412-79v10 test format - Certified Security Analyst (ECSA) V10 Updated: 2023

The following questions are representative of the types of questions you will find on the CRCM (Certified Regulatory Compliance Manager) exam.

1.  A borrower has a right to rescind a loan agreement in all of the following situations except:

a. A line of credit used for the borrower's business, secured by the borrower's primary  dwelling
b. A revolving line of credit secured by the borrower's primary dwelling used to Excellerate the borrower's home
c. An increase of a line of credit from $5,000 to $10,000 secured by the borrower's primary dwelling
d. A loan to pay off a contract for a deed secured by the borrower's primary dwelling

2.  When opening a deposit account online, Regulation E disclosures MUST be provided at the time of account opening or: 

a. Before the first EFT occurs 
b. Along with the first periodic statement 
c. Within three business days of account opening 
d. Within three business days of a customer's request for the EFT service

3.  The primary responsibility for overseeing a bank’s inherent compliance risk should lie with which of the following?

a. Internal audit
b. Consumers
c. Board of Directors
d. Compliance officer

4.   A branch manager finds an unexplained $7,000 cash shortage in Teller #1's cash drawer. Which of the following actions must the bank take?

a. File a Currency Transaction Report (CTR) with the IRS
b. Discharge Teller #1 immediately
c. Send a notice of adverse action to the bank's federal regulator
d. File a Suspicious Activity Report (SAR)

5.  A compliance professional recently discovered the bank did not file and disclose an accurate covered agreement, as required by the CRA Sunshine Act. In order to ensure correct reporting in the future, what must be provided? 

a. All individual mortgage loans 
b. Grants or loans to fulfill CRA activity 
c. Non-public or confidential information that will be provided in the public file 
d. A copy of the agreement to the regulatory agency 24 months after the end of the term

Answer Key

1. a
2. a
3. c
4. d
5. b

Domains

The CTFA advisory board has determined that a competent trust advisor professional's expertise includes the following domains: 

• Fiduciary Principles and Applications
• Integrated Planning and Advice (Financial and Tax)
• Asset Management - Interaction of All Asset Types
• Administration of Trust Accounts
• Risk/Compliance Management
• Ethics
• Relationship Management

Please review the CTFA Examination Outline for additional details, as well as the FAQ Document and Webinar on test Changes.

Study Resources 

While ABA recommends these resources as appropriate examination preparation, ABA does not certain that you will pass the test by completing these educational programs or studying these materials alone. The CTFA test assesses not only your knowledge of the syllabus on the test outline, but also your application of that knowledge. You should refer frequently to the CTFA test Outline when preparing for the exam.

IMPORTANT NOTICE: The only legitimate resource for ABA’s certifications, including reference materials, are available on www.aba.com. Any other resources or guides related to ABA’s certification programs offered for sale on third party platforms such as Amazon and eBay is not authorized by the ABA and such purchases are at the buyer’s risk. While it is not illegal for publishers to write separate resources to potential customers, it can be difficult to determine the legitimacy of offers from these organizations, especially if they contain unauthorized uses of ABA’s federally protected logo. If you do not make your purchase with ABA directly, we will not be able to assist you in any capacity. Please contact ABA Customer Service at 1-800-BANKERS to be directed to a legitimate resource.

Exam Format, Scoring and Reporting

• 200 multiple-choice questions (see Sample Questions)
• Maximum 4 hour timeframe allowed
• The February test will only cover laws and regulations in effect through 12/31 of the prior year. All other exams will cover current laws and regulations.
• Calculators will be provided
• Instant "Pass/Fail" outcome provided for most computer based exams at test sites. Occasionally, instant outcomes are not provided while statistical analysis is conducted.
• Official score reports delivered via email within 6 weeks after the close of the test window 
• For full details, read the Certification test FAQs 

Ready to Apply?

Apply for the CTFA Exam

Have a Certifications account or retaking an exam? Log In
Need Help? View Application Video

Description:

This course reviews the knowledge and skills areas included on the CAP examination.The intent is to prepare an automation professional who meets the exam criteria to take the exam. The content is based on the Job Analysis Domains, Tasks, Knowledge Areas, and Skill Areas developed as the basis for the CAP certification exam.

For other training to help prepare for the CAP exam, see Training Resources.

