?Unresolved potential match
Risk ratingDoes the rating reflect facts, not assumptions?High-risk indicators overridden without rationale
ApprovalsWere required approvals obtained before activity?Backdated or missing approval
Ongoing monitoringIs refresh or review frequency appropriate for risk?Stale information for a higher-risk relationship

Enhanced due diligence readiness

Enhanced due diligence is not just “collect more documents.” It is a risk-focused effort to understand the relationship well enough to decide whether to accept, continue, restrict, or exit it.

Higher-risk scenarioWhat you should considerExam-ready decision cue
PEP or close associateRole, jurisdiction, source of wealth, source of funds, adverse media, corruption exposureHigher risk does not automatically mean suspicious, but it requires deeper review
Complex legal entityOwnership chain, control persons, business purpose, jurisdictions, nominee arrangementsComplexity without business rationale is a red flag
Correspondent bankingRespondent bank controls, regulatory environment, nested relationships, payable-through risksUnderstand who has access through the relationship
Private bankingWealth origin, relationship manager influence, high-value transactions, secrecy concernsStrong controls must counter relationship pressure
Nonprofit or charityPurpose, donors, beneficiaries, geographies, fund flow, governanceLegitimate activity can be abused for terrorist financing
Trade finance customerGoods, pricing, shipping route, counterparties, documents, sanctions exposureDocuments and transaction economics must make sense
Virtual asset exposureSource/destination, wallet or exchange risk, anonymity tools, blockchain analytics where usedTechnology changes the evidence, not the need for risk understanding
Cash-intensive businessCash volume vs. expected operations, location, seasonality, depositsCash alone is not suspicious; unexplained cash is

Transaction monitoring and alert investigation

From unusual activity to decision

    flowchart TD
	    A[Alert or unusual activity identified] --> B[Compare to customer profile and expected activity]
	    B --> C{Is there a reasonable explanation?}
	    C -->|Yes, supported| D[Document disposition and close or monitor]
	    C -->|Unclear or unsupported| E[Gather more information and review related activity]
	    E --> F{Does activity indicate suspicion or unresolved risk?}
	    F -->|Yes| G[Escalate according to procedures]
	    G --> H[Consider report filing under applicable rules]
	    F -->|No| I[Document rationale and any monitoring changes]
	    H --> J[Maintain confidentiality and avoid tipping off]

Alert review checklist

  • What triggered the alert?
  • Is the activity unusual for this customer, or only unusual in general?
  • What is the customer’s known business, occupation, source of funds, and expected activity?
  • Are there related accounts, counterparties, addresses, devices, beneficial owners, or employees?
  • Is activity structured, circular, rapid, unexplained, or inconsistent?
  • Are there sanctions, PEP, adverse media, or law enforcement concerns?
  • Has the customer provided a plausible and supported explanation?
  • Does the explanation match documents and transaction behavior?
  • Is escalation required under policy?
  • Is a suspicious activity report or similar report required under applicable rules?
  • Has the rationale been documented clearly enough for review by audit, regulators, or law enforcement?

Investigation evidence to recognize

Evidence typeWhat it can showCaution
Customer profileExpected activity and risk contextProfiles can become stale
Transaction historyPatterns, velocity, counterparties, changes over timeOne transaction rarely tells the full story
Account opening documentsStated purpose, occupation, ownership, controlCustomer-provided data may be incomplete
Public recordsBusiness status, litigation, licenses, addressesData may be outdated or mismatched
Adverse mediaAllegations, criminal links, reputational riskVerify relevance and identity match
Trade documentsGoods, route, price, parties, shipping detailsDocuments can be falsified or inconsistent
Screening resultsSanctions, PEP, watchlist, negative newsFalse positives need documented disposition
Internal referralsFront-line concerns or relationship manager observationsPressure to retain customer can bias judgment
Law enforcement requestsExternal investigative interestHandle through authorized channels only

Suspicious activity reporting readiness

You do not need to memorize a single universal reporting process for every jurisdiction unless your official study materials require it. You do need to understand the logic of suspicious activity reporting.

