VIMAL KUMAR, SENIOR CONSULTANT
Mobile: 732-***-****
Email:ac0mgd@r.postjobfree.com
RANGE OF EXPERIENCE
Vimal Kumar, a senior SAP GRC and Security Consultant and holds a bachelor’s degree in Computer Science. He has an overall experience of 9.5 years in the IT industry delivering SAP Security, SAP Governance, Risk, and Compliance (GRC) Access Controls, and Application Development on a range of implementation and support engagements. He is proficient in GRC Access Controls, SAP Security leveraging SAP authorization concept and worked on SAP ERP Central Component (ECC) and Business Intelligence (BI/BOBJ). He also has wide experience working in SAP standard and custom object development using Advanced Business Application Programming (ABAP) and Business Rules Framework (BRF+)
PROFESSIONAL AND BUSINESS HISTORY
PricewaterhouseCoopers: Senior Technical Lead, October 2014 to Present
Deloitte ERS: Senior Consultant, September 2011 to September 2014
SAP Labs: Consultant, October 2007 to August 2011
PROFESSIONAL AND BUSINESS EXPERIENCE
Utility Company
Role: GRC Security Consultant – New ERP Implemenation
Duration: July 2016 to present
Responsibilities and key deliverables:
Conducting work sessions with the business area leads for requirement gathering
Coordinating with SAP and non-SAP application teams for security
Design security for ECC, SCM, BW, BOBJ, BPC, Fiori, HANA
Conducting SoD check for roles
Coordinating between teams for Unit testing, IT and UAT using HPQC
Agriculture and Consumer Products Company
Role: GRC Access Control SME
Duration: 3 months – January 2016 to March 2016
Responsibilities and key deliverables:
Upgraded AC 5.3 to GRC 10.1
Used Migration Tool to import data
Created custom agent rule using Z table and function module
Customized Launchpad and GRC 10.1 AC roles
Created training presentations for Business Users and Admin guide for EAM and ARA modules
Performed Unit Test and created UAT test scripts
Created test data for IIQ (SailPoint IDM) Integration with GRC - User Acceptance testing
Provided KT to the client team on GRC AC
Client: Retail Company
Role: Data Governance and Resilience
Duration: 3 months – August 2015 to Oct 2015
Responsibilities and key deliverables:
Created Inventory of all the applications used across Business Units
Categorized sensitive data after having detailed inputs from BU and product Owners
Prepared high level process flow diagrams for HR, Finance, SCM, CRM, SEO etc.
Oil and Gas Industry
Role: GRC Subject Matter Expert
Duration: 5 months – April 2015 to August 2015
The client is an Oil and Gas company (oil field services).
Responsibilities and key deliverables:
Created UAT test scripts – GRC AC 10.1
Performed Unit and System testing
Created Design and Build Documents for GRC Access Control
Oil and Gas Industry
Role: GRC Subject Matter Expert
Duration: 6 months – October 2014 to March 2015
The client is an American Oil and Gas company (midstream).
Responsibilities and key deliverables:
Implemented GRC 10.1 (Access Control)
Maintain configuration settings
Created UAT test scripts
Performed Unit and System testing
Helped Cut-Over activities for both Security and GRC
Created GRC Admin and end user training guides
Provided support for Security and GRC during the Hypercare period
Food and Beverage Industry
Role: GRC Subject Matter Expert
Duration: 3 months – June 2014 to September 2014
The client is an Australia based beverage brand that is sold around the world.
Responsibilities and key deliverables:
Upgraded Virsa 4.0 to GRC 10.1 (Access Control)
Maintain configuration settings
Migrate master data (partly using migration tool and partly cleanse data and upload using template)
Created Job Aid documents for Business users and Admin Guides for GRC Administrators
Rule Set rationalization of Virsa 4.0 with SAP standard delivered 10.1 rule set
Created UAT test scripts
Retail Industry
Role: GRC Consultant
Duration: 4 months -- February 2014 to May 2014
The client is an American multinational retail corporation that operates chains of large discount department stores and warehouse stores.
