CGSS — ACAMS Certified Global Sanctions Specialist Scenario Practice Guide
Learn how to read CGSS sanctions scenarios, identify the decision point, and choose defensible answers from the facts.
This independent guide is for candidates preparing for the ACAMS Certified Global Sanctions Specialist, exam code CGSS. Scenario questions in sanctions compliance rarely reward a quick reaction to one familiar word. They usually require you to identify the parties, the sanctions nexus, the applicable control, and the best next action based on the facts provided.
Use this page as a final-review method for slowing down, organizing the scenario, and selecting the most defensible answer.
The core CGSS scenario habit
A strong sanctions answer is usually the one that can be defended with:
- The role of the institution or professional in the scenario
- The parties and ownership or control facts
- The transaction, product, service, shipment, or account activity involved
- The relevant sanctions nexus, such as a listed party, jurisdiction, sector, vessel, goods, service, or prohibited dealing
- The stage of the process: onboarding, screening, investigation, escalation, reporting, licensing, remediation, or ongoing monitoring
- The action that preserves compliance while avoiding unsupported assumptions
Before looking for the “right-sounding” answer, ask:
What decision is this scenario actually asking me to make?
That one question prevents you from treating every sanctions fact as if it requires the same response.
Read the scenario in two passes
First pass: identify the situation
On the first read, do not evaluate the answer choices yet. Build a basic picture.
Ask:
- Who is the institution or professional?
- Is this about a customer, counterparty, beneficial owner, vendor, shipper, vessel, intermediary bank, or third-party service provider?
- Is the activity already completed, pending, rejected, frozen, or still under review?
- Is the issue a sanctions screening alert, ownership/control concern, geographic exposure, trade finance concern, correspondent banking issue, license question, or program governance issue?
- Is the question asking for an immediate action, a risk assessment conclusion, a control improvement, or a documentation step?
A CGSS scenario may include many facts, but the decision point is often narrow.
Second pass: locate the decision trigger
On the second read, mark the facts that create the need for action. Look for trigger words and facts such as:
- A potential match to a sanctions list
- An owned or controlled entity relationship
- A sanctioned jurisdiction or restricted region
- Goods, technology, services, or sectors with restrictions
- Unusual routing, transshipment, vessel behavior, or payment structure
- A blocked, frozen, rejected, or pending transaction
- New sanctions that affect an existing relationship
- Inconsistent customer explanations
- Missing beneficial ownership or end-user information
- A request to proceed before compliance review is complete
The best answer should respond to the trigger, not to background noise.
Identify the client, account role, and compliance role
Sanctions scenarios often turn on “who is who.” Slow down and assign roles.
Separate the parties
List the actors mentally:
- Customer or account holder
- Beneficial owner or controlling person
- Authorized signer
- Counterparty
- Intermediary or correspondent bank
- Originator and beneficiary
- Vessel owner, operator, charterer, or cargo owner
- Supplier, buyer, end user, or consignee
- Affiliate, parent, subsidiary, branch, or agent
- Internal role, such as relationship manager, sanctions analyst, compliance officer, auditor, or senior management
Do not assume the named party is the only relevant party. Sanctions risk can arise through ownership, control, agency, facilitation, geography, product type, transaction path, or service provision.
Clarify your institution’s position
The correct action depends on the institution’s role. For example:
- A bank processing a payment must consider whether to pause, investigate, escalate, reject, freeze, or report according to applicable rules and policy.
- A trade finance team must understand parties, goods, routes, vessels, documents, and end use.
- A compliance officer reviewing a screening alert must decide whether the alert is a false positive, requires enhanced review, or should be escalated.
- A sanctions program manager may need to update controls, training, screening rules, governance, or testing after a regulatory change.
If the answer choice gives an action outside the role’s authority, be cautious. A relationship manager may provide information, but they usually should not independently override a sanctions concern.
Find the actual decision point
Many candidates read a scenario and immediately classify it as “sanctions,” then choose the harshest answer. That is not always defensible. CGSS-style reasoning requires matching the action to the question.
Common decision-point categories
Look for what the question is really asking.
“What is the best next step?”
Focus on sequence. The best next step is often the action that prevents prohibited activity while allowing the institution to gather, verify, escalate, or document facts.
Possible next steps may include:
- Stop or hold the activity pending review
- Gather missing ownership, end-user, vessel, route, or transaction details
- Escalate to sanctions compliance
- Conduct enhanced due diligence
- Review applicable sanctions restrictions and internal policy
- Seek legal or specialist review when licensing or jurisdictional interpretation is involved
- Document the decision and rationale
“What should the institution do before proceeding?”
