Free CISI CMP UK Reg Practice Questions: The Regulatory Environment

CISI means Chartered Institute for Securities & Investment. CMP means Capital Markets Programme, and this page is for the UK Financial Regulation unit. Use this focused CISI CMP UK Regulation page as a short practice test for The Regulatory Environment. The items are original Finance Prep sample exam questions built for scenario-based practice, not trivia, puzzle questions, official CISI questions, copied live-exam content, or exam dumps.

Topic snapshot

Sample questions

These are original Finance Prep practice questions aligned to this topic area. They are not official CISI questions, copied live-exam content, or exam dumps. Use them to preview question style and explanation depth before continuing with topic drills, mixed sets, and timed mock exams in Finance Prep.

Question 1

Topic: The Regulatory Environment

A retail investment platform has strong customer-service scores: calls are answered quickly and staff are rated as polite.

A compliance review finds that many first-time investors bought a complex structured product after seeing a banner saying “protected growth”. The main downside risk and early-exit cost appear only late in the online journey.

Which action best demonstrates treating customers fairly under high-level UK conduct expectations?

• A. Redesign the sales journey so key risks, costs, and the type of investor the product is designed for are clear before purchase, then monitor customer outcomes.
• B. Send a goodwill gift to investors who complain about the product’s performance.
• C. Keep the sales journey unchanged but train staff to use friendlier language in all calls and emails.
• D. Increase call-centre staffing so investors can speak to an agent more quickly after buying the product.

Best answer: A

What this tests: The Regulatory Environment

Explanation: Treating customers fairly is a regulatory conduct expectation about fair outcomes, not a general customer-service slogan. Polite staff and quick response times may improve service quality, but they do not fix a sales process that may cause customers to misunderstand material risks or costs. In this scenario, the concern is that first-time investors may be influenced by a headline while important product information appears too late. A fair-treatment response addresses the root conduct risk: clear, fair and not misleading information, appropriate product positioning, and monitoring whether customers are receiving good outcomes.

• Faster call handling improves convenience but does not address unclear risk and cost disclosure before purchase.
• Friendlier language is a service preference and does not correct a potentially misleading customer journey.
• A goodwill gift after complaints may appease some customers, but it does not prevent poor outcomes or improve the sales process.

Fair treatment focuses on customers receiving appropriate information and outcomes, not just polite or fast service.

Question 2

Topic: The Regulatory Environment

An FCA-authorised investment firm acts as principal for an appointed representative that introduces retail clients for investment services.

A review finds that the appointed representative:

• Uses locally drafted social media posts that the principal has not approved
• Keeps limited evidence that staff understand the products they introduce
• Sends the principal only a quarterly sales total, with no complaints, file-quality, or customer-outcome information

Which control action best addresses the supervision weakness?

• A. Treat the appointed representative as an independent authorised firm and review its performance only when sales volumes fall below target.
• B. Introduce risk-based oversight requiring approval of promotions, competence evidence, file testing, complaints and outcome MI, with restrictions on the appointed representative’s activity until weaknesses are remediated.
• C. Ask the appointed representative to add a disclaimer to all posts stating that it is responsible for its own regulatory compliance.
• D. Allow the appointed representative to continue unchanged, provided it sends the principal a signed annual confirmation that it follows FCA rules.

Best answer: B

What this tests: The Regulatory Environment

Explanation: A principal firm is responsible for the regulated activities carried on by its appointed representative. Effective oversight should cover the risks created by the representative’s business, including financial promotions, staff competence, customer treatment, complaints, and management information on outcomes. Where weaknesses are found, the principal should take proportionate remedial action, which may include enhanced monitoring, file reviews, training requirements, approval controls, and restricting activity until it is satisfied that clients and market integrity are protected. A disclaimer or contractual wording cannot transfer regulatory responsibility away from the principal.

• A disclaimer does not remove the principal’s responsibility for the appointed representative’s regulated activities.
• Treating the representative as an independent authorised firm ignores the appointed representative model and focuses on sales rather than conduct risk.
• Annual self-certification alone is too weak where there are known issues with promotions, competence evidence, and customer-outcome monitoring.

