Try 10 focused CISI UK RPI questions on Financial Crime Regulatory Framework, with answers and explanations, then continue with Securities Prep.
| Field | Detail |
|---|---|
| Exam route | CISI UK RPI |
| Issuer | CISI |
| Topic area | Financial Crime Regulatory Framework |
| Blueprint weight | 18% |
| Page purpose | Focused sample questions before returning to mixed practice |
Use this page to isolate Financial Crime Regulatory Framework for CISI UK RPI. Work through the 10 questions first, then review the explanations and return to mixed practice in Securities Prep.
| Pass | What to do | What to record |
|---|---|---|
| First attempt | Answer without checking the explanation first. | The fact, rule, calculation, or judgment point that controlled your answer. |
| Review | Read the explanation even when you were correct. | Why the best answer is stronger than the closest distractor. |
| Repair | Repeat only missed or uncertain items after a short break. | The pattern behind misses, not the answer letter. |
| Transfer | Return to mixed practice once the topic feels stable. | Whether the same skill holds up when the topic is no longer obvious. |
Blueprint context: 18% of the practice outline. A focused topic score can overstate readiness if you recognize the pattern too quickly, so use it as repair work before timed mixed sets.
These questions are original Securities Prep practice items aligned to this topic area. They are designed for self-assessment and are not official exam questions.
Topic: Financial Crime Regulatory Framework
A corporate finance analyst at an FCA-authorised firm overhears a confidential discussion that Delta plc is about to receive a takeover offer. He had already planned to buy short-dated call options over Delta plc shares in his personal account that evening. Which response best applies professional integrity and correctly recognises the Criminal Justice Act 1993 position?
Best answer: C
What this tests: Financial Crime Regulatory Framework
Explanation: The best response is to avoid the personal trade and escalate the matter internally. Under the Criminal Justice Act 1993, insider-dealing offences are not limited to ordinary shares and can cover related instruments such as options over those shares.
The key point is that the analyst has inside information and is considering dealing in an instrument whose price would be affected by that information. Under the Criminal Justice Act 1993, insider-dealing offences include dealing while in possession of inside information, encouraging another person to deal, and improperly disclosing that information. The Act is not confined to buying or selling the underlying shares; related instruments such as options can also be within scope as price-affected securities. In these facts, acting with integrity means stopping the personal trade and escalating the issue to compliance through proper internal channels. Using someone else to trade or tipping a client would still expose the analyst to serious criminal and conduct risk.
Options over the affected shares can be caught by the Act, so the proper response is not to trade and to escalate internally.
Topic: Financial Crime Regulatory Framework
A new retail client opens a general investment account with an FCA-authorised firm. In branch, he asks to fund it with £14,500 in cash, paid in as three separate deposits over one week, and wants the money invested immediately. Which stage of money laundering is best illustrated by introducing the cash to the firm in this way?
Best answer: B
What this tests: Financial Crime Regulatory Framework
Explanation: This scenario shows placement because the key event is cash being paid into a regulated investment account. Splitting the money into several deposits may be suspicious, but it does not change the stage from initial entry into the financial system.
Placement is the stage where illicit money, often cash, first enters the financial system. In this scenario, the decisive fact is that a new retail client is trying to put £14,500 in cash into an investment account with an FCA-authorised firm. The use of three separate deposits may indicate structuring, but that is simply a method of carrying out placement.
The key distinction is that the stem focuses on first entry of cash, not later movement or reuse of the money.
This is placement because cash is being introduced into the regulated financial system for the first time, even though it is split into several deposits.
Topic: Financial Crime Regulatory Framework
A reconciliations analyst at an FCA-authorised investment platform serving retail clients is told by her operations manager to move an unreconciled client-money shortfall into a firm suspense account before month-end. The same manager signs the platform’s CASS attestations and tells her not to involve compliance. What is the single best action?
Best answer: D
What this tests: Financial Crime Regulatory Framework
Explanation: The best answer is to use the firm’s internal speaking-up or whistleblowing arrangements. The concern is serious, relates to client money, and involves the manager who controls the normal escalation route, so it should be raised confidentially outside that chain.
Internal speaking-up arrangements are designed for situations where an employee has a serious compliance or conduct concern, especially where local management may be involved or is discouraging escalation. Here, the issue concerns a possible concealment of a client-money shortfall, which creates potential customer harm and a CASS concern. Because the operations manager signs the relevant attestations and has told the analyst not to involve compliance, relying on the normal line-management route is unsafe.
A firm’s whistleblowing arrangements should allow concerns like this to be raised independently and confidentially, with oversight of the framework by the whistleblower’s champion. Waiting for an audit or treating the matter as a customer complaint would not address the immediate internal misconduct risk. The key takeaway is that speaking-up channels are most important when the usual reporting line is compromised.