The answer should address unresolved sanctions risk before execution. If screening, ownership information, or authorization is incomplete, proceeding first and resolving later is usually hard to defend.
“Which control is most appropriate?”
Move from the single transaction to the broader program. Think about:
- Customer and counterparty screening
- Beneficial ownership and control procedures
- List update processes
- Transaction monitoring and interdiction
- Trade finance document review
- Vessel and maritime risk indicators
- Escalation standards
- Independent testing
- Training for relevant staff
- Governance and management information
“What is the main sanctions risk?”
Identify the direct sanctions issue, not the most dramatic compliance concern. A scenario may mention AML risk, fraud risk, PEP exposure, reputational risk, and adverse media, but the exam question may be asking specifically about sanctions exposure.
“Which fact is most important?”
Prioritize facts that affect whether a transaction, relationship, or service is prohibited, restricted, reportable, licensable, or outside risk appetite.
Build a sanctions map before choosing
A useful way to read CGSS scenarios is to build a quick sanctions map.
Map the parties
Ask:
- Is any party listed or a potential list match?
- Is there an indirect connection through ownership or control?
- Are there subsidiaries, branches, affiliates, agents, or intermediaries?
- Is the customer acting for someone else?
- Are there missing or inconsistent beneficial ownership details?
Ownership and control rules vary by regime and policy. Do not invent a threshold if the scenario does not provide one. Use the facts given and apply the principle: ownership and control can extend sanctions risk beyond the named party.
Map the geography
Ask:
- Where are the parties located?
- Where are goods shipped from, through, and to?
- Where are services performed or received?
- Which currencies, banks, clearing routes, or booking locations create jurisdictional exposure?
- Does the scenario involve a sanctioned jurisdiction, restricted region, or higher-risk transshipment point?
A location fact matters most when it connects to the prohibited activity, applicable authority, or control requirement.
Map the activity
Ask:
- Is this onboarding, payment processing, securities activity, insurance, trade finance, correspondent banking, shipping, procurement, or advisory work?
- What product or service is being provided?
- Are goods, technology, sectors, services, or end uses relevant?
- Has the activity already occurred, or is it pending?
- Is the institution being asked to facilitate, finance, insure, clear, settle, advise, or otherwise support the activity?
Sanctions analysis is not only about names on lists. Activity-based restrictions, sectoral measures, and facilitation concerns can be central.
Map the timing
Ask:
- Did the sanctions change before or after the activity?
- Was the customer onboarded before new restrictions were issued?
- Is there a wind-down, license, exemption, or authorization issue mentioned?
- Has screening been updated with the latest information?
- Was the alert generated before the transaction was released?
Timing can determine whether the best answer is to pause, remediate, review existing exposure, notify affected teams, or update controls.
Separate relevant facts from distractors
A scenario may include facts that are true but not decisive. Treat each fact as useful only if it changes the compliance decision.
Facts that often matter
Prioritize facts such as:
- Exact or partial name match, date of birth, address, nationality, registration number, passport number, or vessel identifier
- Beneficial ownership, control, or acting-on-behalf-of information
- Direct or indirect involvement of a sanctioned party
- Jurisdiction, route, origin, destination, or place of service
- Goods, technology, sector, end use, or end user
- Transaction status, value date, release status, or settlement status
- License, authorization, exemption, or legal review status, if provided
- Internal policy requirements and escalation thresholds, if described
- Evidence of evasion, concealment, or inconsistent explanations
- Prior alert history and documented disposition, if relevant
Facts that may be background only
Do not overvalue facts unless they connect to the decision:
- The customer is profitable or long-standing
- The relationship manager says the client is “low risk”
- The amount is large but no sanctions nexus is present
- A country is generally high risk but not connected to the specific restriction in the scenario
- A name sounds familiar but identifiers do not support a match
- A party has adverse media unrelated to sanctions
- Senior management wants a quick decision
- The customer promises to provide documents later when the question asks what to do before processing
Background facts can add context, but the answer must rest on the facts that affect sanctions compliance.
Check authority, documentation, and escalation
Sanctions scenarios frequently test whether you know when to escalate and how to preserve a defensible record.
Authority questions
Ask:
- Who has authority to clear an alert?
- Who can decide that an apparent match is a false positive?
- Who approves escalation to legal, compliance, or management?
- Who can interpret a license or exemption?
- Who can approve continuation of a relationship after risk review?
- Who cannot override a sanctions control?
A strong answer respects separation of duties. Business pressure does not replace sanctions review.
Documentation questions
A defensible answer often includes documentation because sanctions decisions may later be reviewed by auditors, regulators, legal counsel, or management.
