Nitesh Kumar

Senior Manager – SAP Security & GRC

Avatar placeholder
New Delhi, India

Experience

Aug 2024 - Present
1 year 6 months

Senior Manager – SAP Security & GRC

Ernst & Young

  • Responsible for implementation of roadmap and project plans for Access Management domain.
  • Driving the SAP role redesign and remediation project for a consumer goods client.
  • Managing client stakeholder expectations in terms of quality and timeliness of deliverables.
Sep 2022 - Aug 2024
2 years

Product Owner (SAP IAM & Cloud Identity Access Governance)

INGKA Services LLP (IKEA)

  • Led the implementation of position based roles and Fiori UX (Space & Pages) design for S4 HANA program (S4, MDG, BI).
  • Led the implementation and monitoring of SAP Firefighter log review automation & ITGC, GDPR framework.
  • Worked in collaboration with process leads in streamlining and modelling of the financial & risk management processes.
  • Led the automation & reporting of segregation of duties via SAP Analytics Cloud (SAC).
Jan 2021 - Aug 2022
1 year 8 months

GRC Manager

Maersk Global Service Centre

  • Worked as SME in GRC access management & process control.
  • Managed the risk management & audit issues across Maersk.
  • Defined & continuously monitored the ITGC control across access and change management and updated the same in Archer.
  • Drove the automation & Power BI reporting of segregation of duties in SAP & legacy system.
Jan 2020 - Jan 2021
1 year 1 month

Head (Risk & Compliance)

Petronas Digital Sdn Bhd

  • Led a team and managed end-to-end solution delivery from analysis, design to implementation for risk & GRC process under Group Digital.
  • Drove program management & service delivery function for SAP practice; managed a portfolio supported by a team of 13 members.
  • Headed project budgeting & resource planning for risk & compliance projects & system regulations projects.
  • Provided implementation, post-implementation, enhancement, and support to client applications; acted as portfolio manager for Anti Money Laundering Act & anti bribery business rules roll out project.
  • Led strategic account planning process involving financial targets and critical milestones; worked on RFP responses and provided cost effective & innovative solutions.
  • Provided functional inputs for financial modules and localization map; prepared requirement mapping templates and recommended customizations if required.
  • Successfully implemented Business Process Management & ARIS roll out for finance processes, GRC policy management & SAP GRC CCM for month end activities, and GRC rule set for S4 HANA system.
  • Collaborated with business teams & common services to ensure smooth implementation of new developments by managing cost, quality and release processes.
  • Led SAP role re-engineering work transforming technical roles to business role culture.
  • Designed control framework in GRC AC / PC for issue to resolution process & purchase to pay process.
  • Acted as ARIS BPM subject matter expert for business process transformation for group finance.
  • Served as solution architect for process mining capability.
Oct 2018 - Dec 2019
1 year 3 months

Manager (SAP Security & GRC Project Services)

Petronas Digital Sdn Bhd

  • Led a team and managed end-to-end solution delivery from analysis, design to implementation for risk & GRC process under Group Digital.
  • Drove program management & service delivery function for SAP practice; managed a portfolio supported by a team of 13 members.
  • Headed project budgeting & resource planning for risk & compliance projects & system regulations projects.
  • Provided implementation, post-implementation, enhancement, and support to client applications; acted as portfolio manager for Anti Money Laundering Act & anti bribery business rules roll out project.
  • Led strategic account planning process involving financial targets and critical milestones; worked on RFP responses and provided cost effective & innovative solutions.
  • Provided functional inputs for financial modules and localization map; prepared requirement mapping templates and recommended customizations if required.
  • Successfully implemented Business Process Management & ARIS roll out for finance processes, GRC policy management & SAP GRC CCM for month end activities, and GRC rule set for S4 HANA system.
  • Collaborated with business teams & common services to ensure smooth implementation of new developments by managing cost, quality and release processes.
  • Led SAP role re-engineering work transforming technical roles to business role culture.
  • Designed control framework in GRC AC / PC for issue to resolution process & purchase to pay process.
  • Acted as ARIS BPM subject matter expert for business process transformation for group finance.
  • Served as solution architect for process mining capability.
Jan 2018 - Oct 2018
10 months

Senior Manager - Strategy, Governance & Security

Creating Values Pvt. Ltd.