TaskReadiness check
Identify suspicionCan you distinguish unusual activity from suspicious activity?
Escalate internallyDo you know when a matter should move from alert review to investigation or compliance escalation?
Document rationaleCan you write why activity is or is not suspicious using facts, not conclusions?
Preserve confidentialityCan you identify tipping-off risk?
Meet applicable obligationsCan you recognize that reporting format, timing, and recipient depend on jurisdiction and procedure?
Continue monitoringCan you explain why filing a report may not end the risk management process?
Consider exit or restrictionCan you identify when the relationship may need restriction, closure, or enhanced monitoring?

Report narrative quality prompts

A strong suspicious activity narrative usually answers:

  • Who is involved?
  • What happened?
  • When did it occur?
  • Where did funds come from and go?
  • How was the activity conducted?
  • Why is it suspicious?
  • What supporting facts or documents exist?
  • What action did the institution take?

Avoid vague conclusions such as “customer appears suspicious” without explaining the facts that support the concern.

AML compliance program checklist

A CAMS candidate should be able to evaluate whether an AML program is designed and operating effectively.

Program componentWhat to reviewReady when you can identify…
GovernanceBoard or senior management oversight, risk appetite, accountabilityWeak oversight, unclear ownership, unsupported risk acceptance
Policies and proceduresWritten standards and operational stepsPolicy that says what to do but procedures do not explain how
Risk assessmentEnterprise, customer, product, geography, channel riskMissing methodology, outdated data, unsupported ratings
Customer due diligenceIdentification, verification, beneficial ownership, expected activityFiles that do not support monitoring or risk rating
Monitoring and screeningRules, alerts, sanctions screening, list management, tuningUnreviewed alerts, excessive false positives, poor escalation
ReportingSuspicious activity escalation and filing processLate, incomplete, or undocumented decisions
TrainingRole-based training, frequency, attendance, comprehensionGeneric training that misses high-risk roles
Independent testingAudit or review of design and operating effectivenessRepeat findings, weak remediation, no root-cause analysis
RecordkeepingRetention of required AML records and investigation documentationMissing evidence for key decisions
Third-party oversightVendor, correspondent, agent, or intermediary controlsOutsourced task without retained accountability
Management informationMetrics, trends, backlogs, quality, emerging risksReports that list activity but do not support decisions

Internal control failure cues

  • Alerts are closed with boilerplate language.
  • High-risk customers are not reviewed more closely than low-risk customers.
  • Sanctions potential matches are resolved by untrained staff.
  • Policies are current but business procedures are outdated.
  • Independent testing repeats the same findings year after year.
  • Relationship managers can override compliance decisions without documented approval.
  • Training completion is tracked, but effectiveness is not assessed.
  • Risk ratings are changed without evidence.
  • Backlogs are hidden by closing alerts without adequate review.
  • Customer exits are delayed despite unresolved high-risk concerns.

Typologies and red-flag scenario cues

Money laundering typologies

TypologyWhat it may look likeWhat to ask
Structuring or smurfingMultiple smaller transactions designed to avoid attention or reportingIs there a pattern inconsistent with legitimate need?
Funnel activityDeposits in multiple locations followed by rapid movement elsewhereWhy are funds collected and moved this way?
Rapid movement of fundsIncoming and outgoing transfers with little account purposeDoes the customer have a legitimate business reason?
Shell company misuseLegal entity with no clear business, employees, website, or operationsWho benefits and controls the entity?
Nominee arrangementsAccounts or entities controlled by someone other than the named partyIs the apparent owner acting for another person?
Trade-based money launderingOver/under-invoicing, false goods, unusual routes, mismatch between goods and businessDo documents, prices, and shipping details make commercial sense?
Real estate launderingHigh-value purchase, opaque ownership, third-party funds, unusual urgencyAre source of funds and beneficial ownership understood?
Casino or gaming misuseBuy-ins and cash-outs with little play, third-party fundingIs value being converted rather than gambled?
Professional facilitator misuseLawyers, accountants, agents, or formation companies obscure ownershipIs professional involvement legitimate or shielding the customer?
Virtual asset misuseUse of mixers, high-risk exchanges, darknet exposure, rapid conversionCan source, destination, and ownership be reasonably understood?

