Nitesh Kumar

Senior Manager – SAP Security & GRC

New Delhi, India

Experience

Aug 2024 - Present
11 months

Senior Manager – SAP Security & GRC

Ernst & Young (EY)

  • Responsible for implementation of roadmap and project plans for Access Management domain.

  • Driving the SAP role redesign and remediation project for a consumer goods client.

  • Managing client stakeholder expectations in terms of quality and timeliness of deliverables.

Sep 2022 - Aug 2024
2 years

Product Owner (SAP I &AM & Cloud Identity Access Governance)

INGKA Services LLP (IKEA)

  • Led the implementation of position based roles and Fiori UX (Space & Pages) design for S4 HANA Program (S4, MDG, BI).

  • Led the implementation and monitoring of SAP Firefighter log review automation & ITGC, GDPR framework.

  • Worked in collaboration with process leads in streamlining and modelling of the financial & risk management processes.

  • Led the automation & reporting of segregation of duties via SAP Analytics Cloud (SAC).

Jan 2021 - Aug 2022
1 year 8 months

GRC Manager

Maersk Global Service Centre

  • Worked as SME in GRC Access Management & Process Control.

  • Managed the risk management & audit issues across Maersk.

  • Defined and continuously monitored the ITGC control across access and change management and updated the same in Archer.

  • Drove the automation & Power BI reporting of segregation of duties in SAP and legacy system.

Oct 2018 - Jan 2021
2 years 4 months
Kuala Lumpur, Malaysia

Manager (SAP Security & GRC Project Services); Head (Risk & Compliance)

Petronas Digital Sdn Bhd

  • Led a team and managed end-to-end solution delivery from analysis, design to implementation in adherence to defined quality processes and methods for risk & GRC process under Group Digital.

  • Drove program management & service delivery function for SAP Practice, managing a portfolio supported by a team of 13 members.

  • Handled project budgeting and resource planning for risk & compliance projects and system regulation projects.

  • Provided implementation, post-implementation, enhancement, and support to client applications; acted as a portfolio manager for AMLA & anti-bribery business rules rollout project.

  • Led strategic account planning processes including financial targets, critical milestones, RFP responses, and cost effective innovative solutions.

  • Provided functional inputs for financial modules and localization map; prepared requirement mapping template and recommended customization as required.

  • Successfully implemented business process management & ARIS rollout for finance processes, GRC policy management & SAP GRC CCM for month end activities, and a GRC rule set for S4 HANA system.

  • Collaborated with business teams and common services to ensure smooth implementation of new developments by managing cost, quality and release processes.

  • Led SAP role re-engineering to transform technical roles into business role culture.

  • Successfully designed control framework in GRC AC/PC for Issue to Resolution and Purchase to Pay processes.

  • Acted as an ARIS BPM subject matter expert for business process transformation for Group Finance and served as solution architect for process mining capability.

Jan 2018 - Oct 2018
10 months

Senior Manager - Strategy, Governance & Security

Creating Values Pvt. Ltd.

  • Managed the Microsoft upgrade project for a financial firm providing securities services to domestic and foreign institutions.

  • Directly reported to the COO regarding project status and deliverables.

  • Managed and led the project portfolio for SAP security assessment and roles re-design in S/4 HANA for a ceramic client.

  • Participated in pre-sales of SAP GRC and security assessment service for multiple customers.

  • Organized SAP security/GRC & GDPR webinars for Indian domestic companies to highlight the need for security in cyberspace.

Aug 2009 - Dec 2017
8 years 5 months

SAP Security/GRC Access Control-Project Manager

Accenture Services Pvt. Ltd.

  • Spearheaded the offshore SAP Security/GRC AC delivery model; monitored project budgets, tracked expenses, managed project changes, and developed contingency plans.

  • Played a key role in setting up the connection between SUN IDM my Access and GRC 10.1 to support the user provisioning landscape for SAP.

  • Managed design and preparation of client blueprint and weekly management reporting; participated in GATE review meetings with key stakeholders.

  • Part of the change approval board for changes related to security and governance.

  • Participated in and successfully completed the SOX risks remediation project.

  • Led the implementation of GRC 10.1 Access Control (ARM/ARA, EAM, BRM), SAP security for multiple regions (EMEA, LATAM, ASIA, NORAM) and supported SAP GRC policy management.

  • Projects undertaken include:

  • Caltex (4th January 2016 – 29th December 2017) – Posted in Australia (Sydney).

  • DuPont (6th January 2015 – 31st December 2015).

  • Clariant (4th November 2013 – 5th January 2015) – Posted in Germany (Sulzbach).

  • BHP Billiton (June 2010 – November 2013) – Posted in Singapore & Malaysia (Kuala Lumpur).

Jun 2008 - Jul 2009
1 year 2 months

Operations Specialist (SAP Security)

Tenneco India Engineering Shared Services

  • Managed the implementation of SAP CUA.

  • Worked with external and internal auditors to manage internal audits.

Oct 2007 - Jun 2008
9 months

Associate (IT Auditor)

Outsource Partners International

  • Designed IT and security control elements in SAP R/3 and mapped them with ITGC.

  • Collaborated with KPMG US team to evaluate controls and designs to prepare TOD & TOE.

  • Reviewed deliverables to ensure agreed upon quality standards were met.

May 2006 - Oct 2007
1 year 6 months

Senior Process Associate

Tata Consultancy Services

  • Administered SAP user requests across production, development, and quality environments.

  • Utilized in-house developed tools (VRAT) and SAP tools for analyzing SOD conflicts, mitigating controls, and role assignments.

May 2005 - May 2006
1 year 1 month

Customer Service Officer

Standard Chartered Bank

  • Handled customer calls and resolved queries related to credit cards.

  • Tracked high-risk transactions and processed loans on credit cards.

Summary

Senior IT Professional offering more than 19+ years of global experience in Application (ERP) Security, Risk Management, IT Functional Consulting, IT Risk & Project Process Improvement, Project Management, Application Development & Compliance Execution & Support across SAP security and GRC Access/Process Control/Risk Management Led projects through aggressive project governance processes including Solution Information Security & Risk Management, Business Continuity and Application Risk Assurance on multiple clients; presented changes, issues, risks and contingency plans to Portfolio Steering committees to balance project Architecture Support & Maintenance resources, schedules and scope Led initiatives such as business blueprinting, requirements gathering, Continuous Client/ process design & development, enhancement specification, installation/ Process Stakeholder operational/ production qualification, training of users, post go-live support, Improvement Management and operational enhancements Successfully led the SAP GRC AC& PC 10.1 upgrade to SAP GRC AC& Product Technical PC 12.0; acted as a Design Lead for SAP GRC Access Control and Process Integration Implementation &Functional Control Integration Implementation &Functional Deployment Consulting Capable of analyzing information system needs, evaluating end-user & requirements, custom designing solutions and troubleshooting for Audit Performance information systems management Tuning Facilitated continuous improvement and implementation of changes at process level, to ensure excellence in delivery; reduced overall Total Cost of Ownership (TCO), through process improvements Excellence in building & retaining high performance teams, implementing continuous improvement programs and partnering with multiple global stakeholders.

Languages

English
Advanced
Hindi
Advanced

Education

Visvesvaraya Technological University

Bachelor of Engineering, Electrical & Electronics · Electrical & Electronics · Belagavi, India

Certifications & licenses

Certified ISO27001:2005 Lead Auditor

Certified Information System Auditor (CISA)

Certified Professional Scrum Master I

ITIL (3.0) Certified

SAP Business Object Access Control(C_GRCAC_10)

Similar Freelancers

Discover other experts with similar qualifications and experience