All Exam Topic Areas

Question 1

Risk that a party to a transaction cannot provide the necessary funds as contracted for settlement to take place on the scheduled date.

Answer 1

Credit Risk

Question 2

Risk that a transaction is altered or delayed due to an unintentional error.

Answer 2

Operational Risk

Question 3

Risk that a payment transaction will be initiated or altered in an attempt to misdirect or misappropriate funds.

Answer 3

Fraud Risk

Question 4

Risk that the inability or unwillingness of one funds transfer system participant to settle its commitments will cause other participants to be unable to settle their commitments.

Answer 4

Systemic Risk

Question 5

Risk that occurs when a party to a transaction fails to comply, either knowingly or inadvertently, with payment system rules and policies, regulations and applicable U.S. and state law.

Answer 5

Compliance Risk

Question 6

Risk that occurs when an ODFI permits an Originator or Third-Party to use its routing number to send files directly to the ACH Operator.

Answer 6

Direct Access Risk

Question 7

Risk that occurs when a negative publicity regarding a financial institution’s business practices leads to a revenue loss or litigation.

Answer 7

Reputation Risk

Question 8

Risk that arises from a financial institution relying upon outside parties to perform services or activities on its behalf.

Answer 8

Third-Party Risk

Question 9

Risk that occurs from an institution’s failure to enact appropriate policies, procedures or controls to ensure it conforms to laws, regulations, contractual arrangements and other legally binding agreements and requirements.

Answer 9

Legal Risk

Question 10

Risk associated with foreign exchange.

Answer 10

Transaction Risk

Question 11

Current and potential risk to earnings or capital arising from a financial institution’s inability to settle an obligation for full value when it is due.

Answer 11

Liquidity Risk

Question 12

Risk might arise from making poor business decisions, from the substandard execution of decisions, from inadequate resource allocation or from failure to respond well to changes in the business environment.

Answer 12

Strategic Risk

Question 13

Risk that occurs because of theft from deposit accounts by way of multiple access points.

Answer 13

Cross-Channel Risk

Question 14

Risk to each party of a contract that the counterparty will not live up to its contractual obligations.

Answer 14

Counterparty Risk

Question 15

Process of planning, organizing, leading and controlling the activities of an organization to minimize the effects of risk on that organization.

Answer 15

Enterprise Risk Management (ERM)

Question 16

Voluntary private-sector organization formed in 1985 dedicated to improving the quality of financial reporting.

Answer 16

Committee of Sponsoring Organizations (COSO)

Question 17

Governs the provisions of intraday credit (daylight overdrafts) in accounts at the Reserve Banks.

Answer 17

Federal Reserve Board’s Payments System Risk (PSR) Policy

Question 18

Examples of operational risk with ACH payments.

Answer 18

(1) Missed transmission deadlines; (2) Hardware/software failures and loss of power; (3) Clerical errors; (4) Inadequate procedures; (5) Inadequate training

Question 19

Examples of operational risk with card payments.

Answer 19

(1) Processing risks; (2) Employee and/or service provider errors; (3) Hardware and software failure, including service provider

Question 20

Examples of operational risk with check payments processed through Remote Deposit Capture (RDC).

Answer 20

(1) Faulty equipment; (2) Inadequate procedures; (3) Inadequate training; (4) Poor image quality; (5) Resubmission of file or redeposit of physical items; (6) Technology-related issues, such as failure to maintain compatible and integrated IT systems; (7) Reliability of RDC vendor

Question 21

Examples of operational risk with wire payments.

Answer 21

(1) System failure caused by breakdown in hardware/software; (2) System disruption; (3) System compromise; (4) Inadequate procedures; (5) Inadequate training

Question 22

Examples of operational risk with emerging payments.

Answer 22

(1) Inadequate procedures; (2) Inadequate training; (3) Reliability of vendor; (4) Employee or end user errors

Question 23

Examples of fraud risk with ACH payments.

Answer 23

(1) Misappropriation of funds; (2) Misdirect payment; (3) Account takeover; (4) Business email compromise scam; (5) Vendor impersonation fraud

Question 24

Examples of fraud risk with card payments.

