ABA · CERP
The ABA CERP validates expertise in enterprise risk management for banking professionals, covering risk governance, credit risk, financial risk, and non-financial risk management frameworks. It is designed for experienced risk management practitioners in the U.S. banking industry.
Questions
749
Duration
240 minutes
Passing Score
Pass/Fail
Difficulty
ProfessionalLast Updated
Mar 2026
Use this CERP practice exam to prepare for Certified Enterprise Risk Professional (CERP) with realistic questions, detailed explanations, and focused study modes. The practice bank includes 749 questions for ABA CERP, so you can review the exam steadily instead of relying on one long cram session.
As you practice, pay extra attention to recurring topics such as Risk Governance and Management, Elements of a Risk Management Structure, Credit Risk, Financial Risk, and Non-Financial Risk. Start with short sessions to identify weak areas, then move into timed quizzes once your accuracy is consistent.
The explanations are especially useful when you want to connect exam wording to the responsibilities and scenarios described in the official certification guidance. Use the free preview first, then unlock the full question bank when you are ready to build a complete study routine.
The Certified Enterprise Risk Professional (CERP) is a professional-level certification offered by the American Bankers Association (ABA), designed exclusively for risk management practitioners in the U.S. banking industry. It validates comprehensive expertise across the full spectrum of enterprise risk management, including risk governance, credit risk, financial risk, non-financial risk, and operational risk management frameworks. The designation demonstrates that a holder possesses both the knowledge and applied judgment necessary to manage complex risks across a banking organization.
The CERP is grounded in U.S. banking laws, regulations, and supervisory expectations, making it uniquely relevant for professionals operating within domestic financial institutions. The exam assesses not only theoretical knowledge of risk domains but also the practical application of risk identification, measurement, evaluation, mitigation, and monitoring within real-world banking scenarios. Candidates are expected to demonstrate proficiency across eight content domains that collectively span the enterprise risk management lifecycle.
The CERP is designed for experienced risk management professionals working within U.S. banking institutions. Target roles include Chief Risk Officers, enterprise risk managers, credit risk analysts, operational risk officers, financial risk managers, and compliance officers who have significant risk oversight responsibilities. The certification is appropriate for mid-to-senior level professionals who are either currently managing risk functions or seeking to formalize and advance their enterprise risk expertise.
Given the eligibility requirements, candidates are expected to have substantial hands-on experience in the field—making this credential most suitable for seasoned practitioners rather than early-career professionals. It is particularly valuable for those seeking leadership roles within bank risk departments or those looking to distinguish themselves in a competitive hiring environment.
The ABA specifies experience-based eligibility pathways rather than mandatory formal education requirements. Candidates with a bachelor's degree must have at least five years of experience in the banking industry, of which a minimum of three years must be in a risk management role or a closely related function. Candidates without a degree must have at least seven years of banking industry experience, with at least five years in risk management or a closely related role.
All experience must be U.S.-based, as the CERP is anchored to U.S. banking laws, regulations, and supervisory frameworks. While no specific prior certifications are required, familiarity with ABA training programs and a strong working knowledge of bank regulatory requirements, credit risk analysis, financial risk measurement, and operational risk frameworks is strongly recommended before sitting for the exam.
The CERP exam consists of 200 multiple-choice questions, which may include scenario-based and case-study style questions that test applied knowledge rather than rote recall. Candidates are allotted 240 minutes (four hours) to complete the exam. The exam is delivered through Meazure Learning's testing infrastructure and can be taken either at an authorized U.S. test center or remotely via the ProctorU live remote proctoring (LRP) platform, provided the candidate meets the technical requirements for a remote session.
Scoring is reported on a pass/fail basis. The exam fee is $775 USD. Testing windows are offered multiple times per year, with application deadlines approximately eight weeks prior to the start of each window. Candidates must submit a completed application and satisfy the eligibility requirements before being approved to register for a specific exam window.
Earning the CERP positions banking professionals for senior risk management roles, including enterprise risk officer, Chief Risk Officer, and risk governance leadership positions within commercial banks, community banks, and financial holding companies. The credential signals to employers that the holder meets the ABA's rigorous experience and competency standards for enterprise-level risk oversight—a differentiator in competitive hiring for risk leadership roles regulated under U.S. supervisory frameworks.
As regulatory scrutiny of bank risk management continues to intensify following post-2008 and post-2023 bank failure episodes, demand for credentialed enterprise risk professionals in U.S. banking has grown. The CERP is specifically recognized within the domestic banking sector and complements other risk credentials such as the FRM (Financial Risk Manager) or PRM (Professional Risk Manager), while being uniquely tailored to the operational and regulatory realities of U.S.-chartered financial institutions.
5 sample questions with answers and explanations. Start a practice session to test yourself across all 749 questions.
