which satisfies the need of the users, and it shall communicate the development or change to all concerned persons for acknowledgement in order to be able to operate it correctly. Clause 8. The securities

of the Information Technology of a Securities Company. 2. Segregation of Duties. 3. Physical Security. 4. Information and Network Security. 5. Change Management. 6. Backup and IT Contingency Plan. 7

which covers the methods for selection and evaluation of cloud providers, review of the qualifications of the cloud providers, the terms of services, and inspection of records and evidence; (2) policy on

to ensure efficient control and supervision of the service provider’s operation and management of the risks associated with the outsource; (6) consider the selection of a service provider with care as

assets (if any). In cases where the information under Paragraph 1 changes significantly, the securities company shall inform its clients of such change without delay; (2) inform its clients that in cases

in the environmental and social areas, which include respect for human rights and good corporate governance. For example, climate change risk, biohygienic and safety risk, disputes with the community

been a change in the necessary circumstances as provided in the first paragraph, the Minister upon the recommendation of the SEC may modify or change the conditions already specified.

documented information security policy which addresses at least the following matters: (1) policy on the use of cloud computing which covers the methods for selection and evaluation of cloud providers, review

management; selection and monitoring of its personnel assuring that they have and maintain such qualifications that correspond to the nature of their duties; measures to prevent improper access to inside

แบบแสดงราการข้อมูลประจำปี Notification of the change of the audit firm Date..... .........................…. Dear Secretary General of the Securities and Exchange Commission of Thailand I would like