Terrorist financing and proliferation financing cues

Risk areaScenario cueKey distinction
Terrorist financingSmall transfers, nonprofit misuse, conflict-zone corridors, many donors, informal value transferFunds may be from legal or illegal sources
Proliferation financingFront companies, dual-use goods, complex shipping, sanctioned networks, evasive routingFocus on weapons-related procurement and sanctions evasion risk
Sanctions evasionIntermediaries, altered payment fields, vessel changes, ownership opacityScreening alone may not detect all evasion
Nonprofit abuseFunds diverted from stated charitable purposeLegitimate sector risk does not mean all nonprofits are suspicious

Sanctions, PEPs, and adverse media

Sanctions readiness

Be able to distinguish these concepts:

ConceptAML exam relevance
Sanctions screeningIdentifies potential prohibited or restricted parties, countries, vessels, or activity
Transaction monitoringDetects unusual or suspicious transaction behavior
False positivePotential match determined not to be the listed party after review
Confirmed or likely matchRequires escalation and action under applicable law and procedure
List managementEnsures screening uses current and appropriate sanctions data
EvasionAttempts to hide sanctioned involvement through intermediaries, ownership changes, or altered information

Checklist:

  • Can you explain why sanctions screening may occur at onboarding and during transactions?
  • Can you identify when a name match requires escalation rather than routine closure?
  • Can you evaluate aliases, date of birth, addresses, ownership, and identifiers?
  • Can you recognize sanctions evasion through third parties or shell companies?
  • Can you avoid treating sanctions review as the same process as suspicious activity investigation?
  • Can you explain why confidentiality and escalation procedures matter?

PEP and corruption-risk readiness

  • Know that PEP status is a risk factor, not automatic proof of wrongdoing.
  • Review source of wealth and source of funds logic.
  • Watch for public salary inconsistent with wealth or transaction volume.
  • Consider relatives, close associates, controlled entities, and intermediaries.
  • Connect PEP risk to bribery, corruption, procurement fraud, embezzlement, and sanctions exposure.
  • Understand why senior approval and ongoing monitoring may be relevant for higher-risk PEP relationships.

Product, service, and channel checks

Product or channelMain AML/CFT concernsControls to recognize
Retail bankingCash deposits, wires, structuring, mule activityCDD, transaction monitoring, branch referrals
Correspondent bankingNested relationships, foreign respondent risk, payable-through exposureEDD, respondent bank review, activity monitoring
Private bankingHigh-net-worth opacity, PEPs, relationship pressureSource of wealth, senior approval, enhanced review
Trade financeDocument manipulation, dual-use goods, sanctions, price anomaliesDocument review, sanctions screening, trade expertise
Money services and value transferHigh velocity, cross-border transfers, agent riskAgent oversight, transaction monitoring, licensing awareness where applicable
Securities and investmentsMarket manipulation proceeds, layering through accounts, beneficial ownership opacityCustomer risk review, surveillance coordination
InsuranceEarly surrender, third-party premium payments, policy loansBeneficial owner and payment review
Real estate financeOpaque ownership, third-party payments, high-value assetsSource of funds, beneficial ownership, professional intermediary review
Digital and non-face-to-face channelsIdentity fraud, synthetic identity, account takeover, mule networksStrong verification, device/IP analytics where used, monitoring
Virtual asset exposureAnonymity-enhancing tools, high-risk exchanges, rapid conversionWallet risk review, blockchain analytics where used, enhanced monitoring

International standards and cooperation

CAMS candidates should understand the purpose of international AML/CFT coordination without confusing global standards with one jurisdiction’s local rulebook.

