to the IT Standard Rules this time are summarized as follows: (1) Establishing IT-related risk assessment criteria to define the entity’s risk level and to specify standards of IT security controls
กรอบในการประเมินระดับความพร้อมรับมือภัยคุกคามไซเบอร์สำหรับผู้ประกอบธุรกิจ (Cyber Resilience Assessment Framework- "CRAF")
แบบประเมินตนเอง (Self - Assessment Questionnaire หรือ SAQ) ด้านระบบงานสำหรับการลงทุนเพื่อบริษัทหลักทรัพย์
appropriate for scope, quantity and complexity of their businesses. In addition, risk management structure and system must be equipped with mechanisms for check and balance, control, monitoring, and escalating
corporations depending on their inherent technology risk, which varies in terms of nature of business, organizational structure, business size and complexity of the utilized technology. In addition, the scope of
from the latest Financial Sector Assessment Program (FSAP) in 2019, requesting SEC to amend the Securities and Exchange Act to impose sanctions on the audit firms in the capital market.“In addition
Following an assessment of the effectiveness of the current PVD Act and a previous public hearing on a proposed amendment to the PVD Act to support the transition to the mandatory pension scheme
procedures as specified in the Notification of the Office of the Securities and Exchange Commission by failing to conduct an assessment of information technology systems’ impact on the business operation of
with the rules, conditions and procedures as specified in the Notification of the Office of the Securities and Exchange Commission by failing to conduct an assessment of information technology systems