Because the concern involves possible concealment of a client-money issue by the manager in the normal reporting line, it should be raised through confidential speaking-up arrangements.
Topic: Financial Crime Regulatory Framework
A broker is acting on a possible secondary share placing for a UK listed company. Before any public announcement, a salesperson wants to call two fund managers to gauge support and may mention the likely deal size and launch timing. He says this is just relationship marketing. What is the best next step?
Best answer: C
What this tests: Financial Crime Regulatory Framework
Explanation: This is not ordinary marketing. The purpose is to test investor appetite for an unannounced transaction and the caller may disclose non-public deal details, so the firm should treat it as a market sounding and apply its formal pre-contact controls.
Under UK MAR, a communication made to gauge investor interest in a possible transaction before it is announced can be a market sounding, especially where non-public facts such as likely size or timing may be disclosed. That makes this a market-abuse-control issue, not merely a marketing or relationship-management call.
Ordinary financial-promotion approval is the closest distractor, but it is not enough on these facts because the communication concerns an unannounced deal, not a public marketing message.
Testing appetite for an unannounced deal using non-public details is a market sounding, so pre-call market-sounding controls must apply.
Topic: Financial Crime Regulatory Framework
At a UK wealth manager, Priya accidentally opens a shared folder containing details of an unannounced takeover offer for a UK listed company because access permissions were set incorrectly. She closes the file, does not trade or tell anyone, and immediately informs Compliance. Which action by her manager best applies the principle of integrity and correctly classifies the issue?
Best answer: C
What this tests: Financial Crime Regulatory Framework
Explanation: The key issue is poor control of inside information, not completed insider dealing, because Priya neither dealt nor disclosed the information. Acting with integrity means escalating the breach at once, preserving confidentiality and preventing any trading or further circulation.
An unannounced takeover offer for a listed company is classic inside information because it is non-public, specific and likely to affect the price if released. In this scenario, Priya accidentally saw the information but then acted properly: she stopped reading, did not trade, did not pass it on and alerted Compliance. That means the event is best treated as a failure of information controls creating market-abuse risk, rather than insider dealing itself. A manager acting with integrity should contain the breach, ensure no dealing takes place, preserve confidentiality and let Compliance assess who has been exposed and what controls are needed. The closest trap is assuming there is no regulatory issue until a trade happens, but firms must manage inside information before misuse occurs.
Accidental access to inside information is not itself insider dealing, so the proper response is to contain the control failure and prevent any misuse.
Topic: Financial Crime Regulatory Framework
An adviser tells his line manager: “My brother works at a UK-listed company and says tomorrow’s profit warning will be much worse than the market expects. I will not trade the shares myself, but can my wife buy put options today?” What is the firm’s best next step?
Best answer: D
What this tests: Financial Crime Regulatory Framework
Explanation: The manager should stop any dealing and escalate immediately to the firm’s Compliance or market-abuse function. Under the Criminal Justice Act 1993, insider dealing can include encouraging another person to deal, and share options are covered instruments.
The core issue is suspected insider dealing under the Criminal Justice Act 1993. The adviser has received non-public, price-sensitive information and wants his wife to buy put options before the announcement. That can engage the Act because the offences are not limited to dealing personally in shares; they also include encouraging another person to deal and improper disclosure of inside information. Options over shares are covered instruments, so using a spouse’s account does not avoid the risk.
In a firm process, the immediate step is to prevent any dealing or tipping, retain the evidence, and escalate straight to the Compliance or market-abuse function so restrictions and further action can be considered. Waiting for a trade or sending it first through the AML route skips the primary control response.
Encouraging a spouse to trade share options using inside information may amount to insider dealing under the Criminal Justice Act 1993, so the matter should be stopped and escalated at once.
Topic: Financial Crime Regulatory Framework
A UK retail investment firm advises retail clients on ISAs and unit trusts. It accepts subscriptions only by bank transfer and does not handle cash. During an AML review, the compliance officer finds staff training focused almost entirely on drug trafficking and terrorism. What is the single best response?
Best answer: A
What this tests: Financial Crime Regulatory Framework
Explanation: The best response is to widen the firm’s AML framework. Under UK law, money laundering can involve criminal property from any crime, so a firm’s controls, monitoring and staff training must not be restricted to drugs, terrorism or other selected offences.
The core concept is that money laundering is not tied to a small set of underlying crimes. Under the UK framework, criminal property may derive from any criminal conduct, so an AML control environment must be broad and risk-based. In this scenario, a retail investment firm that only accepts bank transfers and does not handle cash still faces laundering risk, because electronic payments and investment accounts can be used to move or disguise criminal property.
