Get Pricing

AML training for accountants: How to build an effective training program for Tranche 2

Posted 26/05/2026

AML training for accountants: How to build an effective training program for Tranche 2 

Accounting firms across Australia are preparing to meet AML/CTF obligations by 1 July 2026. That’s when Tranche 2 reforms kick in. A key element of that is AML training for accountants, which is a legal requirement under Section 84 of the AML/CTF Act.  

Most firms underestimate the training piece. It is not a box-tick at the end of compliance planning. It’s an important element that regulators will look at when something goes wrong, because every other obligation in an AML/CTF program depends on people’s understanding of what to do. 

This guide walks practice managers, partners, and compliance officers through how to build an AML training course for accountants that holds up to AUSTRAC scrutiny, covers every role in the firm, and is ready before 1 July. 

Key takeaways 

  • Training is a legal obligation, not a recommendation. Your AML/CTF program must include initial and ongoing training for every person performing AML/CTF functions, tailored to their role. 

  • Generic training is a risk multiplier. AUSTRAC expects AML training for accountants to be tailored to your firm's specific lists of services, and the actual ML/TF risks your clients pose. 

  • Documentation is what gets audited. Attendance, assessment results, content covered, and refresher dates all need to sit in a defensible training register. 

  • Most firms are still unprepared. Only 6% of accountants surveyed felt on top of the legislation, and the runway is short. Starting now is the difference between confident compliance and a scramble. 

 

Why AML training for accountants matters 

Tranche 2 expands Australia's AML/CTF framework from 17,000 to 90,000 regulated entities. About 20,000 accounting firms will join banks and financial institutions as reporting entities, creating new obligations for their practice and teams. 

Solutions like EngageAML are designed explicitly to help firms meet these new obligations by combining engagement letter generation with a complete client due diligence process, ongoing monitoring, and reporting capabilities. 

Having said that, readiness among accounting firms remains low despite the looming deadline. A survey of more than 1,700 Australian accounting professionals found that only 6% felt on top of the incoming legislation, and 62% said they were unclear about the new rules. That gap, between obligation and understanding, is exactly what staff training is designed to close.  

The practical risks are serious. An untrained junior in an accounting firm who misses a red flag during onboarding may not immediately trigger a million-dollar penalty, but they can quietly facilitate a money-laundering chain AUSTRAC will trace back to your firm.  

This goes beyond reputational and financial damage. Accounting firms are now front-line monitors for money laundering and terrorism financing. Training turns a documented program into actual behaviour at the desk that can make material difference in the long-run. 

AML training requirements for accountants under the AML/CTF Act 

AUSTRAC's guidance is direct: your AML/CTF policies must ensure you can provide initial and ongoing training to personnel who perform AML/CTF functions, and that training must be tailored to each person's role and the risks they encounter. 

What the law requires: 

  • Initial training at the start of someone's employment or engagement, before they perform AML/CTF functions.
  • Ongoing training, refreshed whenever your programme changes, regulations change, or business activities change.
  • Training tailored to roles with depth and content that reflects what each staff member actually does.
  • Coverage of your specific AML/CTF programme, not generic content from another sector.
  • Documented evidence that training was provided, completed, and understood.

 

The phrase that catches most firms out is "personnel who perform AML/CTF functions". That isn't just your compliance officer. It includes anyone in client onboarding, anyone conducting Client Due Diligence, anyone handling AML/CTF-related records, and the partners making client acceptance decisions. For most practices, that is most of the firm. 

The other phrase that matters is "tailored". AUSTRAC's expectation is that a receptionist who never interacts with clients should not get the same training as a senior accountant conducting enhanced CDD on a high-risk trust client. Generic, one-size-fits-all training tells regulators you haven't thought about role-specific risk. 

 

Mandatory topics for AML/CTF training: 

  • The AML/CTF Act and obligations 

  • Your practice's specific AML/CTF programme and procedures 

  • Money laundering and terrorism financing risks 

  • Initial, ongoing, and enhanced client due diligence 

  • Suspicious matter reporting (SMR) and threshold transaction reporting (TTR) 

  • Record-keeping 

  • AML/CTF program governance and oversight. 

Building your AML/CTF training program: Step-by-step guide 

Step 1: Assess training needs by role 

Map your firm by AML/CTF function before you build any content. Group staff into four tiers and define what each needs to know: 

  • Partners and principals. Strategic compliance oversight, client acceptance decisions, escalation responsibility. This group needs a full understanding of the firm's obligations. 

