Jas Singh Gandhi

Senior Manager, IT Governance, Risk & Control at Questrade Financial Group
  • Claim this Profile
Contact Information
us****@****om
(386) 825-5501
Location
Toronto, Ontario, Canada, CA

Topline Score

Topline score feature will be out soon.

Bio

Generated by
Topline AI

You need to have a working account to view this content.
Join now
You need to have a working account to view this content.
Join now

Credentials

  • OneTrust Fellow of Privacy Technology
    OneTrust
    Dec, 2020
    - Nov, 2024
  • Certified Information Security Manager® (CISM)
    ISACA
    Jul, 2020
    - Nov, 2024
  • Consent Management Expert
    OneTrust
    Jul, 2020
    - Nov, 2024
  • Data Discovery Expert
    OneTrust
    Jul, 2020
    - Nov, 2024
  • Data Mapping Expert
    OneTrust
    Jul, 2020
    - Nov, 2024
  • Incident Management Expert
    OneTrust
    Jul, 2020
    - Nov, 2024
  • Privacy Management Professional
    OneTrust
    Jul, 2020
    - Nov, 2024
  • Assessment Automation Expert
    OneTrust
    Jun, 2020
    - Nov, 2024
  • Data Subject Request Expert
    OneTrust
    May, 2020
    - Nov, 2024
  • Scanning and Cookie Consent Expert
    OneTrust
    May, 2020
    - Nov, 2024
  • Vendor Risk Management Expert
    OneTrust
    May, 2020
    - Nov, 2024
  • GRC Solutions Expert
    OneTrust
    Apr, 2020
    - Nov, 2024
  • Elastic Cloud Infrastructure: Containers and Services
    Coursera
    Aug, 2018
    - Nov, 2024
  • Elastic Cloud Infrastructure: Scaling and Automation
    Coursera
    Aug, 2018
    - Nov, 2024
  • Reliable Cloud Infrastructure: Design and Process
    Coursera
    Aug, 2018
    - Nov, 2024
  • Essential Cloud Infrastructure: Foundation
    Coursera
    Jul, 2018
    - Nov, 2024
  • Google Cloud Platform Fundamentals: Core Infrastructure
    Coursera
    Jul, 2018
    - Nov, 2024
  • Certified ScrumMaster® (CSM®)
    Scrum Alliance
    Nov, 2018
    - Nov, 2024

Experience

  • Questrade Financial Group
    • Canada
    • Financial Services
    • 700 & Above Employee
    • Senior Manager, IT Governance, Risk & Control
      • Aug 2020 - Present

      At Questrade, we care about Canadians’ financial success. We offer better, simple, more affordable ways to take control of your money. We put you first and give you the respect you deserve. Because we are just like you: investors, savers, dreamers. We believe that financial independence is not only a privilege but a right, and we want to help you realize it. We are transforming the Canadian financial landscape, one innovation at a time. At Questrade, we care about Canadians’ financial success. We offer better, simple, more affordable ways to take control of your money. We put you first and give you the respect you deserve. Because we are just like you: investors, savers, dreamers. We believe that financial independence is not only a privilege but a right, and we want to help you realize it. We are transforming the Canadian financial landscape, one innovation at a time.

  • Rangle.io
    • Canada
    • Software Development
    • 100 - 200 Employee
    • Director, Information Security and Risk
      • Jan 2020 - Aug 2020

      Responsible for the administration, implementation, and oversight of Information Security Strategy & Governance, Regulatory Compliance, Risk and Privacy Programs at Rangle.io, thereby aligning with relevant laws, regulations, and industry standards & frameworks. Conducting, evaluating, and documenting Information Security Threat/Risk Assessments to identify, monitor, and mitigate risk, and also responsible for producing detailed reports for stakeholders recommending corrective treatment and remediation strategies.Engineering and operationalizing Rangle’s Global Security, Privacy & Compliance program is an essential part of my role that includes advising various technology functional areas and implementing Privacy-by-Design and Security-by-Design principles to ensure best-practices. These include the implementation and maintenance of a Security & Data Privacy program for ISO, NIST, COBIT, GDPR, PCI, PIPEDA, CCPA, and other areas that apply to Rangle.io's technology landscape such as Service Organization Control (SOC).

    • Corporate IT Manager
      • Jan 2019 - Dec 2019

      - Building and maintaining Information Security Governance, Processes and Policies- Leading client-security reviews and internal/external audits- Advising business units on how to implement security requirements to protect assets- Conducting security risk assessments of 3rd parties (ISO, NIST, SOC 2 questionnaires)- Implementing Access Controls on G-Suite, AWS, and other Infrastructure Services - Configuring and administering Firewalls, Intrusion Detection, SIEM, and APT systems- Partnering and negotiating with 3rd Party Vendors on bundled services- Managing hardware, software & network assets in a mixed macOS and Windows environment.

