of the Information Technology of a Securities Company. 2. Segregation of Duties. 3. Physical Security. 4. Information and Network Security. 5. Change Management. 6. Backup and IT Contingency Plan. 7
Securities and Exchange Commission No. Nor Por. 3/2559 Re: Guidelines for Establishment of Information Technology System ______________________ Whereas the Notification of the Capital Market Supervisory Board
: Operational Control and Security for Information Technology of a Licensed Derivatives Broker. By virtue of the second paragraph of Clause 7 of the Notification of the Securities and Exchange Commission No
Re: Operational Control and Information Technology Security of Securities Companies Whereas in these days securities companies widely accept information technology as an instrument for securities
Operating Control and Information Technology Security of Securities Company By virtue of Paragraph 1(2) of Section 141 of the Securities and Exchange Act B.E. 2535, the SEC Office, with the approval of the
should take into account knowledge necessary for the personnel to keep up with the continually changes of technology. 10. Resource allocation such as office appliances, computers, and software, etc. which
นิยามใน guideline โดยอ้างอิงนิยามจากหน่วยงาน National Institute of Standards and Technology (NIST) [ระบุเพิ่มไว้ใน FAQ ฉบับประมวล ข้อ 4.1] 13 ในกรณีที่ใช้บริการ cloud computing ผู้ประกอบธุรกิจ ต้องจัดให้
and reports as well as a backup system and an emergency plan for recovering information stored in an electronical form; (2) determining a password to access information stored in an electronic form and
reference. PAGE 13 Notification of the Office of the Securities and Exchange Commission No. Sor Thor. 37/2559 Re: Rules in Detail on Establishment of Information Technology System By virtue of Clause 5(1) in
คอมพิวเตอร์ เพื่อการประมวลผล ตามความต้องการของผู้ใช้งาน ทั้งนี้ ให้อ้างอิงจากนิยาม ที่กำหนดโดย National Institute of Standards and Technology (NIST) “ผู้รับดำเนินการ (outsourcee)” หมายถึง บุคคลจากภายนอกองค์กร