Responsibilities and key deliverables:
Upgrade SAP GRC 5.3 to 10.0 (Access Control)
Migrate master data, setup SPRO configuration and workflows using BRF+
Replaced existing CUA composite roles with the Business Role which includes roles from ECC, BI, GRC, SRM and Portal
Setup Additional workflows for Store IDs (Long IDs greater than 12 chars)
Create Mitigating Controls for SOD Risks
Resolve product issues in consultation with SAP via OSS messages
Monitor background Jobs for success/failure and follow-up with Support team to take necessary actions
Life Sciences and healthcare Industry
Role: Security Consultant
Duration: 13 months -- January 2013 to February 2014
The client is a global medical company specializing in eye care products headquartered in America.
Security Implementation project for ECC, BI, BOBJ
Responsibilities and key deliverables:
Lead the Security team of 4 resources from Offshore
Conducting workshops with process teams for requirement gathering
Reviewing security aspect of custom development functional specifications
Building single, composites and enabler roles.
Helping in Position to Job Role mapping
Project management activities leveraging Deloitte’s proprietary Enterprise Value Delivery (EVD) methodology.
Responsible for conducting SoD analysis and removing conflicts for the client to make them compliant to Sarbanes-Oxley, section 404.
Building Support and Firefighter roles
Publishing and Education Industry
Role: GRC Subject Matter Expert
Duration: 1 month – August 2012
The client is a British multinational publishing and education company headquartered in London.
Rule Set and configuration review project
Responsibilities and key deliverables:
Responsible for benchmarking the client rule set with the industry best practices at the transaction level
Reviewing GRC configuration and providing inputs
Food and Consumer products Industry
Role: GRC & Security Consultant
Duration: 15 months -- October 2011 to December 2012
The client is an American multinational confectionery, food and beverage conglomerate.
GRC 10 Implementation and security roll-outs for Latin America
Responsibilities and key deliverables:
Responsible for assessing, designing and performing SAP Security and GRC Access Control implementation (upgrading from Approva Bizrights)
Converting existing Rule set in Approva Bizrights to SAP GRC 10
Creating End user and other Job Aid documents for SAP GRC
Creation of new Security Roles for GRC – Emergency Access Management, Access Risk Analysis and Access Request
Creating test scripts and unit testing of the GRC application and roles
Security Design and build for Latin America – Brazil and Mexico
Supported the project during hyper care period working on remedy tickets
GRC Access Control Product Support (SAP Labs India)
Duration: 2 years - September 2009 – August 2011
As part of the GRC team in SAP Labs worked on GRC 5.3 and 10.0 product support (techno-functional)
Responsibilities and key deliverables:
Responsible for handling GRC application queries from the SAP Clients globally using SAP’s internal ticket based tool.
Provide Functional and Technical support for the GRC support tickets.
Worked closely with GRC Product development teams in India and US for delivering quality solutions to the Client.
Participated in GRC 10.0 Ramp-up support from India.
Responsible for creation SAP Notes and KBA (Knowledge base articles) for GRC customers.
Helped customers during critical project stages like Cutover, Go-live and ensure smooth transition during that period.
Mentored new hires and trained them in SAP related technologies.
Retail Industry (SAP Labs India)
Duration: 2 years - October 2007 – August 2009
As a programmer in SAP Labs worked on product development for IS-Retail in ABAP, BI and BRF+
Responsibilities and key deliverables:
Responsible for designing, building and testing of SAP Products.
Worked extensively in the areas of conventional ABAP and BI (Business Intelligence) in developing products for the Retail sector.
Trained and executed projects according to the Scrum methodology.
Interacted directly with the SAP Solution managers and Product owners to gather requirements, build status meetings and validating the built solutions during weekly scrum meetings.
Provided the Product Ramp up support for the SAP clients globally from India.
Worked with the German team in developing very complex and computing intensive algorithm for Fraud Detection for the Loss Prevention Analytics.
Conducted the internal trainings of the developed SAP Products to the SAP testing teams and helped them during Unit testing phases.
Helped SAP colleagues in designing and building Proof of Concept of Fraud Detection application using artificial intelligence algorithms.
EDUCATION AND CERTIFICATIONS
Bachelor of Engineering in Computer Science from BNMIT, VTU
TECHNOLOGY CAPABILITIES
SAP GRC Access Control
SAP Security
SAP ABAP
SAP Business Rules Framework plus (BRF+)