金融監督管理委員會民國111年11月3日金管證券字第1110384596號

依據「證券暨期貨市場各服務事業建立內部控制制度處理準則」第36條之2及第37條規定，訂定各服務事業應指派副總經理以上或職責相當之人兼任資訊安全長，綜理資訊安全政策推動及資源調度事務及各服務事業應配置適當人力資源及設備負責資訊安全制度之規劃、監控及執行資訊安全管理作業之相關規定，自112年1月1日生效

FINANCIAL SUPERVISORY COMMISSION Order is hereby given, for the stipulation pursuant to Article 36-2 and 37 of "Regulations Governing the Establishment of Internal Control Systems by Service Enterprises in Securities and Futures Markets", which stipulates relevant rules that a service enterprise shall appoint a person at the level of deputy general manager (vice president) or higher or a person of equivalent position to concurrently serve as its chief information security officer, who shall be in charge of the overall promotion of information security policy and the allocation of related resources and a service enterprise shall allocate adequate human resources and equipment for the planning and monitoring of the information security system and the implementation of information security management operations (stipulation shall become effective from 1st, January 2023)