You will be able to:

• Define the scope and format of the CAP exam
• Compare process variable measurements and control valve selections
• Discuss how the various types of control technologies are used in industrial automation, including process control from basic to advanced control, discrete, batch, motor and, motion control
• Identify the range of digital communications used in automation and how these are used in system integration
• Explain when safety instrumented systems (SISs) are needed and how they are specified
• Recognize the importance of electrical issues that relate to grounding and noise
• Apply the critical areas of automation opportunity identification and project justification
• Interpret the best practice methodology for automation project execution

You will cover:

• Field Devices: Pressure, Level, Temperature, and Flow Measurement | Analytical Measurement | Discrete Field Devices | Control Valves | Communication Concepts
• Control and Simulation: Response and Loop Characteristics | PID Control | Advanced Regulatory Control | Multi-variable Control | Distributed Control System | Control Strategy Design Steps | Documentation | Batch Control | Discrete Control | Drive Control | Motion Control
• Operator Interface and Alarm Management: Human Machine Interface (HMI) | Historical Data 
• Integration: Communications | Manufacturing Execution System (MES) | Network Security
• Safety, Reliability, and Electrical: Safety Instrumented Systems (SIS) | Hazardous Area Classification | Protection Techniques | Intrinsic Safety | Pressurized Enclosures | Grounding, Shielding, and Interference
• Maintenance Management: General Maintenance Activities | Maintenance Repair and Improvement | Computerized Maintenance Management | Manitenance Execution Responsibilities 
• Workflow and Project Leadership: Opportunity Identification and Project Justification | Communications and Team Processes

Classroom/Laboratory Exercises:

• Practice taking CAP exam-style questions

Course Resources (included with registration):

Textbook:

More Ways to Learn:

Want to learn more about the topic? Check out these resources.

Register Offline:

If you wish to register offline, get the Training Registration Form, complete, and return to ISA with your payment.

Not sure this course is for you?

A pre-instructional survey is available for you to evaluate your level of understanding of the course material and to show you the types of questions you'll be able to answer after completing the course.

For more information:

Contact us at +1 919-549-8411 or info@isa.org to start your company on the path to well-trained employees.

Biography

Michelle Tarbutton is an assistant teaching professor at CCI and teaches in the BS in Computing & Security Technology program, including cybersecurity, computer forensics and cloud security courses.

Tarbutton graduated cum laude with a MS in Cybersecurity from Drexel in 2018. During this time, Michelle served as team captain of the Drexel CyberDragons, helping the team to place 4th out of 28 teams at Regionals for the 2017 MidAtlantic Collegiate Cyber Defense Competition. Before earning her master's degree, Michelle worked in the IT industry for managed services providers and IT training camps. She also attended Drexel as an undergraduate student, graduating with a BSBA from LeBow College of Business, and received an athletic scholarship to play Division 1 tennis for the Dragons. Tarbutton holds many cybersecurity, forensics and Linux certifications including Certified Ethical Hacker, Security+, Forensic Toolkit ACE, Computer Hacking Forensics Investigator, and Linux+, among others.

Research Areas

Research Interests

Cybersecurity, Computer Forensics, Memory Forensics, Cyberterrorism

Academic Distinctions

• MS, Cybersecurity & Graduate Minor in Computer Science, Drexel University
• BSBA, Marketing, Drexel University

THE time is ripe to leapfrog the hybrid world to a cyber-secure economic future. And the CICC — Cybercrime Investigation and Coordinating Center — is the lead in this, in adopting a resilient strategy for the Philippine government. A cyber economic forum will be held on June 16 in celebration of ICT Month at the National Cybercrime Hub of the CICC. There will be six forums in the daylong event based on the six clusters of President Ferdinand Marcos Jr.'s public policy pronouncements on a progressive and economically cyber-secure Philippines. The venue itself, the National Cybercrime Hub (NCH) in the PNOC Complex at BGC, mirrors the mass-based governance of the President as headed by the chairman of the CICC Ivan Uy and the CICC executive director Alexander Ramos.

Among the noteworthy achievements is the training of more than 10,000 government officials in 230 units and agencies of the Philippine government. CICC is also the lead in the Ad Hoc Committee on Cybercrime at the United Nations initiating 55 technical cooperation bilaterals with member states. This is to secure the parity of skillsets of Filipino cyber and cyber technologists in the countries where the bilaterals were initiated, bringing new recognition to the Filipino workers abroad and new sources of income.

Indeed, the performance of the CICC is worth noting as in just one year of its assumption cybercrimes such as the CAAP outage were solved. The capture of Khalistan Tiger Force terrorists also was the work of the CICC-BI collaboration. One of the most accurate cases worth mentioning is the successful collaboration of CICC in solving the National Privacy Commission bomb threat. The capabilities of CICC housed in the NCH secure digital forensics and data infrastructure facility are as follows: the NCH is the non-public interfacing CII facility dedicated to assisting the national government offensive and defensive strategies with a physical collaboration space and network forum for anti-cybercrime professionals, institutions and stakeholders.

Houses 10 different digital forensics laboratories to support cybercrime response, resolve and focus on design and development (DD), implementation and operation (IO), intelligence (IN), oversight and governance (OG), protection and defense (PD) under which is cybercrime investigator, law enforcement/counterintelligence forensics analyst, and cyber defense forensics analyst, and the common fraud financial crimes, protection of critical infrastructure, online sexual abuse and exploitation of children (Osaec), computer data and systems intrusions, cyber terrorism.

There is also the IARC where CICC put up the public inter-phasing omni channel for reports and complaints, as well as monitoring the cases. This is reaching out to the masses as CICC's main focus is the general public first.