Preview — answers shown1. Fabrikam National Bank's stress testing team is preparing its annual CCAR submission. The team needs to project capital ratios over the required horizon using Fed-prescribed scenarios. The CFO asks for clarification on how the Stress Capital Buffer is determined. Which statement accurately describes the SCB calculation methodology? (Select one!)
Explanation
The Stress Capital Buffer is calculated as the greater of the maximum peak-to-trough CET1 ratio decline under the severely adverse scenario plus four quarters of planned common stock dividends, or a floor of 2.5%. The SCB replaced the fixed 2.5% capital conservation buffer for large banks subject to CCAR. It is based on CET1, not Tier 1 capital. The baseline scenario is not used for SCB determination. The floor is 2.5%, not 2.0% or 3.0%, and the dividend component covers four quarters, not two.
2. Northwind Bank's treasury team is implementing a Funds Transfer Pricing (FTP) framework. The CFO asks the risk team to explain why FTP is essential for managing interest rate risk and liquidity risk across business units. Which statement best describes the primary purpose of FTP? (Select one!)
Explanation
Funds Transfer Pricing is an internal mechanism that charges business units for the liquidity risk and interest rate risk they consume (for example, a lending unit that originates long-term fixed-rate loans is charged for the duration and liquidity risk it creates) and credits units that provide stable funding (for example, a retail banking unit that gathers core deposits is credited for providing stable, low-cost funding). This effectively transfers interest rate risk and liquidity risk from individual business units to a centralized treasury or asset-liability management function, which can then manage these risks holistically. FTP is not a regulatory reporting requirement, although proper FTP informs internal risk management that supports regulatory expectations. It is not a customer-facing pricing tool, though it influences internal profitability measurement that may affect pricing decisions. It is not an external benchmarking process but rather an internal cost allocation framework.
3. Litware Financial Group is implementing Funds Transfer Pricing to properly allocate interest rate and liquidity costs across business units. The treasury team is designing the FTP framework. Which two objectives does a well-designed FTP system accomplish within the institution? (Select two!)
Multiple correct answersExplanation
A well-designed Funds Transfer Pricing system serves two primary objectives: it transfers interest rate risk and liquidity risk from business units to a centralized treasury or asset-liability management function, and it enables accurate measurement of each business unit's profitability by applying appropriate internal charges or credits for funds consumed or provided. FTP does not eliminate all market risk, as residual risks including basis risk and optionality risk remain. FTP does not replace the Contingency Funding Plan, which remains a separate requirement for managing liquidity crises. FTP is an internal transfer pricing mechanism and has no role in calculating regulatory capital requirements, which are governed by Basel standards and supervisory rules.
4. Contoso Bank's enterprise risk team is designing a comprehensive risk assessment framework that incorporates risk velocity alongside traditional likelihood and impact dimensions. The team needs to classify several emerging risks by velocity. Which risk scenario represents a high-velocity risk that would require pre-positioned response capabilities rather than standard escalation procedures? (Select one!)
Explanation
Risk velocity measures the speed at which a risk impacts the organization once it materializes. A ransomware attack is a high-velocity risk because its impact is felt within minutes to hours, requiring pre-positioned incident response capabilities, predetermined communication protocols, and immediately executable containment procedures rather than standard escalation through management hierarchies. Demographic shifts, regulatory phase-ins, and gradual competitive pressures are all low-velocity risks that develop over years, allowing time for strategic planning and methodical response. The distinction between high and low velocity risks has direct implications for risk response design: high-velocity risks require automated triggers, pre-delegated authority, and rehearsed playbooks, while low-velocity risks can be managed through periodic strategic review and gradual adaptation.
5. Fabrikam Financial's risk reporting team is designing a new Key Risk Indicator dashboard for the board risk committee. The team needs to ensure the KRI framework follows best practices for threshold calibration. Which approach to KRI threshold setting best supports effective risk monitoring and escalation? (Select one!)
Explanation
Best practice for KRI threshold calibration uses a tiered traffic-light approach with green (within appetite), amber (approaching tolerance limits requiring heightened monitoring and management action), and red (breaching tolerance requiring immediate escalation and remediation) zones. Each zone should have clearly defined escalation protocols specifying who is notified, what analysis is required, and what actions must be taken. A single binary threshold provides insufficient early warning and misses the opportunity for graduated response. Historical averages alone may not align with risk appetite and tolerance levels. Peer benchmarks can inform but should not exclusively determine thresholds, which must reflect the institution's specific risk appetite, business model, and regulatory requirements.
Certified AML and Fraud Professional (CAFP)
CAFP · 750 questions
Certified Financial Marketing Professional (CFMP)
CFMP · 750 questions
Certified IRA Services Professional (CISP)
CISP · 700 questions
Certified Regulatory Compliance Manager (CRCM)
CRCM · 700 questions
Certified Trust and Fiduciary Advisor (CTFA)
CTFA · 699 questions
$17.99
One-time access to this exam