person responsible for managing information security incidents; (3) report any information security events to the responsible person under (2) and the SEC Office without delay; (4) carry out testing of
for supporting continuity of operation in various incidents. In doing so, companies may consider on current situations, past testing results or possible impacts. The test and assessment shall, at least
the followings: - define written operating procedures in case of significant changes; - require planning and testing of changes; - assess potential impacts of changes; - establish a formal approval
securities business operating or derivatives business to intermediaries . Clause 8 Intermediaries shall carry out the following tasks at least once each year: (1) Testing and reviewing of business continuity
continue to provide the critical functions in such event of disruption. Clause 9. A securities company shall carry out the followings task at least once each year: (1) Testing and reviewing of the business
loophole of program of system software such as DBMS operational system and web server etc.. [M] · Testing the system software related to the security and operation effectiveness prior to installment and
ดูแลพนักงานด้านการสอบบัญชี : พนักงาน /หุ้นส่วน (staff /partner ratio) ….................. : พนักงาน /ผู้จัดการ (staff /manager ratio) ….................. ผลการตรวจสอบความเป็นอิสระ (independence testing
: (a) specifying a supportive measure for business continuity under Clause 20(1)(b) which shall include an arrangement of an alternative site and readiness testing thereof on a regular basis; (b) in case
administrators 45 มีการทดสอบการบุกรุกระบบ (penetration test) กับระบบงาน ที่มีความสำคัญทุกระบบ โดยผู้ประกอบธุรกิจอาจพิจารณา เลือกจัดทำการทดสอบกับบางระบบงานตามการวิเคราะห์ผลกระทบทางธุรกิจ (business impact analysis
contingency plan to be up-to-date and to conform to the current situation 5. Having a stress test on the contingency plan 6. In the case of emergency, the followings should be executed: 6.1 Communication of the