นโยบายการรักษาความปลอดภัยด้านเทคโนโลยีสารสนเทศ (IT security policy) PAGE - 2 - ประกาศสำนักงานคณะกรรมการกำกับหลักทรัพย์และตลาดหลักทรัพย์ ที่ อธ./น. 5/2547 เรื่อง แนวทางปฏิบัติในการควบคุมการปฏิบัติงาน

นโยบายการรักษาความปลอดภัยด้านเทคโนโลยีสารสนเทศ (IT security policy) เอกสารประกอบการ public hearing ร่างข้อบังคับและแนวทางปฏิบัติด้านเทคโนโลยีสารสนเทศ PAGE - 30 - เอกสารประกอบการ public hearing ร่าง

No. OrThor/Nor. 5/2547 Re: Operational Control and Security of the Information Technology of Securities Company For the purpose of rendering the securities companies to efficiently comply with the

business undertaking is accurate, complete and current as well as functional and can be monitored effectively. There shall also be an adequate security system to prevent any unauthorized person from

with Chapter 1; (2) establishment of policies, measures, and management arrangement concerning information security in accordance with Chapter 2; (3) management of IT assets and the access control to

: Operational Control and Security for Information Technology of a Licensed Derivatives Broker. By virtue of the second paragraph of Clause 7 of the Notification of the Securities and Exchange Commission No

methods and channels for communication, a list of relevant persons either inside or outside companies, responsible persons and communication, including clear detailed information for disclosure to relevant

shall be as set out in Chapter 4. Clause 6 The SEC Office may prescribe a detailed guideline of the provisions under this Notification to serve as a guideline which is appropriate and consistent with this

The SEC Office may prescribe a detailed guideline of the provisions under this Notification to serve as a guideline which is appropriate and consistent with this Notification, and upon compliance with

security as well as supervise, monitor and examine compliance with such policies, measures, and operating systems, and review the suitability thereof regularly; In the interest of meeting the aforesaid