Answer 24

(1) Lost or stolen cards; (2) Phishing scams; (3) Skimmers; (4) Data breaches; (5) Counterfeit or altered cards; (6) Unauthorized use of a Cardholder’s card number for card-not-present transactions

Question 25

Examples of fraud risk with check payments.

Answer 25

(1) Lost or stolen checks; (2) Alteration of deposited items; (3) Forged or missing endorsement; (4) Deposit of counterfeit items; (5) Check kiting; (6) Redeposit of items/duplicate presentment through RDC; (7) Proper disposal of deposited items by RDC customers; (8) Insider fraud

Question 26

Examples of fraud risk with wire payments.

Answer 26

(1) Malware, spyware and viruses; (2) Business email compromise; (3) Money laundering; (4) Dishonest employees; (5) Lack of dual controls or segregation of duties

Question 27

Examples of fraud risk with emerging payments.

Answer 27

(1) Speed of processing; (2) Reduced reaction time to fraud; (3) Breaches/data security; (4) Malware, spyware and viruses

Question 28

Examples of credit risk with ACH credit payments.

Answer 28

(1) Originator fails to fund ODFI for credit entries initiated; (2) RDFI posted credit entry prior to Settlement Date

Question 29

Examples of credit risk with ACH debit payments.

Answer 29

(1) ODFI is unable to recover funds from Originator for returned debit entries; (2) RDFI is untimely in returning debit entries

Question 30

Maximum timeframe an ODFI is exposed to credit risk for ACH credit origination.

Answer 30

Up to two banking days

Question 31

Maximum timeframe an ODFI is exposed to credit risk for ACH debit origination.

Answer 31

(1) Up to 60 days from the Settlement Date for consumer Standard Entry Class (SEC) codes per the ACH Rules; (2) Up to 60 days from the consumer’s statement date per Regulation E

Question 32

Examples of credit risk with card payments.

Answer 32

(1) Merchant declares bankruptcy, commits fraud or is otherwise unable to pay its chargebacks causing the Acquiring Financial Institution to pay the Card Issuer; (2) With EMV, the Card Issuer may encounter credit risk due to fallback transactions

Question 33

Examples of credit risk with check payments.

Answer 33

(1) Bank of First Deposit (BOFD) credits the account holder provisionally and settlement does not occur for several days; (2) Paying Bank misses deadline for processing returns and adjustments

Question 34

Examples of credit risk with emerging payments.

Answer 34

(1) Failure or bankruptcy of entity initiating payment; (2) Funds availability prior to receiving final settlement; (3) Per-transaction dollar limits being set too high; (4) Funds unavailable to satisfy debit return

Question 35

Examples of credit risk with wire payments.

Answer 35

(1) Originating/Sender Bank makes an irrevocable payment on behalf of a customer through an extension of credit; (2) Beneficiary Bank does not post the payment properly

Question 36

Card payment system is governed by these rules and regulations.

Answer 36

(1) Regulation E; (2) Regulation Z; (3) Card Association Rules

Question 37

Wire payment system is governed by these rules and regulations.

Answer 37

(1) UCC 4A; (2) OFAC; (3) Bank Secrecy Act (BSA); (4) Regulation E, Subpart B; (5) Regulation J; (6) Regulation CC; (7) Federal Reserve Operating Circulars 1, 5 & 6

Question 38

Check payment system is governed by these rules and regulations.

Answer 38

(1) Regulation CC; (2) UCC Article 3; (3) UCC Article 4; (4) Regulation J, Subpart A; (5) Federal Reserve Bank Operating Circular 3; (6) ECCHO Rules

Question 39

ACH Network is governed by these rules and regulations.

Answer 39

(1) ACH Rules; (2) EFTA and Regulation E; (3) Regulation CC; (4) Regulation D; (5) 31 CFR Part 203, 208, 210 & 370; (6) UCC Articles 4 & 4A; (7) BSA/AML; (8) State EFT Acts; (9) FRB Operating Circular 4; (10) Private Sector ACH Operator Rules; (11) OFAC

Question 40

Emerging payments are governed by these rules and regulations.

Answer 40

Generally, these are ACH or card transactions; therefore, the respective payment system rules and regulations would apply.

Question 41

A company or individual that has been authorized by the Receiver to initiate either a credit or debit ACH entry to their account.

