IIBF anti money laundering Guide: KYC, AML and CFT Exam

An anti money laundering framework is the backbone of the IIBF KYC/AML/CFT certificate, and understanding it cold is the single highest-yield investment you can make before exam day. In India, anti money laundering controls flow from the Prevention of Money Laundering Act, 2002 (PMLA), the global Financial Action Task Force (FATF) recommendations, and the Reserve Bank of India's Master Direction on Know Your Customer. This guide walks you through every concept the IIBF examiner loves to test — PMLA obligations, customer due diligence, FIU-IND reporting, politically exposed persons, trade-based laundering and the risk-based approach — in the exact order they build on one another.

The Legal Backbone: PMLA 2002 and FATF

The Prevention of Money Laundering Act, 2002 is the cornerstone statute every IIBF candidate must know. It criminalises the act of dealing with proceeds of crime — projecting tainted money as untainted — and casts wide obligations on "reporting entities" such as banks, NBFCs, payment system operators and intermediaries. Under PMLA, money laundering is classically described in three stages: placement (introducing illicit cash into the financial system), layering (moving it through complex transactions to obscure its origin) and integration (returning the cleaned funds to the economy as apparently legitimate wealth). Examiners frequently test which stage a given scenario describes.

The global standard-setter is the Financial Action Task Force, whose 40 Recommendations every member jurisdiction, including India, commits to implement. FATF's recommendations cover customer due diligence, record-keeping, suspicious transaction reporting, the regulation of designated non-financial businesses and professions, and mutual legal assistance. India's anti money laundering architecture is, in effect, FATF's recommendations translated into the PMLA and the RBI Master Direction. You can read the standards directly on the FATF website and the Indian regulatory position on the RBI portal. Combating the Financing of Terrorism (CFT) sits alongside anti money laundering because the same detection tools — KYC, transaction monitoring and reporting — are used to choke terror funds, even when the underlying money is legitimately sourced. For structured practice on these statutory provisions, work through the chapter-wise question bank on the IIBF mock tests.

Customer Due Diligence: CDD, EDD and KYC

Know Your Customer (KYC) is the operational heart of any anti money laundering programme. Customer Due Diligence (CDD) requires a reporting entity to identify the customer, verify identity using reliable independent documents (the Officially Valid Documents under the RBI Master Direction), identify the beneficial owner, and understand the purpose and intended nature of the business relationship. CDD is not a one-time event at onboarding; it is an ongoing duty that includes monitoring transactions to ensure they are consistent with the customer's known profile and risk category.

Where the money-laundering risk is higher, basic CDD is not enough and the entity must apply Enhanced Due Diligence (EDD). EDD is mandatory for high-risk customers, non-face-to-face onboarding, correspondent banking relationships, and politically exposed persons. It involves obtaining additional identity and source-of-funds information, securing senior-management approval before opening or continuing the relationship, and conducting more frequent ongoing monitoring. Conversely, for low-risk, well-documented customers, a reporting entity may apply Simplified Due Diligence. The classification of each customer into low, medium or high risk is the trigger that decides the depth of due diligence — a point the IIBF exam tests relentlessly. A robust anti money laundering culture treats CDD failures as the root cause of almost every laundering case. Reinforce this with the customer-acceptance and risk-categorisation modules in the CAIIB and certificate course material.

FIU-IND Reporting: STR, CTR and the Principal Officer

The Financial Intelligence Unit – India (FIU-IND) is the central national agency that receives, analyses and disseminates information about suspicious and high-value transactions. Every reporting entity must designate a Principal Officer responsible for filing reports to FIU-IND and a Designated Director accountable for overall compliance. Knowing the exact prescribed reports is high-yield: the Cash Transaction Report (CTR) covers cash transactions of more than ₹10 lakh, or integrally connected cash transactions aggregating above that threshold in a month, and is filed by the 15th of the succeeding month.

The Suspicious Transaction Report (STR) is filed within seven working days of a transaction (or attempted transaction) being concluded to be suspicious, regardless of amount. There is no minimum threshold for an STR — suspicion alone triggers it — and crucially, the customer must never be tipped off that an STR has been filed. Other prescribed reports include the Counterfeit Currency Report (CCR), the Non-Profit Organisation Transaction Report (NTR) and reports on cross-border wire transfers. A strong anti money laundering function tests staff continually on these thresholds and timelines. Drill the numbers using interactive flashcards on the IIBF match game and track the latest regulatory updates via IIBF news and circulars.

PEPs, Trade-Based Laundering and the Risk-Based Approach

Three advanced topics complete the anti money laundering syllabus. Politically Exposed Persons (PEPs) are individuals entrusted with prominent public functions in a foreign country — heads of state, senior politicians, senior judicial or military officials — along with their close family members and known associates. PEPs always attract Enhanced Due Diligence, including establishing the source of funds and wealth and obtaining senior-management sign-off, because their position creates a heightened risk of bribery and corruption proceeds.

Trade-Based Money Laundering (TBML) disguises the movement of value through the international trade system using techniques such as over- and under-invoicing of goods, multiple invoicing for a single shipment, and falsely describing the type or quality of goods. Because TBML hides in legitimate-looking trade documents, it is among the hardest typologies to detect and a favourite IIBF case-study theme. Finally, the entire modern framework rests on the Risk-Based Approach (RBA): instead of treating every customer identically, a reporting entity assesses its money-laundering and terrorist-financing risks across customers, products, geographies and delivery channels, then allocates its controls and monitoring intensity proportionately. The RBA is FATF Recommendation 1 and the philosophy underpinning the whole PMLA regime. Master these typologies with full-length practice papers on the IIBF test series and supplement with curated articles on the IIBF blog.

Frequently Asked Questions

A confident command of the anti money laundering framework — PMLA stages, FATF recommendations, CDD/EDD, FIU-IND reporting, PEPs, TBML and the risk-based approach — is exactly what separates a pass from a distinction in the IIBF KYC/AML/CFT exam. Don't just read these concepts; test them under timed conditions until the thresholds and definitions are automatic. Start your final revision now with the chapter-wise and full-length mock tests on the IIBF test series and walk into the exam hall ready to ace every anti money laundering scenario.