Alejandro Ropero
Indianapolis,IN
Summary
Accomplished Governance and Compliance Leader with over 20 years of experience at AES, specializing in IT frameworks and compliance initiatives that ensure enterprise-wide adherence to standards. Expertise in SAP GRC and risk assessments has led to significant improvements in system integrity and regulatory compliance. Proven ability to lead cross-functional teams and develop training programs that effectively mitigate risks. Committed to advancing organizational compliance efforts through innovative strategies.
Overview
21
21
years of professional experience
1
1
Certification
Work History
Governance & Compliance Management
AES Indiana
04.2017 - Current
- Develop and implement governance frameworks for IT systems and high impact project implementations (SAP CIS and ISU), defining roles, policies, and escalation processes
- Establish and track compliance KPIs, ensuring adherence to enterprise standards and integration patterns
- Conduct audits, risk assessments, and corrective actions to address compliance gaps
- Partner with IT, GRC, Security, and Legal teams to enforce responsible applications governance
- Monitor, audit results for bias, and maintain compliance documentation
- Oversee system compliance, analyzing data usage patterns to mitigate risks
- Collaborate with cross-functional teams to align governance policies and compliance initiatives
- Evaluate third-party integrations for governance and compliance risks
- Develop and deliver compliance training GRC solutions
- (Chg Mgt, SAP GRC, IT applications controls)
- Continuously refine governance frameworks, integrating industry best practices and emerging regulations
IT Compliance Lead
The AES Corporation
01.2015 - 03.2017
- Responsible for all activities within the security compliance, IT Change management and IT risk management lifecycle
- These activities include: risk analysis, Access /Change Management process coordination, auditing, risk mitigation, and governance & policy
- Coordination of different periodic IT Audits (internal / external) and review of SSA16 (SOC1) reports based on SOX IT Controls
- Managing IT Security and Change management processes and teams, to ensure that proper IT internal controls are effective across the Company IT landscape (20,000 users across 17 different countries, 5 material apps, 2 types of OS and 3 different Cloud applications)
- Develop and ensure that compliance at corporate level is efficient, using GRC solutions
- Oversee ongoing projects to ensure compliance within security methodology and design requirements; also aligned with standards, practices and regulations (SOX)
- Co-ordinate the review and adoption of policies and procedures and ensure support is provided to the business at an appropriate level
IT Applications Security Manager
The AES Corporation
01.2009 - 12.2014
- Implementation of IT governance frameworks to ensure compliance and security, partnering with cross-functional teams to mitigate risks and drive adherence to enterprise standards
- Through audits, training, and continuous improvement, I enhance system integrity and regulatory alignment
SAP GRC Management
The AES Corporation
03.2007 - 12.2008
- Implement and maintain SAP GRC Access Control module
- Conduct risk assessments, manage mitigation plans, and ensure compliance with internal policies and external regulations
- Monitor and report on security risks, access violations, and governance policies
- Design, implement, and manage SAP security roles and authorizations
- Perform user access reviews, segregation of duties (SoD) analysis, and ensure proper provisioning and de-provisioning of user accounts
- Enforce security policies across SAP landscapes, including Fiori applications
- Ensure SAP security controls align with SOX requirements, maintaining proper documentation and audit evidence
- Collaborate with internal and external auditors to support SOX audit processes
- Investigate and respond to security incidents, breaches, and unauthorized access attempts
- Implement corrective and preventive measures to mitigate security risks
- Identify and implement process improvements and automation opportunities within SAP GRC and security frameworks
- Stay current with SAP security patches, updates, and industry best practices
- Develop and deliver training on SAP security policies and procedures
- Work closely with IT, internal audit, compliance, and business teams to align security strategies with organizational objectives
- Provide support and guidance to end-users on SAP security best practices and governance requirements
SAP Security Administrator
AES Venezuela (EDC Electricidad de Caracas)
08.2004 - 03.2007
Education
Bachelor of Science - Computer And Information Systems
Universidad Metropolitana
Caracas, Venezuela07-2003
Skills
- Governance Structure Development
- Compliance Program Development
- Risk assessment
- Audit Management
- User Access Management
- Change management
- Security Policy Development
- Issue Resolution Management
- SOC 2 Framework Expertise
- Governance Risk Management Solutions
- Project management
- Multidisciplinary Project Coordination
- Training Program Design
- Compliance Management
- Third-party risk
- Project planning
- SAP Security Management
- Experienced in SAP GRC Implementation
- Governance Risk Control
- SAP Security Configuration
- Security Assessment
- Strategic Policy Development
- Mitigation strategies
- Regulatory Compliance Documentation
- Access Control Management
- Project oversight
- Stakeholder Relationship Management
- IT Audit Management
- Access control
- Experienced in SAP Applications
Certification
-ITIL V3 Certified professional
-SAP GRC Access Controls V10 Certified professional
Languages
English
Full Professional
Spanish
Native or Bilingual
Timeline
Governance & Compliance Management
AES Indiana
04.2017 - Current
IT Compliance Lead
The AES Corporation
01.2015 - 03.2017
IT Applications Security Manager
The AES Corporation
01.2009 - 12.2014
SAP GRC Management
The AES Corporation
03.2007 - 12.2008
SAP Security Administrator
AES Venezuela (EDC Electricidad de Caracas)
08.2004 - 03.2007
Bachelor of Science - Computer And Information Systems
Universidad Metropolitana
Similar Profiles
Jesus FloresJesus Flores
Distribution Engineer at AES IndianaDistribution Engineer at AES Indiana
Austin PattonAustin Patton
Scrubber Operator at Aes IndianaScrubber Operator at Aes Indiana
Esmeralda CaballeroEsmeralda Caballero
Bilingual Customer Service at AES IndianaBilingual Customer Service at AES Indiana