Answer 41

Originator

Question 42

An individual or company that has authorized an Originator to initiate an ACH entry to their account with the RDFI.

Answer 42

Receiver

Question 43

A financial institution that receives payment instructions from Originators and forwards the entries to the ACH Operator.

Answer 43

Originating Depository Financial Institution (ODFI)

Question 44

A financial institution that receives ACH entries from the ACH Operator and posts the entries to the accounts of its depositors.

Answer 44

Receiving Depository Financial Institution (RDFI)

Question 45

The central clearing facility for ACH transactions.

Answer 45

ACH Operator

Question 46

A third-party that processes ACH files and/or entries on behalf of financial institutions and/or Originators.

Answer 46

Third-Party Service Provider

Question 47

A third-party that provides ACH services to the Originator, and, in that capacity, acts as an intermediary between the Originator and ODFI.

Answer 47

Third-Party Sender

Question 48

An entity that issues a credit or debit card to the Cardholder.

Answer 48

Card Issuer

Question 49

The financial institution that contracts with a merchant to initiate payment requests to a card association or company in the context of credit and debit card payments.

Answer 49

Acquirer (Processor, Merchant Bank or Merchant Processor)

Question 50

A person or entity that is issued a credit or debit account that is accessed using a card.

Answer 50

Cardholder

Question 51

Network which provides switching facilities for the routing of credit, debit and ATM card transactions between Acquirers and Card Issuers

Answer 51

POS/ATM/Credit Card Network

Question 52

Financial institution identified by the routing number encoded on the MICR line of a check.

Answer 52

Paying Bank (Payor’s Depository Financial Institution)

Question 53

The party to whom a check is made payable.

Answer 53

Payee

Question 54

The first bank to which a check is deposited or transferred.

Answer 54

Bank of First Deposit (Payee’s Depository Financial Institution)

Question 55

The party obligated to pay on a check.

Answer 55

Payor (Check Writer, Maker or Drawer)

Question 56

A voluntary association of depository institutions that facilitate the clearing of checks or electronic items through the direct exchange of funds between members.

Answer 56

Clearing House

Question 57

Private depository institution, Bankers’ Bank or Federal Reserve Bank providing clearing or settlement services to a Paying Bank or Bank of First Deposit.

Answer 57

Correspondent Bank

Question 58

Financial institution that creates the image of the original check.

Answer 58

Truncating Bank

Question 59

Financial institution that produces the Substitute Check or Image Replacement Document (IRD).

Answer 59

Reconverting Bank

Question 60

Sender of the payment order in a funds or securities transfer.

Answer 60

Originator

Question 61

Financial institution that initiates a funds transfer on behalf of the Originator.

Answer 61

Originating/Sender Bank

Question 62

Entity that processes and settles Fedwire Funds.

Answer 62

Federal Reserve Bank

Question 63

Financial institution identified in a funds transfer to be credited pursuant to the payment order.

Answer 63

Beneficiary’s Bank

Question 64

Person or entity to be paid in a funds transfer.

Answer 64

Beneficiary

Question 65

Type of retail processing where a card payment is expected after the goods or services have been received; typically refers to credit payments (e.g., credit card).

Answer 65

Pay Later

Question 66

Type of retail processing where a card payment is expected when the goods or services are received; generally associated with debit payments (e.g., debit card).

Answer 66

Pay Now

Question 67

Type of retail processing where a card payment is made for goods or services with prepaid or stored-value cards.

Answer 67

Pay Before

Question 68

Delivery system that enables paper checks to be processed remotely.

Answer 68

Remote Deposit Capture (RDC

Question 69

Check created by a Payee based on the account holder’s authorization that does not bear a signature.

Answer 69

Remotely Created Check (RCC)

Question 70

A check that never appears in paper form.

Answer 70

Electronically Created Item (ECI)

Question 71

An entry to the record of an account to represent the transfer or removal of funds from the account.

Answer 71

Debit Entry

Question 72

An entry to the record of an account that represents the transfer or placement of funds into the account.

Answer 72

Credit Entry

Question 73

A payment card issued to a person for purchasing goods and services through an electronic transfer of funds from a demand deposit account rather than using cash, checks or drafts at the point-of-sale.