The community effort of DICT-CICC, summed up in the project title, Project Acuity, led by Secretary Uy, Usec Ramos, and managed by assistant secretary Mary Rose Magsaysay and her team, is a trifecta of strategy — connect-capacitate-confluence.

Conducting and discerning responsible use of technology as well as giving certification skills training for free to create new sources of income as well as to manage cybercrimes as a prevention tool. Prevention and detection for individuals and organizations in the community are translated as one of the 10 major languages of the Philippines.

Providing continuous resources and materials on cybercrime prevention, detection and resolve to participants via the CICC LMS app.

Established communication channels for reporting and responding to cybercrime incidents.

Facilitated collaboration between the communities, the CICC, stakeholders and other major agencies concerned for real time cyber governance and response.

Conducting responsible cyber hygiene for preventing cybercrime.

With all these, the Cyber Economic Forum at the National Cybercrime Hub signals a stronger, more cyber-resilient Philippines.

The author is the government's first Certified Chief Information Security Officer-C|CISO (EC-Council) + Certified Ethical Hacker C|EH V11 and the highest ranking female government official in cyber. She has five certifications from the Harvard Kennedy School.

Mumbai: On January 10, a directive was issued by Maharashtra Real Estate Regulatory Authority (MahaRERA) mandating all property agents to undergo an test and acquire a certificate from the authority to offer professional services before September 1, 2023. The authority also introduced a training programme to prepare realtors for this test – the idea being that the training and certification would promote consistent practices, Excellerate realtors’ knowledge of regulatory frameworks and ensure that agents are professionally qualified to assist home buyers. Although there is significant support for the initiative, a notable number of agents remain unaware of the certification requirement, and a considerable portion mistakenly assume that their existing MahaRERA certification exempts them from taking the exam. Moreover, the issue of a low passing grade raises concerns about the effectiveness and purpose of the entire process.

Earlier this year, MahaRERA reported that there are 5,756 stalled projects in the state. While under-construction projects offer cost advantages to buyers, fostering trust in the industry and the system is crucial to reinstating buyer confidence. The MahaRERA certification may, thus, be the need of the hour. Many of the realtors that HT spoke to were well aware of this.

The entire team at Nagarwalla Estates, with operations across Mumbai and its head office in Napeansea Road, has been training for the agents’ test through a 20-hour online course, and many of the agents have already appeared for it, says Karl Nagarwalla. “The test is mandatory for anyone in the industry who operates in or plans to operate in the primary sale market, i.e., transactions made directly with the developer – the certificate of completion will allow you to deal in ‘under construction’ properties,” Nagarwalla explains.

“Our business relies heavily on goodwill and relationships. And most of the buyers who come to us want ready properties, where they can see what they’re getting rather than having to wait for five years to do so,” says Nagarwalla, who shares that when it comes to primary sales the firm only works with select developers as they want to ensure that “buyers are secure”.

The MahaRERA directive has been welcomed by agents like these who feel the training programme and test will help them dive deep into the technicalities of the RERA Act.

Vinita Saxena, an independent broker with over two decades of experience, who specialises in high-ticket luxury properties and heritage properties, adds that the certification is particularly important in India as it’s an unorganised sector and “people start operating as brokers here almost on a whim.” This certificate is valid for five years, at the end of which the brokers have to sit for the test again.

But at least seven independent brokers HT spoke to – in Matunga, Mahim, Dadar and Bandra – said they had no idea about any such test or requirement. “I have my MahaRERA certification already; I received it two years ago, so I don’t need to do all this. This is for new entrants into the industry,” said one Mahim-based broker.

Santosh Hinduja, a realtor who has his head office in Opera House and focuses primarily on commercial real estate in and around that area told HT that the RERA-certification these brokers are referring to was very easy to get. “You had to fill a form with some basic KYC details and information about your practice and that was it. It was a registration process really, but it was also mandatory, and like with the current certification, it needed to be revalidated every five years.”

The new course curriculum – which has been chalked out by MahaRERA – includes an introduction to Real Estate (Regulation and Development) Act 2016 (RERA) and to MahaRERA, an understanding of the MahaRERA portal as well as the responsibilities of agents, allottees and promoters; it also spells out what due diligence is required when agents facilitate the sale of properties along with details of the sales process, the forms, agreements, and how real estate calculations are made.

Hinduja, who has yet to enroll for the training programme, is unfazed by this. “It will hold no surprises for those of us who have been actively working in the line,” he says.

The problem is that with a passing grade set at a low 40% and an test format based on multiple-choice questions, the test may pose no challenge for anyone at all. In fact, it is likely that most agents will pass easily, which could potentially undermine the value of the certificate.

But many, like Saxena, believe this initiative is a step in the right direction. “Agents will now have to be extra careful when they scrutinise the paperwork,” she says. “Equipped with all the necessary knowledge on the subject, they’d need to be absolutely sure of what they’re proposing to potential buyers – which is great,” says Saxena.