AreaWhat to know
FATF-style standardsPromote risk-based AML/CFT controls, beneficial ownership transparency, suspicious transaction reporting, sanctions-related controls, and international cooperation
FIUsReceive, analyze, and disseminate financial intelligence reports according to jurisdictional frameworks
Supervisors and regulatorsExamine institutions, enforce compliance, and set expectations within their authority
Law enforcementInvestigates crimes and may request information through authorized channels
Cross-border cooperationHelps trace funds, share intelligence, and coordinate enforcement
Public-private information sharingCan improve detection but must follow legal and confidentiality constraints
High-risk jurisdictionsMay require enhanced scrutiny, risk mitigation, or restrictions depending on applicable guidance

Readiness prompts:

  • Can you explain why AML/CFT is coordinated internationally?
  • Can you distinguish a standard-setting body from a regulator, FIU, or law enforcement agency?
  • Can you identify why beneficial ownership transparency is important?
  • Can you explain how information sharing helps detect networks rather than isolated transactions?
  • Can you avoid assuming every country uses the same reports, deadlines, or thresholds?

Documentation and artifact checklist

For scenario questions, know what document or artifact supports the decision.

ArtifactWhat it supportsExam scenario use
Customer risk assessmentInitial and ongoing customer risk ratingDecide if EDD or monitoring changes are needed
Enterprise risk assessmentInstitution-wide risk understandingIdentify program gaps or control priorities
CDD recordCustomer identity, purpose, expected activityDetermine whether activity is inconsistent
Beneficial ownership recordOwnership and control transparencySpot hidden control or nominee concerns
EDD memoHigher-risk relationship rationaleSupport acceptance, continuation, or exit
Alert dispositionWhy an alert was closed or escalatedEvaluate documentation quality
Investigation case fileFacts, evidence, analysis, decisionsSupport report filing or no-filing rationale
Suspicious activity narrativeCommunicates suspected conduct to authoritiesAssess completeness and clarity
Sanctions hit dispositionShows how potential match was resolvedIdentify false-positive vs escalation handling
Training recordsDemonstrate staff training completion and coverageAssess program effectiveness
Independent testing reportIdentifies control weaknessesDetermine remediation priorities
Remediation planTracks corrective actionEvaluate whether findings are addressed

“Can you do this?” applied skills checklist

Mark each item Green, Yellow, or Red.

AML analysis

  • Identify the most important red flag in a fact pattern.
  • Distinguish suspicious activity from merely unusual activity.
  • Compare activity to the customer’s expected profile.
  • Explain why a transaction pattern suggests placement, layering, or integration.
  • Recognize when a customer explanation is plausible but unsupported.
  • Identify the next investigative step.
  • Decide when escalation is more appropriate than immediate closure.
  • Recognize tipping-off risk in customer communications.

Customer and risk management

  • Identify who the customer is in a layered ownership structure.
  • Determine whether beneficial ownership information is adequate.
  • Distinguish source of funds from source of wealth.
  • Identify EDD triggers.
  • Select appropriate controls for higher-risk customers.
  • Explain when ongoing monitoring should be adjusted.
  • Recognize when risk acceptance requires documented approval.
  • Identify when exiting a relationship may be appropriate.

Program and governance

  • Identify the core elements of an AML compliance program.
  • Recognize the difference between policy, procedure, and control.
  • Evaluate whether independent testing is effective.
  • Identify root causes behind repeated audit findings.
  • Explain why training should be role-based.
  • Assess whether monitoring rules align with risk assessment results.
  • Recognize vendor or third-party oversight risk.
  • Determine what management information would help senior leadership.

International and regulatory concepts

  • Explain the role of FIUs.
  • Describe why FATF-style standards matter.
  • Distinguish sanctions screening from AML transaction monitoring.
  • Recognize high-risk jurisdiction concerns.
  • Understand cross-border information-sharing constraints.
  • Apply confidentiality expectations in investigations and reporting.

Scenario decision-point checks

Use these mini-prompts to test judgment. For each one, decide the best next action and the reason.

