ASIAFIN HOLDINGS CORP. - (ASFH)
10-K Filing Date: March 22, 2024
Risk management and strategy
AsiaFIN Holdings Corp. acknowledges the crucial necessity of establishing, executing, and sustaining strong cybersecurity measures to secure our information systems. This is undertaken to uphold the confidentiality, integrity, and accessibility of our data.
We plan to strategically incorporate cybersecurity risk management into all our comprehensive risk management framework, fostering a corporate culture that prioritizes cybersecurity at all levels. This integration shall be done in stages so as to guarantee that cybersecurity factors are ingrained in our decision-making processes throughout the organization. We plan to incorporate a risk management team to collaborate closely with the IT department, consistently assessing and mitigating cybersecurity risks in alignment with our business goals and operational requirements.
We recognize the intricate and ever-changing nature of cybersecurity threats. To address this, we shall collaborate with external experts, including cybersecurity assessors, consultants, and auditors. This cooperation shall involve regular audits, threat assessments, and consultations to enhance our security measures. These efforts ensure that our cybersecurity strategies adhere to industry best practices and remain effective in safeguarding our systems.
Understanding the potential risks associated with third-party service providers, we shall implemented stringent processes to oversee and manage these concerns. We shall conduct thorough security assessments before engaging with any third-party provider and maintain ongoing monitoring to ensure compliance with our cybersecurity standards. This involves quarterly assessments by our management and continuous evaluations by our security engineers. This approach is designed to mitigate the risks of data breaches or other security incidents originating from third-party sources.
We have not encountered cybersecurity issues that have significantly impacted our operational performance or financial status.
Governance
The Board of Directors is fully aware of the vital importance of managing cybersecurity risks. To ensure effective governance in handling these risks, the Board shall implement a strong oversight mechanisms. This reflects our understanding of the significant impact these threats can have on operational integrity and stakeholder confidence.
Our Board of Directors is tasked with overseeing data privacy and cybersecurity risks. They regularly review the Company’s cybersecurity program with management, evaluating the adequacy of controls and security for our information technology systems. Additionally, they assess the Company’s response plan in case of a security breach affecting these systems. Annually, the Board of Directors receives updates on potential cybersecurity incidents, data privacy, and compliance programs, engaging in active discussions with management on cybersecurity risks.