A sound response is to ensure staff are trained to recognise indicators linked to a wide range of predicate offences, such as fraud, theft, tax crime or bribery, and to escalate concerns appropriately. Narrow training creates blind spots and weakens monitoring. The closest distractors wrongly assume that banked money or a cash-free model removes the firm’s own AML responsibility.
Money laundering can involve the proceeds of any criminal conduct, so controls must not be limited to a narrow list of offences.
Topic: Financial Crime Regulatory Framework
Which of the following is a money-laundering offence under UK law, rather than a weakness in AML training, monitoring, governance, or systems and controls?
Best answer: D
What this tests: Financial Crime Regulatory Framework
Explanation: A money-laundering offence involves dealing with criminal property, such as concealing it, transferring it, or helping another person retain or use it. By contrast, weak training, monitoring, or governance are control failings that may breach regulatory requirements but are not themselves principal laundering offences.
The key distinction is between criminal conduct involving criminal property and deficiencies in a firm’s AML framework. Under UK law, principal money-laundering offences include actions such as concealing, converting, transferring, acquiring, using, possessing, or entering into arrangements that facilitate another person’s retention or use of criminal property. That is why facilitating another person’s use of criminal property is the correct answer.
By contrast, poor staff training, weak transaction monitoring, and unclear governance are failures in AML systems and controls. These can be serious regulatory breaches and may increase financial-crime risk, but they are not, by themselves, the substantive act of money laundering. The deciding point is whether the conduct directly involves criminal property.
This is a principal money-laundering offence because it involves facilitating another person’s retention or use of criminal property.
Topic: Financial Crime Regulatory Framework
An FCA-authorised advisory firm serves retail clients. A paraplanner receives a WhatsApp message from a colleague saying, “Tell two clients to buy shares in a UK-listed small cap now; a strong trading update will be announced at 2 pm.” The colleague says the information came from a friend at the issuer and has not been made public. What is the single best assessment of acting on this message?
Best answer: D
What this tests: Financial Crime Regulatory Framework
Explanation: The message refers to non-public, price-sensitive information from the issuer, so using it to advise clients would likely amount to market abuse under UK MAR. Ethically, it gives selected clients an unfair advantage, damages confidence in price formation, and exposes clients, staff, and the firm to serious consequences.
The core concept is that market abuse damages both individual investors and the integrity of the market as a whole. Here, the information is non-public and clearly price-sensitive, so recommending that retail clients buy before the announcement would likely involve insider dealing or unlawful disclosure under UK MAR. That is unethical because it lets a small group benefit from information unavailable to the rest of the market, undermining fair price formation and trust in the system. It can also harm the clients who act on the tip, because they may become involved in misconduct even if they believe they are simply receiving good service. FCA action, disciplinary consequences, and potentially criminal sanctions can follow. Record-keeping or risk warnings do not cure the misuse of inside information.
Using inside information to recommend trades is likely market abuse and is unethical because it undermines fair, orderly markets.
Topic: Financial Crime Regulatory Framework
A UK investment adviser stores client records with an external cloud provider. The provider discovers that, due to a configuration error, 300 client files containing names, addresses, National Insurance numbers and portfolio values were accessible to unauthorised users for several hours, and it informs the adviser immediately. The adviser is the data controller, the provider is the data processor, and firm policy states that any reportable breach must be notified to the ICO within 72 hours of awareness. What is the best next step for the adviser?
Best answer: B
What this tests: Financial Crime Regulatory Framework
Explanation: Because the adviser is the data controller, it is responsible for the breach response after the processor notifies it. The correct process is to escalate internally at once, contain and assess the incident, document it, and then decide whether ICO notification is required within the stated 72-hour period.
The core concept is the difference between controller and processor responsibilities in a personal data breach. A processor must notify the controller without undue delay after becoming aware of a breach, but the controller remains responsible for assessing the risk to individuals’ rights and freedoms, recording the incident, taking containment steps, and deciding whether the ICO must be notified. In this scenario, the cloud provider has already done its initial duty by informing the adviser promptly. The adviser must now follow its own breach process through the appropriate internal data protection or compliance escalation route so it can make a timely reporting decision.
The provider does not take over the controller’s legal reporting duty, and the FCA is not the primary breach-reporting channel for a data protection incident. Waiting for proven loss would delay the required assessment and could itself be a compliance failure.
As data controller, the adviser must own the breach assessment and reporting decision once the processor has alerted it.
Use the CISI UK RPI Practice Test page for the full Securities Prep route, mixed-topic practice, timed mock exams, explanations, and web/mobile app access.
Read the CISI UK RPI guide on SecuritiesMastery.com, then return to Securities Prep for timed practice.