or changes to the existing information systems in compliance with the established change control procedures; (4) carry out testing of information system developed or changed to ensure that such

) Chapter 2: IT Security with the following details: 2.1 Information Security Policy; 2.2 Organization of Information Security; 2.3 Human Resource Security; 2.4 Asset Management; 2.5 Access Control 2.6

documentation on an annual basis. 12 Has the firm developed or adopted other quality control materials? If “yes,” describe those materials: 28

Re: Operational Control and Information Technology Security of Securities Companies Whereas in these days securities companies widely accept information technology as an instrument for securities

) Developed internally by the firm? If no, How does the firm ensure that assurance engagements are performed in accordance with auditing standard? How does the firm ensure that audit manual reflect recent

No. OrThor/Nor. 5/2547 Re: Operational Control and Security of the Information Technology of Securities Company For the purpose of rendering the securities companies to efficiently comply with the

The Derivatives Act The Derivatives Act B.E. 2546 SECTION 18. In order to protect customers, maintain stability of the financial system or control the risks arising from derivatives, the SEC shall

: Operational Control and Security for Information Technology of a Licensed Derivatives Broker. By virtue of the second paragraph of Clause 7 of the Notification of the Securities and Exchange Commission No

audit firm, hereby certify and consent to the followings: 1. I certify that the audit firm has audit quality control system which is sufficient and reliable for supervising its auditors’ work to comply

control system which is sufficient and reliable for supervising its auditors’ work to comply with the professional standards on a continuous basis. Such audit quality control system complies with