นโยบายการรักษาความปลอดภัยด้านเทคโนโลยีสารสนเทศ (IT security policy) PAGE - 2 - ประกาศสำนักงานคณะกรรมการกำกับหลักทรัพย์และตลาดหลักทรัพย์ ที่ อธ./น. 5/2547 เรื่อง แนวทางปฏิบัติในการควบคุมการปฏิบัติงาน
นโยบายการรักษาความปลอดภัยด้านเทคโนโลยีสารสนเทศ (IT security policy) เอกสารประกอบการ public hearing ร่างข้อบังคับและแนวทางปฏิบัติด้านเทคโนโลยีสารสนเทศ PAGE - 30 - เอกสารประกอบการ public hearing ร่าง
prescribed in sub clause (3) of the first paragraph for any member of the provident fund in order that the member is able to select investment policy properly. Clause 31 For the purpose of compilation and
which it receives the request with complete and accurate documents in full, except in cases where it is necessary to consider additional facts and the Office has informed the securities company of such
and latest data set to recover in order to derive a suitable and practical objective. In this regard, the determination of recovery time objectives and recovery point objective is a significant factor
units in order to achieve efficiency in the overall operation of the company. (4) have performance appraisal and personnel development in order to maintain staff’s professional competence to remain fit
information disclosure to investors. It is thus deemed appropriate that the notification relating to establishment and management of funds as specified in the Notification of the Securities and Exchange
that is distinguishable without any suspicion, and there must be separate account for each client’s assets and segregated from the account of its own, which should be kept it accurate, complete and up-to
5(1). 2. The policy on the allocation and management of information technology resources under Clause 5(2) should be in line with the corporate strategic plan in order to achieve the goals in
structures indicate that it is acting as a business unit within a financial conglomerate as accepted by the Office. The procedures mentioned in the first paragraph should contain all necessary details to be