Useful documentation may include:
- Screening results and match analysis
- Identifiers used to clear or escalate an alert
- Beneficial ownership and control information
- Transaction documents and shipping records
- End-user or end-use information
- Licensing or authorization records, if applicable
- Escalation notes and decision rationale
- Evidence of reporting, rejection, freezing, or account action, where required by applicable rules and policy
If an answer says to clear, process, or close a case without documenting the rationale, compare it carefully against answers that preserve evidence and follow policy.
Look for risk fit, disclosure, and reporting clues
CGSS scenarios are not investment suitability questions, but they do require fit between the institution’s risk appetite, controls, and activity.
Product and service fit
Ask whether the institution’s product or service creates sanctions exposure that requires specific controls.
Examples:
- Trade finance may require review of parties, goods, documents, routes, vessels, insurers, and end users.
- Correspondent banking may require attention to nested relationships, payment transparency, and respondent-bank controls.
- Securities or capital markets activity may involve issuers, securities, beneficial ownership, custody, settlement, or sector restrictions.
- Insurance may involve insured parties, claims, vessels, cargo, locations, or prohibited services.
- Digital or remote channels may require effective screening, geolocation, and customer identity controls.
The best answer should fit the product. A generic KYC response may be incomplete if the scenario is really about trade documentation, vessel risk, or payment interdiction.
Disclosure and reporting clues
Some scenarios point toward reporting, notification, or communication requirements. Avoid inventing a specific filing rule not provided in the question, but recognize when the facts suggest the need to follow applicable reporting procedures.
Clues include:
- Assets or funds have been frozen or blocked
- A transaction was rejected because of sanctions concerns
- A true match has been identified
- A prohibited party or activity is confirmed
- A regulator, competent authority, or internal policy requires notification
- A license or authorization may be needed before activity can continue
If the scenario provides a policy or regulatory instruction, follow it. If it does not, choose the answer that escalates to the appropriate sanctions or legal function rather than making an unsupported legal conclusion.
Interpret common CGSS scenario settings
Screening alert scenario
A screening alert usually requires match analysis, not panic.
Read for:
- Name similarity
- Date of birth or incorporation date
- Address, country, nationality, registration number, or identification number
- Aliases and transliteration issues
- Role of the matched party
- Whether the transaction or account is pending
- Prior documented alert disposition
- Whether new information changes the prior conclusion
Defensible approach:
- If identifiers clearly do not match, document the false positive rationale according to policy.
- If identifiers are missing or conflicting, gather more information or escalate.
- If the match appears true or cannot be cleared, pause the activity and escalate through sanctions procedures.
Ownership or control scenario
These scenarios test whether you look past the named customer.
Read for:
- Parent companies, subsidiaries, affiliates, and nominees
- Beneficial owners and controlling persons
- Voting rights, management control, board control, or acting-on-behalf-of facts
- Recent ownership changes
- Missing or opaque ownership information
- Links to listed or restricted parties
Defensible approach:
- Do not rely only on the direct customer name.
- Determine whether ownership or control creates sanctions exposure under applicable rules and policy.
- Escalate unclear or indirect ownership concerns before onboarding or processing.
Trade finance or maritime scenario
Trade and maritime scenarios often include more facts than you need, but each document may reveal a different risk.
Read for:
- Applicant, beneficiary, buyer, seller, consignee, and end user
- Goods description and possible restricted use
- Origin, destination, transshipment, and ports
- Vessel name, ownership, operator, flag, and identifiers
- Insurance, freight forwarders, inspection companies, and other service providers
- Inconsistent bills of lading, invoices, certificates, or shipping documents
- Unusual route changes, AIS gaps, ship-to-ship transfers, or last-minute party changes, if mentioned
Defensible approach:
- Match the action to the uncertainty.
- If documents conflict or a high-risk sanctions indicator is present, do not treat the transaction as routine.
- Escalate for enhanced sanctions review before financing, confirming, paying, or releasing documents.
New sanctions or regulatory change scenario
These questions are about governance and implementation.
Read for:
- What changed
- Which customers, transactions, products, jurisdictions, or counterparties are affected
- Whether lists, rules, systems, and procedures have been updated
- Whether pending transactions require review
- Whether staff need guidance or training
- Whether existing relationships need reassessment
Defensible approach:
- Update relevant controls promptly.
- Review impacted exposure.
- Communicate changes to affected teams.
- Document implementation and decisions.
- Escalate complex interpretation questions to the appropriate function.
Evasion or circumvention scenario
Evasion scenarios require connecting behaviors to sanctions risk.