The principal remains responsible for the appointed representative’s regulated activities and must operate effective controls and monitoring, not merely rely on sales information.

Question 3

Topic: The Regulatory Environment

An FCA-authorised investment firm has doubled its client trading volumes over six months.

Board pack extract:

• Regulatory capital remains above the firm’s requirement, but only slightly above its internal early-warning trigger.
• Cash-flow forecasts assume continued sales growth and have not been stress-tested.
• Two client-asset reconciliations were completed late because one spreadsheet owner was absent.
• The board is being asked to approve a new client-acquisition campaign before hiring extra finance and operations staff.

Which senior management response best applies the relevant UK financial-regulation principle?

• A. Outsource the reconciliation process immediately so the board can focus on commercial strategy rather than operational control issues.
• B. Approve the campaign because higher revenue should increase the capital buffer and make later control improvements easier to fund.
• C. Continue trading as planned because the firm is still above its regulatory capital requirement and has not yet breached a rule.
• D. Approve growth only after the board has challenged financial-resource adequacy, strengthened governance and controls, and considered orderly continuity or wind-down planning.

Best answer: D

What this tests: The Regulatory Environment

Explanation: Prudential resilience is not just a point-in-time capital calculation. A regulated firm is expected to maintain adequate financial resources and to organise and control its affairs responsibly and effectively, with appropriate risk management systems. The facts show pressure on capital, unchallenged cash-flow assumptions, late reconciliations, reliance on a key individual, and a growth decision that could increase operational strain. Senior management should not treat regulatory compliance as satisfied merely because no formal breach has occurred. The board should challenge the firm’s financial position, ensure governance and controls are proportionate to the business, and consider whether the firm could continue services or wind down in an orderly way without avoidable client harm.

• Relying on future revenue is weak because sales growth may increase risk before capital and controls improve.
• Waiting for an actual breach ignores the preventive purpose of prudential standards and effective governance.
• Outsourcing may help operations, but it does not remove the board’s responsibility for oversight and control.

Regulated firms must maintain adequate financial resources and organise their affairs with effective governance, risk management, and controls so they remain resilient and protect clients.

Question 4

Topic: The Regulatory Environment

During supervisory planning, the UK authorities review a recognised clearing house used by several trading venues and a large PRA-authorised bank that is a major clearing member.

Findings:

• No retail client complaints have been received.
• A stress test shows that a prolonged outage at the clearing house could disrupt settlement across multiple markets.
• The outage could also create liquidity pressure for clearing members and transmit stress to other firms.

Which supervisory response best reflects the influence of financial stability objectives?

• A. Avoid supervisory intervention unless the clearing house has already failed, because financial stability supervision is mainly reactive.
• B. Defer action until affected retail clients complain, because consumer harm is the primary trigger for intervention.
• C. Limit the review to the bank’s marketing communications, because clear, fair and not misleading communications are the main stability concern.
• D. Prioritise remediation of the clearing house’s operational resilience, recovery planning, and member-risk controls because disruption could threaten critical market functions.

Best answer: D

What this tests: The Regulatory Environment

Explanation: Financial stability objectives require supervisors to look beyond immediate individual consumer complaints or single-firm conduct issues. A recognised clearing house and a major clearing member can transmit stress across markets if their critical services fail. Supervision therefore focuses on resilience, risk controls, recovery arrangements, and the continuity of critical market functions. This is especially relevant to the Bank of England’s role in financial stability and financial market infrastructure, and to PRA supervision of firms whose distress could affect the wider system.

• Waiting for complaints misunderstands financial stability supervision, which is forward-looking and concerned with systemic disruption.
• Marketing communications are important conduct issues, but they do not address the operational and liquidity risks described.
• Acting only after failure is inconsistent with preventive supervision of systemically important firms and infrastructure.

Financial stability supervision focuses on reducing systemic disruption to critical firms and market infrastructure, even before consumer complaints arise.

Question 5

Topic: The Regulatory Environment

An FCA-authorised investment manager is deciding whether to issue an annual certificate for an employee who will give personal recommendations to retail clients.