  • Managed the Microsoft upgrade project for a financial firm providing securities services to domestic & foreign institutions.
  • Reported directly to COO regarding project status & deliverables.
  • Managed and led the project portfolio for SAP security assessment and roles redesign in S/4 HANA for a ceramic client.
  • Participated in pre-sales of SAP GRC and security assessment services for multiple customers.
  • Organized SAP security / GRC & GDPR webinars for Indian domestic companies highlighting the need of security in cyber space.
Aug 2009 - Dec 2017
8 years 5 months

SAP Security/GRC Access Control - Project Manager

Accenture Services Pvt. Ltd.

  • Spearheaded the offshore SAP Security/GRC AC delivery model; monitored project budgets, tracked expenses and managed project changes.
  • Identified issues & risks and developed contingency plans.
  • Set up connection between SUN IDM myAccess and GRC 10.1 to support user provisioning landscape for SAP.
  • Managed design & preparation of client blueprint and weekly management reporting; attended Gate review meetings with key stakeholders.
  • Participated in SOX risks remediation project and completed it successfully.
  • Led the implementation of GRC 10.1 Access Control (ARM, ARA, EAM, BRM), SAP security for EMEA/LATAM/ASIA/NORAM regions, and supported SAP GRC policy management.
Jun 2008 - Jul 2009
1 year 2 months

Operations Specialist (SAP Security)

Tenneco India Engineering Shared Services

  • Managed the implementation of SAP CUA.
  • Worked with external and internal auditors to manage internal audit processes.
Oct 2007 - Jun 2008
9 months

Associate (IT Auditor)

Outsource Partners International

  • Designed IT and security control elements in SAP R/3 and mapped them with ITGC.
  • Worked with KPMG US team to evaluate controls & designs to prepare the TOD & TOE.
  • Reviewed deliverables to ensure agreed upon quality standards were met.
May 2006 - Oct 2007
1 year 6 months

Senior Process Associate

Tata Consultancy Services

  • Administered SAP user production, development & quality requests.
  • Used in-house tools (VRAT) & SAP tools for analyzing SOD conflicts, mitigating controls and role assignments to users.
May 2005 - May 2006
1 year 1 month

Customer Service Officer

Standard Chartered Bank

  • Handled customer calls and resolved queries relating to credit cards; tracked high-risk transactions.
  • Processed loans on credit cards.

Summary

Senior IT Professional offering more than 19+ years of global experience in Application (ERP) Security, Risk Management, IT Functional Consulting, IT Risk & Project Process Improvement, Project Management, Application Development & Compliance Execution & Support across SAP security and GRC Access/Process Control/Risk Management.

Led projects through aggressive project governance processes including Information Security & Risk Management, Business Continuity and Application Risk Assurance on multiple clients; presented changes, issues, risks and contingency plans to Portfolio Steering committees to balance project resources, schedules and scope.

Led initiatives such as business blueprinting, requirements gathering, process design & development, enhancement specification, installation/operational/production qualification, training of users, post go-live support, and operational enhancements.

Successfully led the SAP GRC AC & PC 10.1 upgrade to SAP GRC AC & PC 12.0; acted as a Design Lead for SAP GRC Access Control and Process Control Integration Implementation.

Capable of analyzing information system needs, evaluating end-user requirements, custom designing solutions and troubleshooting for information systems management.

Facilitated continuous improvement and implementation of changes at process level, to ensure excellence in delivery; reduced overall Total Cost of Ownership (TCO), through process improvements.

Excellence in building & retaining high performance teams, implementing continuous improvement programs and partnering with multiple global stakeholders.

