of Contents Page 1. Audit Firm profile 1 2. Network firms of the Audit Firm 4 3. Internal management of the Audit Firm 5 4. Inspection results on quality control system by other agencies (if any) 5 5

Re: Operational Control and Information Technology Security of Securities Companies Whereas in these days securities companies widely accept information technology as an instrument for securities

under the law on undertaking of finance business, securities business, and credit foncier business (FC.); □ a securities company under the law on securities and exchange (SC.) licensed to operate

No. OrThor/Nor. 5/2547 Re: Operational Control and Security of the Information Technology of Securities Company For the purpose of rendering the securities companies to efficiently comply with the

. Clause 2 In order that an intermediary obligates to operate its businesses properly, fairly and in compliance with codes of conduct and professional standards and in order that an intermediary’s services

Clause 2 (3) must demonstrate policies and measures on risk control and management, operational management and internal control system in order to efficiently operate derivatives business, including

, executives, employees and others 8. Report on key operating results related to corporate governance 28 9. Internal control and related party transactions 33 Part 3: Financial Statements 36 Part 4

structure 11. Corporate governance 12. Social responsibility 13. Internal control and risk management 14. Related party transactions 2.4 Financial position and operating results 15. Important financial

Section 113 Securities and Exchange Act B.E. 2535 Section 113. In operating the business of securities brokerage in the Securities Exchange for listed securities, a securities company shall operate

) Chapter 2: IT Security with the following details: 2.1 Information Security Policy; 2.2 Organization of Information Security; 2.3 Human Resource Security; 2.4 Asset Management; 2.5 Access Control 2.6