Compliance file:

• The employee was disciplined by a previous employer 18 months ago for breaching personal account dealing restrictions.
• He is a paid non-executive director and 8% shareholder of a listed company that may be included in portfolios recommended by his new team.
• He disclosed these matters verbally, but the business head wants him certified immediately because of staffing pressure.
• There is no FCA prohibition order and no criminal conviction.

What is the single best regulatory response?

• A. Treat the disciplinary history and outside directorship/shareholding as material to the fit and proper assessment; obtain evidence, document the conflicts assessment, and certify him only if the firm is satisfied that he is fit and controls are effective.
• B. Refuse certification permanently because any previous employer disciplinary finding automatically prevents the employee from performing a certification function.
• C. Issue the certificate now because the absence of an FCA prohibition order or criminal conviction means the employee is fit and proper.
• D. Issue the certificate if recommendations are made only from the firm’s approved list, because an approved list removes any personal conflict.

Best answer: A

What this tests: The Regulatory Environment

Explanation: Under the SM&CR Certification Regime, a firm must be satisfied that an employee performing a certification function is fit and proper before issuing a certificate. The assessment is not limited to criminal convictions or FCA prohibition orders. Relevant factors can include honesty, integrity, reputation, competence, capability, financial soundness, disciplinary history, and personal conflicts. A previous personal account dealing breach is relevant to integrity and willingness to follow conduct controls. A paid directorship and shareholding in a company connected with client recommendations creates a personal conflict and may require disclosure, recusal, restrictions, supervision, or other controls. These facts do not automatically bar the employee, but they must be investigated and documented before the firm allows him to perform the regulated role.

• Lack of an FCA ban or criminal conviction is not enough; firms must consider wider evidence of fitness and propriety.
• An approved product or investment list does not remove a personal financial interest or outside business conflict.
• A prior disciplinary matter is relevant, but it is not an automatic permanent bar; the firm must reach a reasoned decision based on the evidence.

The firm must make an evidence-based fitness and propriety decision before certification, and these facts may affect integrity, reputation, conflicts management, and compliance with personal account dealing controls.

Question 6

Topic: The Regulatory Environment

A UK FCA-authorised investment firm is considering a new online promotion for retail clients. The SMF16 compliance oversight function gives senior management a monthly MI pack with the following features:

• It shows revenue, trade volumes, new accounts opened, and average account-opening time.
• Complaint MI shows only the number of complaints closed, with no root-cause or client-outcome analysis.
• Overdue suitability file reviews and aged AML alerts are held on separate spreadsheets and are not summarised in the pack.
• Six financial-promotion exceptions from the previous campaign are marked remediated, but with no completion dates, evidence, or named owner.
• Most figures are seven weeks old when the launch decision is due.

Which is the single best assessment of the MI pack?

• A. Treat the MI as insufficient, because it lacks client-by-client files; the launch decision should wait until every underlying suitability and AML record is attached.
• B. Treat the MI as insufficient, because it lacks timely, reliable exception and outcome data, with action owners, needed to supervise the launch decision.
• C. Treat the MI as sufficient, because it gives monthly financial and activity indicators and compliance can answer detailed questions if challenged.
• D. Treat the MI as sufficient, provided the board minutes record that the campaign was discussed and the underlying policies are reviewed annually.

Best answer: B

What this tests: The Regulatory Environment

Explanation: Management information should enable senior management to supervise the business, challenge control effectiveness, and make regulatory decisions. It should be timely, accurate, relevant, and focused on material risks, trends, exceptions, client outcomes, and remediation status. In this case, the pack is weighted toward revenue and activity data. It omits or weakly reports several conduct and control indicators: overdue suitability reviews, aged AML alerts, poor complaint analysis, and unsupported financial-promotion remediation. The age of the data also reduces its usefulness for deciding whether to launch a new retail campaign. MI does not need to contain every underlying file, but it must summarise material issues in a way that allows informed challenge, ownership, and action.

• Financial and activity indicators alone do not show whether conduct risks and client outcomes are being managed.
• Board minutes and annual policy reviews do not cure missing current risk, exception, and remediation information.
• Attaching every client file is not necessary; effective MI should escalate material issues and trends in a usable format.

