business operation and has the duty to convey the goals under the missions, strategies, policies, and operating plan at the enterprise level to the information technology-related goals under the supervision

following requirements: (a) conduct internal audit and operation review, systematically; (b) correct deviation and follow up the result of correction, systematically. Chapter 2 Establishment of Policies

business continuity plan (Business Continuity Plan: BCP) which is consistent with the policy stipulated in (1) approved by senior management and board of directors or working group that is assigned in

representative office abroad .................................................................................................................................................... 3.2 Having a work plan for

undertaking; and; (c) allow its business to be conducted with fiduciary duties. (2) determine clearly and harmoniously the mission, strategy, policy and operational plan of the company and its business units

plan covering all critical functions which at minimum shall include the following components: (1) Operational procedures for maintaining or recovery of business operations which contain sufficient

of Intermediary to Handle Clients’ Complaints and participation in the SEC Office’s project to resolve disputes by arbitration. 4.3 Having a business plan and an operating system for establishing a

and reports as well as a backup system and an emergency plan for recovering information stored in an electronical form; (2) determining a password to access information stored in an electronic form and

firm’s business plan. If yes, please describe 2 How does the firm conduct the estimation of personnel needs? 3 How does the firm deal with the staff turnover in busy season? B Recruitment 1 Does the firm

of the Information Technology of a Securities Company. 2. Segregation of Duties. 3. Physical Security. 4. Information and Network Security. 5. Change Management. 6. Backup and IT Contingency Plan. 7