  • Microsoft / Vexcel Corporation
    • Lead for Infrastructure Management Operations for NY based Govt. Agency
      • Mar 2017 - Sep 2018

      - Working with cross-functional DevOps teams to manage and deliver successful migrations to the cloud- Consulting with business units to guide and influence implementation of security initiatives- Working closely with the Principal Technical Account Manager throughout the planning, design, implementation, testing, delivery & maintenance phases and developing strategies to resolve blockers- Transforming business requirements to deliverable secure solutions that meet industry standards- Planning and scheduling security assessments of systems and vulnerability management processes- Providing support on IT Security events and working with IT on Incident Management processes- A trusted advisor to Stakeholders for infrastructure requirements as well as meeting their key priorities- Focusing on customer success around a long-term goal rather than short-sighted successes- Budgeting for resources, project plans, and activities to be carried out under the project scope- Assessing, analyzing, designing, and updating high-level security policies and processes.

    • Infrastructure Specialist for NY. based Govt Agency
      • Feb 2016 - Mar 2017

      - Developing crucial security specifications and process flow diagrams to support requirements- Assisting in Daily scrum meetings and monthly review meetings to follow up on action items for continuous improvement adhering to Industry Standards and Frameworks- Providing infrastructure management support for Data Center locations in NY & NJ- Performing production system patching, bug fixes, firmware upgrades, and change management- Maintaining VLANs, IP Address Management and Firewall Rules Requests.

  • Trimax Americas
    • United States
    • IT Services and IT Consulting
    • 1 - 100 Employee
    • Technical Consultant
      • Jun 2015 - Sep 2018

      Serving as a IT Consultant to Trimax Americas client-needs & requirements as mentioned above.Additionally, short term projects below:Dell/Honeywell: Office 365 SCCM Engineer, Princeton NJ (January 2015 – January 2016)- Microsoft Office 365 Deployment & migrating users to Office 365- L3 & L4 support for end-client issues.Microsoft/AIG: Windows Migration Engineer, Multiple Locations USA (May 2015 – October 2015)- Enterprise Windows Migration to Microsoft Windows 7 as per end-client requirement- Site Testing Lead for various AIG locationsMicrosoft/TASER: O365 Migration Engineer for MAC, Seattle WA (October 2015 – November 2015)- Enterprise wide migration from on-premise exchange to the cloud- Conducting training sessions for end-users on Microsoft Office 365 for MAC.Additional responsibilities as described below under the System Administrator Intern role.

    • System Administrator Intern
      • Feb 2015 - May 2015

      - Maintaining and supporting existing infrastructure for software applications.- Setup of directory services using MS Active Directory, including Group Policy Architecture.- Setup and configuring NOS (Network Operating System) using Windows Server. These include DHCP, WINS and DNS.- Active Directory administration, group membership design, access to rights and permissions (administrative privileges).- Configuring Active Directory security services, including certificate services and Public Key Infrastructure (PKI).- Providing implementation and enhancement strategies for software applications.- Monitoring the ISP network and be responsible for smooth running of the network/internet.- Maintaining system availability of 99.999% and reduce MTTR (Mean Time To Recover).- Managing Wide Area Network (WAN) and Local Area Network (LAN).- Creating/maintaining technical notes and documentation.

  • Titan Radio
    • Technical Director
      • Aug 2014 - Dec 2014

      As the technical director of Titan Radio (the official internet radio station of California State University, Fullerton), my role here involved taking care of all technical activities in the station. Some of them were: recording & producing promotional audio clips for DJs, setup for various Titan Radio events on campus, and maintaing an uninterrupted streaming link. As the technical director of Titan Radio (the official internet radio station of California State University, Fullerton), my role here involved taking care of all technical activities in the station. Some of them were: recording & producing promotional audio clips for DJs, setup for various Titan Radio events on campus, and maintaing an uninterrupted streaming link.

  • California State University, Fullerton
    • United States
    • Higher Education
    • 700 & Above Employee
    • Concert Technician
      • Aug 2014 - Dec 2014

      Role involved setting up and tearing down event equipment, managing the audio mixer, and performing live monitoring and managing of sound output using the audio mixer.

    • Instructional Student Assistant
      • Aug 2014 - Sep 2014

      Assisted a Professor in setting Homework assignments, Project topics, etc. for a class.

  • Delhi Metro Rail Corporation Ltd
    • Railroad Equipment Manufacturing
    • 700 & Above Employee
    • Summer Intern
      • May 2011 - Jul 2011

      As an intern under the IT department, I was assigned a project in which I had to develop a Customer Feedback Application that commuters could gain access to over a social platform like Facebook. The feedback from the commuters helped Delhi Metro to serve their commuters better. As an intern under the IT department, I was assigned a project in which I had to develop a Customer Feedback Application that commuters could gain access to over a social platform like Facebook. The feedback from the commuters helped Delhi Metro to serve their commuters better.

Education

  • California State University, Fullerton
    Master of Science (MS)
    2013 - 2015
  • Amity School of Engineering & Technology
    Bachelor of Engineering (B.E.)
    2008 - 2012

Community

You need to have a working account to view this content. Click here to join now