Skip to main content Skip to main content
Not investment advice. Educational reading. See Disclaimer.
L.2 · INTERMEDIATE · 5 MIN

Anti-Money Laundering (AML): The Red Flags You're Required to Spot

Anti-Money-Laundering (AML) compliance is the body of rules requiring financial institutions to detect and report transactions that look like money laundering. The legal substrate is the Bank Secrecy Act of 1970, dramatically expanded by the USA PATRIOT Act of 2001 after September 11. FINRA Rule 3310 turns this into specific obligations for broker-dealers: written AML programs, designated compliance officers, ongoing training, and independent testing. As a new advisor or analyst, you are not the AML officer -- but you are the first line of detection, and you have a personal obligation to escalate red flags you spot. The cost of missing them is not theoretical: firms pay nine-figure fines for systemic failures, and individuals can be charged for willful blindness. The cost of false positives is much lower: the SAR system is designed to encourage reporting, and good-faith filings are protected from civil liability.

Quiz · 5 questions ↓
§ 01

The top AML red flags new advisors should recognize on sight. (1) Structuring -- multiple cash deposits just under $10K, especially across consecutive days or branches. (2) Unexplained source of funds -- a client wires in $500K without ever discussing where it came from, and dodges the question. (3) Third-party transfers -- money arrives from or departs to accounts in names different from the client, with no documented business reason. (4) High-risk geographies -- funds routed through jurisdictions on the FATF grey list, or to/from sanctioned countries. (5) PEPs (Politically Exposed Persons) -- foreign government officials, their immediate families, and close associates; not illegal but require enhanced due diligence. (6) Inconsistency between KYC profile and activity -- a retiree with stated low income suddenly trading $100K daily. (7) Reluctance to provide documentation -- a client who balks at routine account-opening paperwork or refuses to explain a transaction. None of these alone is proof of a crime; each is a flag that triggers a closer look and a compliance-officer conversation.

§ 02

The 'no tipping off' rule is non-negotiable and personal. Once you have decided (or your compliance officer has decided) that a SAR is being filed, you do NOT tell the client. You do not hint, do not refuse the transaction in a way that signals you are reporting, do not change your normal pattern of communication in a way the client could read as a tell. Tipping off is itself a federal crime under 31 U.S.C. 5318(g) and exposes both you and the firm to criminal liability. If a client asks why a transaction is delayed, the standard answer is 'our compliance team is reviewing this transaction as part of our standard procedures' -- the truth without the tell. New advisors instinctively want to be helpful and transparent with clients; this is the one place that instinct must be overridden by the rule.

§ 03
Pull the most recent enforcement actions from FINRA's site (search 'FINRA enforcement AML' on finra.org). Pick one fine over $5M and read what specifically went wrong. The pattern is almost always: red flags were present, individual employees saw them, but the firm's escalation paths broke down and the SARs were never filed. Note how the regulator framed the firm's culpability -- not 'they were complicit in laundering' but 'they failed to maintain an adequate AML program.' That distinction is your job to prevent.
§ 04
A long-standing client deposits $25,000 in cash on a Monday. The deposit is clearly over the $10K threshold. The client has been with the firm for 8 years, the source of funds (a vehicle sale, with a notarized bill of sale provided unprompted) is well documented, and the deposit is consistent with the client's normal pattern of occasional large cash transactions from a small-business operation already disclosed in KYC. What filings are required?
§ 05

The AML system is built on two complementary defenses. Mechanical filings (CTR, OFAC blocks, CIP) are threshold-triggered and require no judgment -- they catch the obvious cases and create a paper trail regulators can audit. Judgment-based filings (SAR) catch the patterns that mechanical thresholds miss, especially structuring (which is engineered specifically to evade thresholds). Both are required; neither alone is sufficient. The new-advisor instinct is to think AML is the compliance officer's job -- it is, but the compliance officer can only file what the front line escalates. Your job is recognition and escalation; theirs is investigation and filing. The 30-minute training on red flags you get during onboarding is the most operationally important compliance content you will see all year -- treat it accordingly.

§ 06
Apply: a new prospective client is the daughter of a sitting cabinet minister of a foreign government. She is bringing a $3M account opening from inheritance. The KYC documentation is clean, the source of funds is well-explained (a documented family business sale a decade ago), and OFAC screening returns no hits. Is opening the account allowed, and what specifically is required?
§ 07

Going Deeper -- the AML failure modes that get firms fined. (1) The escalation gap: front-line staff saw the red flag, raised it informally, and the AML officer never got the formal report. Fix: written escalation templates, mandatory acknowledgment. (2) The training stale problem: AML training is annual, but the typology of laundering evolves faster (crypto on-ramps, NFT wash trading, third-party processors). Fix: scenario-based refreshers tied to recent FinCEN advisories. (3) The volume problem: large firms generate so many alerts that the queue becomes the bottleneck; legitimate SARs sit unfiled past the 30-day deadline. Fix: tiered triage and staffing tied to alert volume. (4) The relationship-protection instinct: a long-tenured advisor reluctant to flag a client they have known for 15 years. Fix: SAR-filing performance metrics that do not penalize for filings (good-faith filings are statutorily protected; the only AML metric that should hurt an advisor is failing to escalate). AI prompt for self-review: 'For this transaction, name three plausible legitimate explanations and three plausible suspicious explanations. Which set is better supported by the documentation, and what additional documentation would change the assessment?' The next module turns from the regulatory backdrop to the document that operationalizes a KYC into a real portfolio plan -- the Investment Policy Statement.

Five questions · AI feedback

Sit with the ideas.

A client deposits cash into their brokerage account on three consecutive business days: $9,500, $9,200, and $9,800. The total is $28,500 -- above the $10,000 single-day threshold for a Currency Transaction Report (CTR), but each individual deposit is below it. The client mentions casually that they 'split it up to avoid the paperwork.' What is the disciplined response under the Bank Secrecy Act and FINRA Rule 3310?

Why:

Other lessons in this course.

  1. 01Know Your Client (KYC): The First Conversation You Have
  2. 02Anti-Money Laundering (AML): The Red Flags You're Required to Spot— reading now
  3. 03The Investment Policy Statement (IPS): The Contract With Yourself
  4. 04Client Onboarding Workflow: From Lead to Funded Account
  5. 05Annual Reviews and Portfolio Drift Monitoring
  6. 06Difficult Client Conversations: Drawdowns, Risk Reassessment, Lifecycle
  7. 07Long-form Investment Memo Structure
  8. 08Catalysts and Downside Cases
  9. 09Valuation Triangulation
  10. 10Brainteasers and Quant Reasoning
See it on a real ticker →