Answer 73

Debit Card

Question 74

A card indicating the holder has been granted a line of credit to make purchases or withdraw cash up to a prearranged ceiling.

Answer 74

Credit Card

Question 75

A card-based payment system that assigns a value to the card; some cards can be “reloaded” through various methods and others are designed to be discarded.

Answer 75

Prepaid/Stored Value Card

Question 76

A bank account established directly or indirectly by an employer on behalf of an employee to which an employee’s wages are electronically transferred to.

Answer 76

Payroll Card Account

Question 77

Global network messaging service supporting correspondent banking and financial market utilities.

Answer 77

SWIFT

Question 78

Multilateral systems that provide the infrastructure for transferring, clearing and settling payments, securities and other financial transactions among financial institutions or between financial institutions and the system.

Answer 78

Financial Market Utilities (FMUs)

Question 79

A set of specifications, standards or conventions that enable computer programs to exchange information.

Answer 79

Application Program Interface (API)

Question 80

Computer-to-computer exchange of business documents and payment-related information in a standard electronic format between business partners.

Answer 80

Electronic Data Interchange (EDI)

Question 81

Hosted service offering that acts as an intermediary between business partners to transmit data (i.e., business documents).

Answer 81

Value Added Network (VAN)

Question 82

An international standard-setting body composed of representatives from various national standards organizations.

Answer 82

International Organization for Standards (ISO)

Question 83

A type of database that is consensually shared and synchronized across nodes in a network spread across multiple sites, institutions or geographies.

Answer 83

Distributed Ledger Technology (DLT)

Question 84

Uses algorithms to enable transactions to be aggregated in blocks, which are added to a chain of existing blocks using a cryptographic signature.

Answer 84

Blockchain

Question 85

Total process required to identify, control and minimize the impact of uncertain events.

Answer 85

Risk Management

Question 86

Amount of risk, on a broad level, an entity is willing to accept in pursuit of value.

Answer 86

Risk Appetite

Question 87

Acceptable level of variation relative to achievement of a specific objective.

Answer 87

Risk Tolerance

Question 88

Overall process of risk identification, analysis and evaluation.

Answer 88

Risk Assessment

Question 89

Finding, recognizing and describing risks.

Answer 89

Risk Identification

Question 90

Process to comprehend the nature of risks and determine the level of risks.

Answer 90

Risk Analysis

Question 91

Process of comparing risk analysis results to determine if risk is at an acceptable level.

Answer 91

Risk Evaluation

Question 92

Process to determine the likelihood of an adverse event or threat occurring and the potential impact of such an event on the institution.

Answer 92

Risk Measurement

Question 93

Informed decision to accept or take a particular risk.

Answer 93

Risk Acceptance

Question 94

Risk is accepted as tolerable and falls within the risk appetite.

Answer 94

Risk Acceptance without Treatment

Question 95

Risks that are monitored and reviewed to ensure they remain within the risk appetite.

Answer 95

Risk Acceptance with Treatment

Question 96

Informed decision to withdraw from or not become involved with an activity to avoid exposure to unwanted or unacceptable risks.

Answer 96

Risk Avoidance

Question 97

Form of risk treatment involving an agreed-upon distribution of risk with other parties.

Answer 97

Risk Sharing

Question 98

Form of risk sharing that allocates risk equitably.

Answer 98

Risk Assignment

Question 99

Group of individuals that are elected as, or elected to act as, representatives of the stockholders to establish corporate management-related policies.

Answer 99

Board of Directors (Board)

Question 100

Highest-ranking executive in an organization responsible for making major corporate decisions, managing overall operations and resources, and acting as the main point of communication with the Board.

Answer 100

Chief Executive Officer (CEO)

Question 101

Group of individuals at the highest-levels of management of an organization who have the day-to-day tasks of managing the organization.

Answer 101

Senior Management Team (Executive Management, Management Team)

Question 102

Group of individuals that may elect directors of an organization, including the CEO and CFO, and benefit through dividends or share buybacks.

Answer 102

Shareholders

Question 103

Defines the course of action adopted for the sake of expediency and facilitation of objectives.

Answer 103

Policy

Question 104

Defines the manner in which an organization will proceed, perform or affect something to accomplish the objectives of a policy.

