of the Information Technology of a Securities Company. 2. Segregation of Duties. 3. Physical Security. 4. Information and Network Security. 5. Change Management. 6. Backup and IT Contingency Plan. 7

intermediaries should study standards and practice guidelines for business continuity management from other related agencies, such as Business Continuity Institute (BCI) or International Organization of Securities

of the subcontracted cloud provider on information security aspect which are comparable to those of the cloud provider or meet the international standards; (c) monitoring, evaluation, and review of the

foreign country, there shall be consideration on change or uncertainty regarding economic, political, social and legal issues of the foreign country as well as the complexity in business continuity

of each mutual fund, together with sufficient description thereof illustrating the distinctive nature of each mutual fund and the value of the pool of assets. Should there be any change in such

and is subject to anti-money laundering and terrorist financing regulatory and oversight regime that is comparable to international standards accepted by the Office, e.g. Financial Action Task Force

commonly-accepted academic principal or the international standard as prescribed by the Association of Investment Management Companies (2) Duty of Care The management company should observe the duty of care

provider; (b) qualifications of the subcontracted cloud provider on information security aspect which are comparable to those of the cloud provider or meet the international standards; (c) monitoring

established under specific law other than the juristic persons under (h); (g) an international financial institution; (h) a governmental agency and a state enterprise under the law on budgetary procedures; (i

established under specific law which are not persons under (9); (7) Bank of Thailand; (8) International financial institutions; (9) Government agencies and state enterprises under the laws on budgetary