to the IT Standard Rules this time are summarized as follows: (1) Establishing IT-related risk assessment criteria to define the entity’s risk level and to specify standards of IT security controls
ก.ล.ต. จัดสัมมนาเพื่อเตรียมความพร้อมในเรื่องความมั่นคงปลอดภัยทางไซเบอร์และการคุ้มครองข้อมูลส่วนบุคคล (Cyber Security & Data Privacy Protection) ให้กับกรรมการและผู้บริหารระดับสูงของบริษัทหลักทรัพย์
adverse incidents; (2) To align the submission timeline for risk level assessment (RLA) reports and IT audit reports to the same period, specifically within the first quarter of each calendar
business operators and low-risk operators, requiring submission every three years or upon occurrence of a widespread adverse incident; (2) To adjust submission of risk level assessment (RLA) forms and IT
three years or upon occurrence of a widespread adverse incident; (2) To adjust the submission schedule for the Risk Level Assessment (RLA) report and IT audit report to be within the same period (during
requirements for information security and the continuity of information security management in adverse situations; (2) establish procedures, processes and controls to ensure the required level of continuity for
security as well as supervise, monitor and examine compliance with such policies, measures, and operating systems, and review the suitability thereof regularly; In the interest of meeting the aforesaid