Read for:
- Opaque ownership
- Unusual intermediaries
- Last-minute changes to parties, vessels, routes, or payment instructions
- Requests to omit information
- Inconsistent invoices or shipping documents
- Use of shell companies or unrelated third parties
- Transactions inconsistent with the customer profile
- Attempts to route activity through a less obvious jurisdiction
Defensible approach:
- Treat suspicious patterns as a reason for enhanced review.
- Do not process solely because no exact list hit appears.
- Gather facts, preserve records, and escalate under sanctions and related financial crime procedures.
Choose the answer that fits the full scenario
When you move to the answer choices, compare each option against the full fact pattern.
Prefer answers that are complete and sequenced
A strong answer usually does more than name a concept. It states an action in the right order.
For example, a better answer may say:
- Pause the transaction, escalate the unresolved match to sanctions compliance, and document the review.
Rather than:
- File the alert away as low risk.
- Immediately terminate the customer without completing review.
- Ask the relationship manager to approve it.
- Process the transaction and review later.
The strongest answer is not always the most severe. It is the one that is proportionate, authorized, documented, and tied to the sanctions issue.
Eliminate answers that skip the control point
Be cautious with answers that:
- Proceed before resolving a sanctions concern
- Rely on customer assurances without verification
- Treat an indirect sanctions connection as irrelevant without analysis
- Allow business staff to override compliance
- Ignore ownership, control, geography, goods, or transaction path
- Choose reporting, blocking, rejection, or termination without enough facts when escalation is the proper next step
- Focus only on AML, fraud, or reputational risk when the question asks about sanctions
The issue is not whether the action sounds compliance-oriented. The issue is whether it follows from the facts.
Mini practice examples
Example 1: Similar-name screening alert
A payment alert shows a beneficiary name similar to a listed person. The date of birth, nationality, and address in the payment file differ from the listed party. Internal policy requires match rationale to be documented.
Best reasoning:
- The decision point is alert disposition.
- The relevant facts are identifiers, not the fact that the names sound similar.
- If the identifiers clearly distinguish the party, the defensible answer is to document the false positive rationale according to policy.
- If the question says identifiers are incomplete or inconsistent, escalation or additional information would be more defensible.
Example 2: Long-standing customer with new ownership
A long-standing corporate customer updates its ownership information. A new parent entity has a possible connection to a restricted party. The business team wants to continue processing payments because the customer has never caused a problem.
Best reasoning:
- The decision point is not customer loyalty. It is whether ownership or control changes sanctions exposure.
- The relevant facts are the ownership change and restricted-party connection.
- The defensible next step is to pause or restrict affected activity as appropriate under policy, obtain and verify ownership/control information, and escalate to sanctions compliance.
Example 3: Trade finance with route changes
A trade finance transaction includes a last-minute change in shipping route and an unfamiliar intermediary. No party is an exact list match, but documents are inconsistent and the new route introduces sanctions concerns.
Best reasoning:
- The decision point is whether to proceed with financing or conduct enhanced review.
- The absence of an exact list hit does not resolve activity-based or evasion risk.
- The defensible answer is to escalate for enhanced sanctions review and resolve document inconsistencies before proceeding.
Example 4: New sanctions affect existing accounts
A new sanctions measure is announced that may affect certain customers and pending transactions. Operations asks whether to continue processing until the next periodic review.
Best reasoning:
- The decision point is implementation of a sanctions change.
- Waiting for a normal review cycle may leave pending activity exposed.
- The defensible answer is to identify impacted relationships and transactions, update screening and procedures, communicate with relevant teams, and escalate interpretive issues.
Final-review checklist for CGSS scenarios
Before selecting your answer, confirm:
- Who is the institution or professional in the scenario?
- Who are the customer, counterparty, beneficial owner, intermediary, and end user?
- What activity is being requested or reviewed?
- Is the activity pending, completed, blocked, rejected, frozen, or under investigation?
- What is the sanctions nexus?
- Is the issue list-based, ownership/control-based, geographic, sectoral, product/service-based, maritime, trade-related, or evasion-related?
- What fact creates the need for action?
- Is more information needed before a conclusion can be reached?
- Who has authority to decide or escalate?
- What documentation should support the decision?
- Does the answer follow applicable policy and preserve compliance?
- Does the answer address the specific question, not just the general topic?
How to use this guide in practice
For final review, do short sets of CGSS scenario questions and force yourself to write a one-line decision point before looking at the answers. For each missed question, identify whether you misread the role, missed a sanctions nexus, skipped authority and documentation, or chose an action out of sequence.
Next, combine topic drills with timed mock exams. Use topic drills to strengthen weak areas such as screening, ownership/control, trade finance, maritime risk, reporting, and sanctions program governance. Use mock exams to practice reading under time pressure while still choosing the answer that is most defensible from the facts.