required to report violations or any significant abnormality to the person responsible for the information security incident management without delay; (3) put in place a disciplinary process to take action
necessary or facilitate to process data completely, accurately, and effectively, such as IT equipment, applications, computer network systems, procedures, or information processing areas, etc. Chapter 1
in sub clause (1) shall be able to prevent: (a) improper modification, disappearance and destruction; (b) using and accessing such stored things wrongfully, inappropriately and unlawfully, especially
inspection to evaluate its compliance with its policies and procedures? – Monitoring Process If yes, please specify 1) Who perform such function e.g. in-house, outsource, network firm? 2) How often the firm
laundering legislations, or where the know-your-client / customer due diligence process cannot be materially performed by the securities company. (3) know-your-client/ customer due diligence process (or KYC
period, as previously issued, included a qualified opinion, a disclaimer of opinion, or an adverse opinion and the matter which gave rise to the modification is unresolved ( 2.3.1 corresponding figures are
verify such stored things within a reasonable time; (2) the system as prescribed in sub clause (1) shall be able to prevent: (a) improper modification, disappearance and destruction; (b) using and
experts appointed as board member by the Minister through selection process in accordance with Section 31/7; in this regard, at least two of such experts shall have experience in managing a company whose
written by such board of directors. In case of any material amendment, change or modification to such policy and plan, intermediaries shall comply with the requirement set out in the first paragraph (1) or
board to be in charge of the implementation of the business continuity management policy. In case of any material amendment, change or modification to the business continuity plan, the securities company