Answer 104

Procedures

Question 105

Method used to calculate the creditworthiness of an individual or business.

Answer 105

Credit Analysis

Question 106

Clear, written guidelines that set the terms and conditions for supplying services on credit, qualification criteria, procedures for making collections and steps to be taken in case of customer delinquency.

Answer 106

Credit Policy

Question 107

Process of reducing risks through the introduction of specific controls and risk transfer.

Answer 107

Risk Mitigation

Question 108

A comprehensive written plan to maintain or resume business in the event of a disruption.

Answer 108

Business Continuity Plan (BCP)

Question 109

Process of identifying the potential impact of uncontrolled, non-specific events on an institution’s business processes.

Answer 109

Business Impact Analysis (BIA)

Question 110

Comprehensive strategies to recover, resume and maintain all critical business functions.

Answer 110

Business Continuity Strategy

Question 111

Testing method ensures critical personnel from all areas are familiar with the business continuity plan (BCP) and may be used as an effective training tool.

Answer 111

Tabletop Exercise/Structured Walk-Through Test

Question 112

Testing method used to apply a specific event scenario to the business continuity plan (BCP).

Answer 112

Walk-Through Drill/Simulation Test

Question 113

Testing method involves actual mobilization of personnel to other sites attempting to establish communications and perform actual recovery processing as outlined in the business continuity plan (BCP).

Answer 113

Functional Drill/Parallel Test

Question 114

Testing method involves a simulated real-life emergency and all or portions of the business continuity plan (BCP) are implemented by processing data/transactions using back-up media at the recovery site.

Answer 114

Full-Interruption/Full-Scale Test

Question 115

Name the four steps included in business continuity planning (BCP).

Answer 115

(1) Business Impact Analysis; (2) Risk assessment; (3) Risk management; (4) Risk monitoring and testing

Question 116

Step in the BCP process that identifies the potential impact of uncontrolled, non-specific events on an institution’s business processes.

Answer 116

Business Impact Analysis

Question 117

Step in the BCP process that evaluates business processes and BIA assumptions using various threat scenarios.

Answer 117

Risk Assessment

Question 118

A technique used to internally assess the effectiveness of risk management and control processes.

Answer 118

Control Self-Assessment

Question 119

A plan that defines the action steps, involved resources and communication strategy upon identification of a threat or potential threat event, such as a breach in security protocol, power or telecommunications outage, severe weather or workplace violence.

Answer 119

Incident Response Plan

Question 120

A method used to mitigate credit risk, also required by the ACH Rules.

Answer 120

Exposure Limits

Question 121

Frequency in which a business continuity plan should be reviewed by internal or external auditors.

Answer 121

At least annually

Question 122

Frequency in which an enterprise-wide business continuity tests should be conducted.

Answer 122

At least annually, or more frequently depending on changes in the operating environment

Question 123

Controls to detect and/or prevent errors or misappropriations.

Answer 123

Financial Controls

Question 124

Controls that align with board-approved risk appetite and inform employees of management’s expectations.

Answer 124

Administrative Controls

Question 125

Controls that establish policies and procedures that reduce risk and ensure operating, reporting and compliance objectives are met.

Answer 125

Procedural Controls

Question 126

Controls to prevent and detect unauthorized activity.

Answer 126

Technical Controls

Question 127

Law to protect consumers purchasing financial products and services requiring that consumers have access to information that lets them choose the option they believe is best for their situation.

Answer 127

Unfair, Deceptive or Abusive Acts or Practices (UDAAP)

Question 128

Activity that is inconsistent with or deviating from what is usual, normal or expected.

Answer 128

Anomalous Activity

Question 129

Name the FTC’s “four Ps” for evaluating whether a representation, omission, act or practice is likely to mislead.

Answer 129

(1) Prominent - will the consumer notice the information; (2) Presented - is the format easy-to.understand; (3) Placement - is the information located where a consumer would expect to look; (4) Proximity - is the information close to the claim it qualifies

Question 130

Name the five steps in the vendor management life cycle according to the FFIEC.

Answer 130

(1) Planning; (2) Due Diligence in Vendor Selection; (3) Contract Negotiation; (4) Ongoing Monitoring; (5) Termination

Question 131

A mitigating technique designed to prevent an event from occurring.