Senior management cannot make an informed regulatory and conduct-risk decision without current exception reporting, client-outcome analysis, evidence of remediation, and clear ownership.

Question 7

Topic: The Regulatory Environment

An FCA-authorised investment firm operates an execution-only online platform for retail clients.

Conduct MI:

• A recent rise in complaints says clients did not understand that a stop-loss order may execute at a much worse price in a fast-moving market.
• The risk is disclosed in the full terms and conditions, but it is not shown at the point where clients place the order.
• Order execution records show the orders were handled in line with the firm’s execution policy.
• The product team wants compliance to approve a new campaign promoting stop-loss orders as a way to “control downside risk”.

What is the best next step for compliance?

• A. Refer the matter directly to the FCA as a market abuse concern because clients suffered losses during fast-moving markets.
• B. Treat all affected clients as having received unsuitable advice and automatically compensate them before reviewing the communication.
• C. Use the complaint evidence to assess whether the communication supports client understanding, require clearer point-of-sale risk wording before approval, and monitor the outcome after release.
• D. Approve the campaign because the risk is already disclosed in the terms and conditions and execution records show the firm followed its order execution policy.

Best answer: C

What this tests: The Regulatory Environment

Explanation: High-level conduct standards require a firm to act in customers’ interests and deliver good outcomes, not merely rely on technically accurate but hard-to-find disclosure. Complaint MI is evidence that clients may not be understanding a material feature of the service. Even where execution was performed correctly, the firm should test whether the communication is fair, clear and not misleading, and whether it supports informed decisions. The next step is to address the customer-understanding issue before approving further promotion, document the reasoning, and monitor whether the change improves outcomes.

• Relying on terms and conditions skips the evidence from complaints and treats execution compliance as solving a communication problem.
• Referring the matter as market abuse uses the wrong escalation route; the facts point to client-understanding and fair-treatment concerns, not abusive trading behaviour.
• Automatic compensation for all clients happens too early and assumes unsuitable advice, even though the platform is described as execution-only and the immediate issue is communication quality.

Consumer Duty and fair treatment require the firm to act on complaint MI and ensure communications enable retail clients to understand material risks before proceeding.

Question 8

Topic: The Regulatory Environment

A UK MiFID investment firm plans to launch a higher-volume electronic execution service next month. The firm already has the relevant regulatory permission for the activity.

Before launch, the compliance manager notes that:

• Finance has not reassessed own funds or liquidity after the extra fixed costs.
• Operations has not completed testing of the outsourced trading platform.
• The senior manager responsible for operations has not yet reviewed the launch risk assessment.

What is the best next step before the service is launched?

• A. Wait until the next annual audit to review whether the new service affected the control environment.
• B. Escalate the matter to the responsible senior manager and governing body so the firm can evidence adequate prudential resources, governance, and controls before launch.
• C. Proceed with the launch because the firm already has the regulatory permission for the activity.
• D. Add a risk warning to client communications describing possible platform disruption.

Best answer: B

What this tests: The Regulatory Environment

Explanation: Prudential standards are not only about holding a minimum amount of capital. They support firm resilience by requiring a regulated firm to maintain adequate financial resources, effective governance, and sound systems and controls for the risks it is taking. A new high-volume service can increase operational risk, fixed costs, outsourcing reliance, and potential client harm if the firm fails. The proper process is to escalate the issue through senior management and the governing body before launch, so the firm can assess whether its resources and control environment remain adequate. Having permission for the regulated activity does not remove the need for ongoing prudential and governance oversight.

• Regulatory permission allows the activity, but it does not prove that the firm has adequate resources and controls for the new scale of activity.
• Annual audit review would happen too late because the risk exists before the service is launched.
• A client risk warning addresses communication risk, not the firm’s need to maintain financial resilience, governance, and operational controls.

The firm should confirm that its financial resources, oversight, and systems and controls remain adequate before taking on the additional operational and prudential risk.

Question 9

Topic: The Regulatory Environment

A UK investment firm is authorised by the FCA to arrange deals in investments for retail clients. It now wants to launch a discretionary portfolio management service.

