undertaking; and; (c) allow its business to be conducted with fiduciary duties. (2) determine clearly and harmoniously the mission, strategy, policy and operational plan of the company and its business units

of the Information Technology of a Securities Company. 2. Segregation of Duties. 3. Physical Security. 4. Information and Network Security. 5. Change Management. 6. Backup and IT Contingency Plan. 7

the company’s strategies and policies on the business continuity management (BCM) and the business continuity plan (BCP), including allocation of resources and budgets to relevant units properly, and

that of the subsidiaries for the Company. 2. Risk Management 2.1 Risk management policy and plan Describe the policy, operating framework and organizational risk management plan to demonstrate that the

business operation and has the duty to convey the goals under the missions, strategies, policies, and operating plan at the enterprise level to the information technology-related goals under the supervision

); (c) reviewing the system or measures and providing a plan for improvement of such system or measures in order to prevent recurrent failure of their performance; (d) reporting the operations as

providing to clients, and the following aspects should be taken into consideration: (1) select and assign personnel with knowledge and understanding of the high-risk or complex capital market products to

infrastructure asset that the development plan of which is divided into phases and certain phase is not completely developed. Clause 11 The classification of units shall be under the following rules: (1) the same

deficient interests to the client (if any); (c) reviewing the system or measures and providing a plan for improvement of such system or measures in order to prevent recurrent failure of their performance; (d