Answer 131

Preventitive Control

Question 132

A test of an institution’s disaster recovery plan or BCP.

Answer 132

Business Continuity Test/Disaster Recovery Exercise

Question 133

A document based on the institution’s test scope and objectives and includes various test methods.

Answer 133

Test Plan

Question 134

A testing activity designed to validate the continuity of business transactions and the replication of associated data.

Answer 134

Transaction Testing

Question 135

Process by which an organization protects the creation, collection, storage, use, transmission and disposal of information.

Answer 135

Information Security

Question 136

Process of verifying the identity of an individual user, machine, software component or any other entity.

Answer 136

Authentication

Question 137

Something a person is, something a person knows or something a person has.

Answer 137

Authentication Factor

Question 138

Method to verify an identity using one type of authentication factor.

Answer 138

Single-Factor Authentication

Question 139

Method to verify an identity using two or more types of authentication factors.

Answer 139

Multifactor Authentication

Question 140

Use of different controls at different points in a transaction process.

Answer 140

Layered Security

Question 141

Name the authentication factor represented by a biometric characteristic, such as a fingerprint or iris pattern.

Answer 141

Something a Person Is

Question 142

Name the authentication factor represented by a password or PIN.

Answer 142

Something a Person Knows

Question 143

Name the authentication factor represented by an ATM/debit card, smart card or token.

Answer 143

Something a Person Has

Question 144

Challenge questions that do not rely on information that is publicly available.

Answer 144

Out-of-Wallet Questions

Question 145

Technique used to establish a “fingerprint identity” of a user’s computer or other web access device.

Answer 145

Device Identification

Question 146

Authentication technique that uses one-time cookies, PC configuration, IP address, geo-location and other factors.

Answer 146

Complex Device Identification

Question 147

A data security technique that encodes information so that data appears as a meaningless string of letters and symbols during delivery or transmission.

Answer 147

Encryption

Question 148

Disposal technique used to destroy sensitive, electronic data on devices by replacing it with new, random data.

Answer 148

Overwriting

Question 149

Disposal technique using powerful, varying magnetic fields to scramble data recorded on media.

Answer 149

Degaussing

Question 150

Two main types of access control.

Answer 150

(1) Physical access control, (2) Logical access control

Question 151

Access control that limits access to buildings, rooms and physical IT assets.

Answer 151

Physical Access Control

Question 152

Access control that limits connections to computer networks, system files and data.

Answer 152

Logical Access Control

Question 153

Security technique used to regulate who or what can view or use resources in a computing environment.

Answer 153

User Access Controls

Question 154

A weakness in automated system security procedures, administrative controls, physical layout, internal controls, etc., that could be exploited to gain unauthorized access to information or to disrupt critical processing.

Answer 154

Vulnerability

Question 155

5
Systematic examination of an information system or product to determine the adequacy of security measures and identify security deficiencies.

Answer 155

Vulnerability Anaylsis

Question 156

Systematic examination of systems to identify, quantify and prioritize the security deficiencies of the systems.

Answer 156

Vulnerability Assessment

Question 157

Payment system governed by the ACH Rules, UCC 4, UCC 4A, Electronic Fund Transfer Act, OFAC, Regulation E, The Right to Financial Privacy, Regulation D and Regulation CC.

Answer 157

ACH Network

Question 158

8

Payment system governed by UCC 4A, OFAC, Regulation J and Regulation CC.

Answer 158

Wire Transfer Payment System

Question 159

Payment system governed by the Electronic Fund Transfer Act, Regulation Z, Card Association Rules and Fair Credit Billing.

Answer 159

Card Payment System

Question 160

Payment system governed by the Expedited Funds Availability Act, UCC 3, UCC 4, OFAC, Regulation CC and Regulation J.

Answer 160

Check Payment System

Question 161

Implements the Expedited Funds Availability Act of 1987.

Answer 161

Regulation CC

Question 162

Transactions governed by UCC 4A.

Answer 162

Commercial wholesale credits, including wire transfers and CCD/CTX credits

Question 163

Governs the clearing and settlement of ACH credit and debit items by the Federal Reserve Banks, ODFIs and RDFIs.