  • Client-facing accountants and advisers. Anyone delivering designated services must be able to identify red flags, apply client due diligence and Know Your Client (KYC) checks, and know when and how to escalate suspicious matters. 

  • Onboarding and administrative staff. Those who support client setup and record-keeping must have clear AML/CTF awareness, KYC document handling, and record-keeping fundamentals. 

  • Compliance officer (CO). As stewards of the firm’s AML/CTF program, COs must understand the firm’s AML/CTF programme, AUSTRAC reporting procedures, and internal investigation policies. CO need the deepest knowledge of AML/CTF obligations of anyone else in the firm. 

 

Step 2: Develop training course 

Build modular content so you can train each role to the right depth without making everyone sit through everything. A practical module structure for an accounting practice covers eight areas: 

  • AML/CTF awareness and the Tranche 2 changes 

  • Your firm’s AML/CTF programme and Compliance Officer's role 

  • CDD obligations including KYC and KYB 

  • Cash transaction reviews and the $10,000 TTR threshold 

  • Suspicious matter identification and reporting 

  • Record-keeping 

  • Escalation procedures 

  • Annual re-training 

 

Modules should be built around realistic accounting scenarios, not banking examples. 

Step 3: Choose your delivery method 

The Act doesn't mandate a delivery method. What it does mandate is that AML training courses for accountants are accessible, understandable, and that you can prove staff engaged with it.  

The following formats work, and most practices end up blending them. 

  • Self-paced eLearning: Best for foundational knowledge, consistent delivery, and proof of completion. Most cost-effective for firms with more than a handful of staff. 

  • In-person or live online sessions: Best for scenario discussion, Q&A, and team alignment. Necessary for complex topics like suspicious matter escalation. 

 

Firms can also opt for a hybrid approach combining online modules with in-person Q&A sessions.   

 

Given the complexity of the subject, external training providers can be a real time-save for firms. Find a service provider that can deliver AML training courses for accountants with modules tailored to the accounting profession and tie the training to the day-to-day workflow for an accounting firm. 

 

Step 4: Create training materials 

Beyond module content, you need supporting materials staff use day to day. Some materials that would be useful include:  

  • KYC document checklist for client-facing roles 

  • Risk assessment decision tree 

  • Red flags quick reference guide 

  • Internal escalation form with named contacts and timeframes 

  • When-to-report flowchart for the compliance officer 

 

Job aids are where training translates into behaviour. Print them, pin them up, embed them in your onboarding workflow. They should be easily accessible and part of common practice.  

Step 5: Schedule and deliver initial training 

Sequence matters. Train your compliance officer and partners first, then cascade to client-facing staff, then to support roles. Make sure you also communicate this clearly across your firm. 

Pre-1 July checklist: 

  • Compliance officer trained and certified 

  • Partners trained on obligations and decision-making 

  • All client-facing staff completed core modules 

  • Support staff completed awareness training 

  • Training register populated with completion dates and assessment scores 

 

Step 6: Document everything 

AUSTRACT requires readily retrievable training logs that demonstrates reasonable steps taken to train staff. This is also a record of firms identifying potential gaps in their training program and how they fix it.  

Training logs for every individual should include: 

  • Modules completed 

  • Completion dates 

  • Assessment scores 

  • Trainer (internal or external) 

  • Next refresher due date.  

 

Keep certificates, attendance records, and training content versions on file. Records must be retained for at least seven years. 

Step 7: Implement Ongoing Training 

As mentioned above, training isn’t one-and-done. Firms must ensure AML/CTF training is ongoing. Consider the following pace:  

 

  • Annually: refresher training on updates to legislation and firm policy, new red flags, and reassessment to confirm retained knowledge.  

  • Trigger-based: when new designated services are offered, after compliance failures or near-misses, and when new high-risk client types are onboarded.  

  • Micro-learning: regular discussions on AML/CTF topics, email alerts on updates 
     

Step 8: Evaluate and improve 

Compliance officers, who are largely responsible for internal AML/CTF training, must keep apprised on the effectiveness of the firm’s program.  

They need to test whether training is working, not just whether it was delivered. They should: 

  • Track assessment pass rates (aim for 80%+ on first attempt). 

  • Monitor whether suspicious matters are being escalated correctly. 

  • Review the quality of risk assessment documentation. 

  • Regularly survey staff on what they're still unsure about. 

  • Update modules annually based on findings. 