Skills

  • Ecc, Apo, Hr, Sol Man Security
  • Sap Grc Access Control 5.3 And Grc 10.0/grc10.1/grc12.0
  • Creating Mitigating Control, Control Owners & Mitigating Control Monitors In Grc 5.3 And Grc 10.0/grc10.1/grc12.0
  • Applied Segregation Of Duties (Sod)
  • S4 Hana, Fiori Business Rule Implementation, Fiori Space & Pages Implementation
  • Configuration Of Arm Workflow, Stages, Approval Step In Grc 10.0/10.1/5.3 And Hr Triggers In Grc 5.3 Cup
  • Sap Grc Rule Set In Grc 5.3/10.1/12.0
  • Sap Grc10.1-sun Idm Integration, Sap Idm – Sac (Sap Analytics Cloud), Btp(iag) Integration
  • Sap Grc 10.1 Access Control And Process Control Integration
  • Sap Grc 10.1 Ccm Configuration
  • Sap Grc 10.1 Risk Management
  • Sap Grc 12.0 – Saviynt (Iam/iga) Integration
  • Sap Grc 12.0 – Process Control
  • Fire Fighter Ids For Support User And Linking Their Base Ids And Ff Ids Through Sap Grc (Spm/eam)
  • Aris Business Process Modeling (Business Process Discovery & Mapping)

Languages

English
Advanced
Hindi
Advanced

Education

Visvesvaraya Technological University

Bachelor of Engineering · Electrical & Electronics · Belagavi, India

Certifications & licenses

Certified ISO27001:2005 Lead Auditor

Certified Information System Auditor (CISA)

Certified Professional Scrum Master I

ITIL (3.0) Certified

SAP Business Object Access Control (C_GRCAC_10)

Need a freelancer? Find your match in seconds.
Try FRATCH GPT
More actions

Similar Freelancers

Discover other experts with similar qualifications and experience

Syed faisal Ali
Syed faisal Ali

Consultant

View Profile
Udayan Sarkar
Udayan Sarkar

Head – IT Infrastructure & Cyber Security

View Profile
Sanat Jha
Sanat Jha

Chief of IT, Operations, & Digital Transformation

View Profile
Bhupender Singh
Bhupender Singh

SOC Technical Lead

View Profile
Michael Schwendemann
Michael Schwendemann

Compliance Consultant

View Profile
George Gambourg
George Gambourg

SAP Authorization Consultant / SAP Authorization Consulting (Freelancer/SAP Consultant)

View Profile
Alagi Mansaray
Alagi Mansaray

Senior Project Manager S4HANA in the energy sector

View Profile
Madhavi Motadoo
Madhavi Motadoo

FICO Consultant

View Profile
Antal Toth
Antal Toth

GRC Consultant

View Profile
Tobias Stötzer
Tobias Stötzer

Project Manager Business Technology Platform BTP

View Profile
Onik Mia
Onik Mia

SAP SuccessFactors & S4HANA Consultant

View Profile
Siddharth Nautiyal
Siddharth Nautiyal

Principal Consultant

View Profile
Pinaak Bam
Pinaak Bam

Enterprise IT and SAP Project Manager

View Profile
Oliver Frömel
Oliver Frömel

Senior IT Enterprise Security Architect | Project Bank Migration

View Profile
Robert Vattig
Robert Vattig

Freelance Consultant Information Security and Business Continuity

View Profile
Daniel Jüntgen
Daniel Jüntgen

Information Security Consultant

View Profile
Nikolaus Betzler
Nikolaus Betzler

ICT Risk Management and Information Security

View Profile
Frank Joraschkewitz
Frank Joraschkewitz

Lead Project Manager

View Profile
Matthias Steinmann
Matthias Steinmann

Senior Consultant Security (freelance)

View Profile
Andreas Fischer
Andreas Fischer

Project Manager & Portfolio Owner for Infrastructure (Automotive)

View Profile
Thomas Martini
Thomas Martini

Consultant / System Administrator / IT Analyst

View Profile
Markus Marschollek
Markus Marschollek

Project Manager / Senior Consultant (multiple projects)

View Profile
Christine Schmitt
Christine Schmitt

IT Project Manager, Regulations & Security Requirements Analyst

View Profile
Michael Langer
Michael Langer

IAM Developer & IT Architect

View Profile
Henryk Orantek
Henryk Orantek

Security Consultant

View Profile
Sascha Leitner
Sascha Leitner

CEO

View Profile
Naren Mahajan
Naren Mahajan

Manager

View Profile
Shahid Farooq
Shahid Farooq

SAP S/4 HANA Project Manager

View Profile
Christian Decker
Christian Decker

Managing Director and Senior Consultant

View Profile
Günther Eufinger
Günther Eufinger

Senior Consultant

View Profile