Scenario cueBest-thinking direction
A long-time low-risk customer suddenly receives large wires from unrelated foreign companies and transfers funds out the same day.Compare to expected profile, review counterparties and purpose, escalate if unsupported.
A customer refuses to provide beneficial ownership information for a complex legal entity.Treat as a significant onboarding or continuation concern; follow escalation procedures.
A PEP has wealth inconsistent with known public income and uses offshore entities.Conduct EDD focused on source of wealth, source of funds, ownership, adverse media, and approvals.
A sanctions screening alert has a similar name but different date of birth and country.Disposition as false positive only if documented evidence supports it.
A branch employee reports that a customer asked how much cash can be deposited without a report.Consider structuring intent and escalate according to procedures.
Trade documents show goods inconsistent with the customer’s business and an unusual shipping route.Investigate trade-based money laundering and sanctions/proliferation concerns.
An investigator finds suspicious activity but a relationship manager asks to delay escalation to preserve the relationship.Follow AML procedures, document facts, and avoid improper influence.
A monitoring rule creates many false positives and analysts close alerts mechanically.Review tuning, data quality, risk coverage, and quality assurance.
A nonprofit sends funds to a conflict-zone region consistent with its mission but documentation is weak.Do not assume wrongdoing; assess governance, beneficiaries, fund flow, and supporting evidence.
A customer asks whether the bank filed a suspicious activity report.Avoid tipping off; follow approved communication procedures.

Common weak areas and traps

TrapWhy it is wrongBetter approach
Treating every high-risk customer as automatically suspiciousRisk is not the same as suspicionApply EDD and monitor based on facts
Memorizing red flags without contextRed flags require customer and transaction contextAsk whether activity is inconsistent, unexplained, or evasive
Confusing source of funds and source of wealthThey answer different questionsFunds: where transaction money came from; wealth: how overall wealth was generated
Assuming sanctions and AML alerts are handled the same waySanctions may require immediate specific action under applicable rulesEscalate potential sanctions matches according to procedure
Closing alerts because the customer gave an explanationExplanations must be plausible and supportedVerify against documents, profile, and transaction behavior
Overlooking beneficial ownershipLegal ownership may hide real controlLook for ultimate natural-person ownership or control under applicable rules
Ignoring geographyCountry risk can affect customer, product, and transaction riskConsider residence, incorporation, operation, counterparties, and routes
Believing policy equals control effectivenessA policy may exist but not operate effectivelyLook for evidence of implementation, testing, and remediation
Missing tipping-off riskDisclosure can compromise investigations and violate rulesUse approved internal and external communication channels
Looking at one transaction onlyLaundering often appears as a patternReview related accounts, counterparties, and time periods

Final-week CAMS review checklist

Content review

  • Re-read your official ACAMS CAMS study materials for areas marked Red or Yellow.
  • Review AML/CFT definitions until you can apply them without memorized wording.
  • Drill CDD, EDD, beneficial ownership, and risk-based approach scenarios.
  • Review suspicious activity investigation steps and documentation expectations.
  • Review sanctions, PEP, adverse media, and high-risk geography distinctions.
  • Revisit program governance: policies, controls, training, independent testing, and remediation.
  • Confirm any jurisdiction-specific reporting terms, deadlines, forms, or thresholds included in your assigned materials.

Practice review

  • Complete mixed practice sets rather than studying only one topic at a time.
  • For every missed question, write the reason:
    • Missed definition
    • Misread scenario
    • Chose a generic answer instead of the best AML action
    • Confused risk with suspicion
    • Ignored documentation or escalation
  • Re-answer missed questions after a delay.
  • Practice explaining why the correct answer is better than the second-best answer.
  • Build a one-page list of recurring weak terms, typologies, and decision rules.

Exam-readiness check

You are closer to ready when you can consistently:

  • Identify the AML risk in a short scenario within seconds.
  • Choose the best next step without overreacting or underreacting.
  • Explain how CDD supports monitoring and investigations.
  • Recognize when EDD, escalation, or reporting analysis is needed.
  • Distinguish sanctions, AML, fraud, and general compliance concerns.
  • Apply the risk-based approach instead of relying on absolutes.
  • Support decisions with documentation and confidentiality awareness.

Practical next step

Mark each section of this CAMS Exam Blueprint as Green, Yellow, or Red. Then use your Red and Yellow areas to guide targeted review, followed by timed mixed practice. Focus especially on scenario judgment: what the AML professional should do next, what evidence matters, and how the decision should be documented.