 

Five AML/CTF training mistakes (and how to avoid them) 

One-off training 

Conducting a one and done training session almost guarantees that team members will forget the procedure over time and remain unaware of regulatory changes. That’s why AML refresher training for accounting professionals is also a key element in a firm’s AML/CTF program. 

Fix: Schedule annual refreshers, send regular compliance reminders, and make sure to run updated training session when regulation or firm policy changes. 

Theory without practice 

Theoretical training without hands-on practice won’t serve your team well. Every training should  be designed to build the muscle of applying learnings in real life situations, which are often more nuanced and dynamic than a written test.  

Fix: Include case studies in every training and run role-play exercises for risk assessment, suspicious client interactions, and transaction monitoring.  

Poor training documentation 

AUSTRAC can request training logs at any time. Firms must ensure that they have a complete audit training of internal AML/CTF training, or risk being fined for non-compliance.  

Fix: Maintain a training register for all staff including attendance records and assessment scored. Set reminders for refresher training.  

Training only compliance officers.  

Compliance officers are key figures in a firm’s AML/CTF obligations, but if front line staff don’t understand their obligations, mistakes will happen early in the process and create a domino effect of non-compliance.  

Fix: Train all relevant staff with role-appropriate training. 

Using generic training 

Banking scenarios do not resonate with accountants. When training doesn’t reflect their day-to-day accounting context, firm staff cannot be expected to fully understand how to apply it to their work.  

Fix: Customise training to accounting practice reality and avoid banking jargon. 

 

ChangeGPS AML/CTF Compliance Training  

Building your own program specific to your firm’s service list and client base could take months of internal work to do properly. With 1 July just around the corner, ChangeGPS's AML/CTF Compliance Training takes that off your plate and delivers AUSTRAC-aligned training that will get your firm confident and ready by the deadline. 

What's included: 

Module 

Coverage 

1. AML/CTF Awareness 

Money laundering basics, accountants in scope, red flags 

2. AML/CTF Programme 

Programme requirements, Compliance Officer role, reporting 

3. Customer Due Diligence 

KYC, KYB, simplified vs standard vs enhanced CDD 

4. Cash Transaction Reviews 

$10,000 threshold, qualifying transactions, lodging TTRs 

5. Suspicious Matter Reporting 

Identifying suspicion, internal reporting, tipping-off rule 

6. Record Keeping 

Record categories, 7-year retention, security controls 

7. Escalation Procedures 

Triggers, how to escalate, what happens after 

8. Annual Re-Training 

Who's in scope, adequate content, training records 

 

That’s 6.5 hours across eight modules, with knowledge checks per module. The training is self-paced and accessible online, anywhere, anytime to ensure your entire firm, including offshore contractors, is adequately trained. 

The course was designed by Australian accountants for Australian accountants, so scenarios and language fit accounting practice realities rather than generic financial services contexts. For practices without months of internal capacity to build modules, case studies, and assessments from scratch, it covers your Section 84 obligations directly. 

Get your team compliant before 1 July 2026  

Building an AML training programme is project with a hard deadline. Done well, it gives your staff the clarity to do their job confidently and gives your practice a defensible position if AUSTRAC ever asks.  

Start now, document everything, and treat ongoing learning as standard. Whether you build internally or enrol your team in ChangeGPS' AML/CTF Compliance Training, the practices that get this right won't just meet their obligations. They'll free their teams to focus on client work that delivers the highest value. 

Frequently asked questions: AML training for accountants 

Is AML training mandatory for accounting practices? 

Yes. Section 84 of the AML/CTF Act requires reporting entities to train staff on their AML/CTF program. Failure to adequately train staff that touches designated services will result in hefty fines of up to $33 million.  

Who needs AML/CTF training? 

All staff involved in AML/CTF obligations including client onboarding teams, accountants conducting KYC checks, risk assessors, compliance officers, and partners making acceptance decisions will require specific training. Training depth varies by role and applies to every person that works with designated services 

How often must we provide AML/CTF training? 

Firms must provide initial training before any staff begins designated services. Firms must also provide retraining annually, at minimum, as well as updated training when there is a change in the firm’s AML/CTF policy or the legislation.   

Can we use online AML/CTF training courses? 

Yes. The AML/CTF Act does not mandate a delivery method. Firms can choose to use online modules, in-person sessions, or hybrid approaches, provided their staff understand the program and can perform their obligations properly. 

What records must we keep? 

AUSTRAC requires comprehensive training logs to be maintained including attendance records, assessment results, training dates and topics, and trainer details. AUSTRAC may request training logs during audits.