Certified in Production and Inventory Management (CPIM)

Correct: Under the Conflict of Interest Obligation of Regulation Best Interest (and related FINRA conduct rules), broker-dealers are required to establish and enforce written policies and procedures to identify and address conflicts of interest. This includes disclosing or eliminating conflicts that might incentivize a representative to place the firm’s interest ahead of the retail customer’s interest, such as when recommending proprietary products.

Incorrect: Proving higher historical returns does not satisfy the requirement to prioritize the client’s best interest at the time of the recommendation. The best interest standard is a regulatory requirement that cannot be waived by a client through a signed disclosure or waiver. There is no specific percentage-based compensation threshold that exempts a firm from its duty to manage conflicts of interest and act in the client’s best interest.

Takeaway: Broker-dealers must maintain rigorous internal controls and policies to identify, disclose, and mitigate conflicts of interest to ensure all recommendations are made in the client’s best interest.

Correct: Under FINRA rules governing investment analysis tools, firms must provide disclosures that explain the methodology and criteria used, the tool’s limitations and assumptions, and the fact that results may vary over time. This ensures that the customer understands the hypothetical nature of the projections and the basis upon which the asset allocation is suggested.

Incorrect: Restricting the tool to accredited investors does not remove the obligation for fair and balanced communication. FINRA does not require the submission of the underlying algorithm for approval, but rather the disclosure of the tool’s output and methodology. Guaranteeing results is a violation of FINRA Rule 2210 and other anti-fraud provisions, as it is misleading to suggest that market-based projections are certain.

Takeaway: Firms using investment analysis tools for asset allocation must provide clear disclosures regarding the tool’s methodology, assumptions, and the hypothetical nature of its results to ensure retail customers are not misled.

Correct: FINRA Rule 5910, along with Section 9(a)(1) of the Securities Exchange Act of 1934, prohibits matched orders. These occur when a person enters an order for the purchase or sale of a security with the knowledge that an offsetting order of substantially the same size, time, and price has been or will be entered. The core regulatory concern is that such activity creates a deceptive appearance of market depth and liquidity, which can mislead other investors about the security’s true supply and demand.

Incorrect: While cross-trades require specific disclosures, the primary violation here is the creation of fake market activity through matched orders. Best execution is a separate requirement focusing on price improvement, but it does not address the manipulative nature of matching orders to create volume. A wash sale involves a single investor selling and repurchasing a security to claim a tax loss without changing their economic position, whereas matched orders involve the simultaneous entry of offsetting orders to manipulate market perception.

Takeaway: Matched orders are a prohibited form of market manipulation because they create a false impression of active trading and liquidity in a security.

Correct: Under FINRA rules governing securities offerings and the broader requirements of the Securities Act of 1933, member firms have a fundamental obligation to ensure that all material risks are disclosed to investors. Liquidity is a material factor, especially in private placements or non-traded securities. If a gap in the analysis or disclosure is identified, the firm must update the offering materials to reflect the lack of a secondary market and ensure that the representative discusses these specific risks with clients to satisfy suitability requirements.

Incorrect: Assuming that high net worth investors do not require disclosure is a violation of the ‘Know Your Product’ and disclosure standards, as wealth does not negate the need for material risk information. Obtaining a waiver does not absolve a member firm or its representatives of their regulatory duty to provide accurate and complete disclosures. Relying on an informal commitment from a market-making desk is insufficient because it is not a guaranteed or legally binding mechanism for liquidity and does not correct the underlying deficiency in the offering’s formal disclosures.

Takeaway: Member firms must ensure that all material liquidity risks are explicitly disclosed in offering documents and discussed with investors to comply with FINRA disclosure and suitability standards.

Correct: Establishing a comprehensive register and requiring supervisory review is the most effective control because it addresses the ‘frequency’ and ‘nature’ of entertainment. While business entertainment where the host is present is generally not subject to the $100 gift limit under FINRA Rule 3220, firms are still required to have written supervisory procedures to detect and prevent conflicts of interest. A pattern of frequent, lavish entertainment can compromise a representative’s objectivity, and a centralized log allows the firm to identify these patterns and take corrective action.

Incorrect: Automatically approving all meals regardless of frequency fails to address the risk of undue influence and potential violations of the firm’s duty to act in the client’s best interest. Increasing the gift threshold to $250 would directly violate FINRA Rule 3220, which strictly limits gifts to $100 per person per year. Delegating compliance responsibility to a third party is never acceptable under FINRA or internal audit standards, as the firm maintains the ultimate regulatory obligation to supervise its associated persons.

Takeaway: Effective conflict management requires proactive monitoring and supervisory oversight of the cumulative impact of business entertainment to ensure professional objectivity is maintained.

Correct: Under cybersecurity risk management frameworks and FINRA guidance, member firms are responsible for the protection of customer data even when it is managed by a third party. A firm cannot outsource its regulatory obligations. Compliance requires a risk-based approach to third-party oversight that includes both initial due diligence and ongoing monitoring of the vendor’s security controls, as well as clear contractual requirements for the vendor to report security incidents to the firm.

Incorrect: Relying solely on a SOC 2 report is insufficient because it does not account for the firm’s specific risk profile or the evolving nature of the threat landscape. While cyber insurance is a prudent financial risk management tool, it does not satisfy the regulatory requirement to maintain effective operational controls and oversight. Requiring identical hardware or legacy protocols is often impractical in cloud environments and does not address the core requirement of ensuring the vendor’s controls are effective and monitored.

Takeaway: Firms must maintain active, risk-based oversight of third-party vendors through ongoing monitoring and mandatory incident notification to satisfy cybersecurity regulatory obligations.

Correct: Under FINRA rules regarding Business Continuity Planning (Rule 4370, often categorized under emergency preparedness), a member firm must disclose to its customers how its BCP addresses the possibility of a future significant business disruption and how the firm plans to respond. At a minimum, this disclosure must be made in writing to customers at the time of account opening, posted on the firm’s website, and mailed to customers upon request.

Incorrect: Providing the full technical BCP is not required and could compromise security; furthermore, a signed acknowledgment is not a FINRA requirement for BCPs. Disclosure is not contingent on the duration of a disruption or the status of a clearing house; it must be provided proactively at account opening. There is no requirement to file the BCP with the SEC or issue a press release in a newspaper for standard customer disclosure.

Takeaway: FINRA requires firms to provide a summary of their Business Continuity Plan to customers at account opening, on their website, and upon request.