Compliance review:

• The planned service is a regulated activity that is not within the firm’s current permissions.
• No clients have yet been accepted for the new service.
• There is no complaint, suspected market abuse, or client loss.

What is the best next regulatory step?

• A. Apply to the FCA for the appropriate variation of permission before providing the new service.
• B. Ask the Bank of England to make a rule permitting the firm to provide discretionary management.
• C. Wait for the FCA to identify the issue during supervision and then agree a remediation plan.
• D. Refer the matter to the Financial Ombudsman Service so it can decide whether the new service is fair to clients.

Best answer: A

What this tests: The Regulatory Environment

Explanation: A firm must have the correct regulatory permission before carrying on a regulated activity. In this fact pattern, the firm has identified a new activity before launch, so the immediate workflow point is authorisation: it should seek a variation of permission from the FCA. Supervision concerns ongoing monitoring of authorised firms, but it is not a substitute for obtaining the required permission. Enforcement would be relevant if the firm breached requirements, for example by carrying on the activity without permission. Redress routes, including the Financial Ombudsman Service, relate to complaints and consumer remedies, not approving a firm’s new business line. The Bank of England has important financial stability and market infrastructure roles, but it does not amend firm-specific permissions for an FCA-regulated investment service.

• FOS involvement would be premature because there is no complaint or redress issue.
• Waiting for supervision skips the required permissions check and could lead to unauthorised business.
• Bank of England rule-making is the wrong route for a firm-specific permission issue.

The issue is authorisation, so the firm must obtain the necessary FCA permission before carrying on the new regulated activity.

Question 10

Topic: The Regulatory Environment

A UK investment firm is reviewing a certified employee who gives personal recommendations to retail clients.

Monitoring findings:

• The employee holds the required exam passes and previously had a clean annual certification assessment.
• Three recent files for higher-risk corporate bond funds do not evidence the clients’ ability to bear losses or risk profile before the recommendations were made.
• No client loss, complaint, dishonesty, concealment, or failure to cooperate has been identified.
• The employee recently moved into this product area and had not completed product-specific competence sign-off.

What is the single best response by the firm?

• A. Allow the employee to continue advising without extra supervision because there has been no complaint, client loss, or dishonesty.
• B. Give only a general Conduct Rules refresher and wait until the next annual certification review to decide whether action is needed.
• C. Temporarily restrict the employee from advising on those products, require targeted retraining and supervised case review, and allow full activity only after competence is reassessed.
• D. Remove the employee permanently from all certified roles because any suitability file defect means the person is not fit and proper.

Best answer: C

What this tests: The Regulatory Environment

Explanation: A firm must ensure that individuals performing certified roles remain fit, proper, and competent for the activities they carry out. Here, the file defects are serious because they affect suitability information for retail clients, but the facts indicate a targeted competence issue rather than dishonesty or a wholesale integrity failure. The proportionate response is to protect clients immediately by restricting the activity, adding close supervision, requiring focused retraining, and reassessing competence before the employee resumes unsupervised advice in that product area. Removal is generally reserved for more serious concerns, such as dishonesty, deliberate misconduct, persistent failure after remediation, or an inability to meet the role requirements.

• Permanent removal is too severe on these facts because there is no evidence of dishonesty, concealment, or a wider fitness and propriety failure.
• Continuing without extra supervision ignores the client-protection risk created by incomplete suitability records.
• A general refresher and delayed review would not address the specific product competence gap or stop further unsuitable advice risk.

The facts point to a competence gap in a specific activity, so client protection requires restriction, supervision, retraining, and reassessment rather than immediate removal.

Continue in the web app

Use Finance Prep for interactive CISI CMP UK Regulation practice with mixed sets, timed mock exams, topic drills, explanations, and progress tracking.

Related focused pages

• Free CISI CMP UK Regulation Practice Exam
• Free CISI CMP UK Reg Practice Questions: Conduct of Business and Client Assets
• Free CISI CMP UK Reg Practice Questions: Enhancing Market Integrity
• Free CISI CMP UK Reg Practice Questions: Complaints and Redress

Practice next step

Use the Finance Prep web app above when you want interactive practice beyond this static page.