Answer 163

Federal Reserve Bank Operating Circular 4 (OC 4)

Question 164

Provided for within the Debt Collection Improvement Act of 1996 requiring that virtually all non-tax related payments made by the federal government be made via electronic funds transfer.

Answer 164

The Electronic Funds Transfer (EFT) Mandate

Question 165

Governs check collection through the Federal Reserve Bank and wire transfer.

Answer 165

Regulation J

Question 166

Governs federal government payments made via the ACH Network.

Answer 166

Title 31 of the Code of Federal Regulations (CFR) Part 210

Question 167

Provides rules for financial institutions that use EFT to process federal tax payments through EFTPS.

Answer 167

Title 31 of the Code of Federal Regulation (CFR) Part 203

Question 168

Governs the handling of payments for the Bureau of Public Debt made through the ACH Network.

Answer 168

Title 31 of the Code of Federal Regulation (CFR) Part 370

Question 169

Establishes reserve requirements and identifies non-transaction accounts.

Answer 169

Regulation D

Question 170

Implements the Electronic Fund Transfer Act (EFTA).

Answer 170

Regulation E

Question 171

Designed to help consumers “comparison shop” for credit by requiring disclosures about terms and cost.

Answer 171

Regulation Z

Question 172

Administers economic sanctions and embargo programs that require assets and transactions involving the interest of targeted parties be blocked or frozen.

Answer 172

Office of Foreign Assets Control (OFAC)

Question 173

Any agreement, authorization, Written Statement of Unauthorized Debit or other record that requires signatures or similarly authenticated methods may use an electronic signature in conformity with the terms of this Act.

Answer 173

Electronic Signatures in Global and National Commerce Act (E-Sign Act)

Question 174

Primary source of rules for the commercial ACH Network defining obligations and liabilities of Participating DFIs.

Answer 174

Nacha Operating Rules (a.k.a. ACH Rules)

Question 175

Act, also known as the Financial Services Modernization Act of 1999, required federal banking agencies to establish information security standards for financial institutions.

Answer 175

Gramm-Leach-Bliley Act (GLBA)

Question 176

Act requires financial institutions to assist U.S. government agencies to detect and prevent money laundering.

Answer 176

Bank Secrecy Act (BSA)

Question 177

Act broadened the scope of the Bank Secrecy Act to focus on terrorist financing.

Answer 177

USA PATRIOT Act

Question 178

Program requiring financial institutions to verify the identity of a person seeking to open an account, to maintain records of the information used to verify an identity and to consult government known or suspected terrorist lists.

Answer 178

Customer Identification Program (CIP)

Question 179

Governs the treatment of a consumer’s non-public personal information by financial institutions.

Answer 179

Regulation P

Question 180

Defines a negotiable check and types of endorsements.

Answer 180

Uniform Commercial Code Article 3 (UCC 3)

Question 181

Governs check collection outside the Federal Reserve Bank.

Answer 181

Uniform Commercial Code Article 4 (UCC 4)

Question 182

Governs wholesale credit transfers, which include wired funds and CCD and CTX credit entries.

Answer 182

Uniform Commercial Code Article 4A (UCC 4A)

Question 183

Defines Federal Reserve Bank and financial institution responsibilities in clearing checks.

Answer 183

Federal Reserve Bank Operating Circular 3 (OC 3)

Question 184

Terms under which an institution may access certain services and applications provided by a Federal Reserve Bank and under which an institution may send or receive data from a Federal Reserve Bank by means of an electronic connection.

Answer 184

Federal Reserve Bank Operating Circular 5 (OC 5)

Question 185

Defines Federal Reserve Bank and financial institution responsibilities in transmitting funds transfers through the Fedwire Funds Service.

Answer 185

Federal Reserve Bank Operating Circular 6 (OC 6)

Question 186

Federal Reserve policy addressing the risks that payment systems present to the Federal Reserve Banks, the banking system and to other sectors of the economy.

Answer 186

Payments System Risk (PSR) Policy

Question 187

Reports required to be filed by the Bank Secrecy Act when a financial institution identifies or suspects fraudulent activity.

Answer 187

Suspicious Activity Report (SAR)