Ramkrishna Tippanwar
Windsor,CO|
Summary
Results-driven IT leader with over 15 years of experience in IT service management, governance, risk, and compliance (GRC), and enterprise security solutions. Adept at leading IT Access Control projects, aligning technology with business objectives, and optimizing operational efficiencies. Proven expertise in IT governance, security compliance (SOX, GDPR, HIPAA), and project management. Experienced in managing teams, developing access goveranance strategies, and implementing technology solutions to drive business success.
Overview
15
15
years of professional experience
1
1
Certification
Work History
Cyber Risk and Advisory Manager
Deloitte
07.2024 - Current
- Enhanced customer satisfaction by resolving disputes promptly, maintaining open lines of communication, and ensuring high-quality service delivery.
- Controlled costs to keep business operating within budget and increase profits.
- Developed and maintained relationships with customers and suppliers through account development.
- Managed budgets effectively, ensuring optimal financial performance while investing in necessary resources for business growth.
- Oversee a client account with managed revenue of $1.4 Million.
- Implement end to end Identity Access Management (IAM) solution for employees from hire to retire.
- Guide client implementing UI masking and protect sensitive data including business and employees.
- Assisted compliance team to develop ITGC
GRC & Security Manager
EPI-USE America
05.2018 - 06.2024
- Work as the GRC/Security Solution Architect/ Strategic Advisor to develop a strategy for user role provisioning at an enterprise-wide level, for SAP systems and/or the portal
- Lead the security team in designing and documenting the methodologies for provisioning user roles
- Evaluate IT processes, identifying control deficiencies, and implementing strategic remediation plans
- Establish goals and KPIs in alignment with the organizational vision
- Led comprehensive IT SAP audit health checks, evaluating the effectiveness, security, and compliance of SAP systems
- Manage budget and resource allocation to the project to maximize the profit
- Proactively identify bottlenecks, pain points, and inefficiencies across the organization, and implement solutions to mitigate them
- Create an environment that supports customer self-service and automation of routine service requests
- Oversee process to ensure the Service Level Agreements (SLAs)
- Develop solutions to ensure all GRC and security audit requirements are met at the client
- Formulate a project plan and identify resources required for the implementation of SAP S4/ ECC/ ECP and Cloud-based, e.g
- Take overall responsibility for delivery of relevant reports by all security team members, as defined in the project plan
- Demonstrated proficiency in maintaining rigorous testing schedules and delivering accurate and insightful reports to senior management, supporting a culture of continuous improvement and regulatory compliance
- Manage and direct a consultant-side GRC/Security development and delivery team
- Track and report on development and deployment progress as needed to the project PMO/leadership
- Develop solution to ensure all GRC and security audit requirements are met at the client in accordance with their data privacy and data protection policies, processes, and procedures
- Architect a strategy for user identity management and access provisioning at an enterprise-wide level for all systems, including Active Directory, SAP, non-SAP, Cloud-based systems, and/or the portal
- Identify project risks, determine resolutions, and track progress of resolutions
- Led and executed internal compliance testing initiatives, ensuring adherence to regulatory requirements and organizational policies
- Assess whether organizational structures meet the requirements for controlling access to data, and advise on design changes that may be required to control access to data
- Develop and document processes for remediation or mitigation of security conflicts or violations
- Engage with team members in designing and documenting the methodologies for provisioning user access
- Deliver relevant reports/ deliverables as defined in the project plan
- Manage time and billing on the individual projects
- Develop solution to ensure all GRC and security audit requirements are met at the client in accordance with their data privacy and data protection policies(PII, GDRP, HIPAA)
- Identify project risks, determine resolutions, and track progress of resolutions
- Optimization of client’s SAP technology goals and objectives for overall system security, including access provisioning for SAP environment, and at an enterprise level
SAP GRC & Security Administrator
JBS/Resource IT Solutions
02.2016 - 05.2018
- Lead team of security professionals responsible for complete role redesign of GRC 10.1 and SAP ECC, BI/HANA, IS-Retail
- Deployed GRC 10.1 Access Controls with the following components: Access Request Management (ARM), Access Risk Analysis (ARA), Emergency Access Management (EAM) and Business Role Management (BRM) in accordance with best practices
- Analyze and recommend strategic solutions for new and existing GRC landscapes by leveraging standard GRC functionality
- Defined the role naming standards, Testing standards and Access provisioning policies/templates
- Tailored GRC ruleset to ensure valid risks were enabled by interacting with internal audit and functional/business team
- Evaluated custom transaction and added it to the appropriate functions
- Interacted with end users to gather the transaction required to perform their job duties
- Scrubbed the transaction list to ensure SODs and standardize the business process
- Designed Marcos and Lookups to make the requirement gathering activities efficient
- Designed Role to transaction matrix to formulate the requirements and mopped the positions of end users to business role in GRC
- Assist with Yearly SAP licensing reports by extracting data via SLAW & USMM
- Contribution in analysis and identification of best practices to standardize global processes
- Worked closely with both SAP technical and non-technical teams to ensure the success of the overall SAP solution, thereby, gaining good understanding of Business processes (PTP, OTC)
- Translate technical jargon into business language to drive informed decision-making
SAP Consultant
Capgemini
09.2012 - 11.2014
Senior Systems Engineer
Infosys
10.2009 - 09.2012
Education
Master’s - management information systems
University of South Florida
12.2015
Bachelor - Electronics & Telecommunication
University of Pune
06.2009
Skills
- SAP Access Controls
- IT Process Automations
- Risk management
- Compliance and Control Frameworks
- Gap analyses
- Change Management
- Process efficiencies
- Sarbanes-Oxley (SOX) compliance
- Operational efficiency
- IT Service Management
- Information Technology General Controls (ITGC)
- Implementation projects
- SAP Application Security
- GRC access control
- Engagement Execution
- Client contract negotiations
- Inter company contracts
Certification
- CISA
- CSPO
Profile Overview And Skills
- Conducted comprehensive assessments of SAP configurations, user access controls, and system vulnerabilities to enhance security and compliance.
- Applied industry best practices and audit methodologies to identify potential risks and control deficiencies.
- Identified internal control issues within client IT environments and developed gap analyses to address deficiencies.
- Analyzed core IT processes to identify opportunities for process efficiencies and control optimization.
- Documented IT internal controls testing results for management reporting, ensuring proper disposition of test exceptions.
- Assisted clients in redesigning and transforming IT risk management and technical controls to achieve compliance objectives.
- Demonstrated expertise in Sarbanes-Oxley (SOX) compliance, including SOX testing methodologies and frameworks.
- Assessed existing processes, identified areas for improvement, and documented changes to streamline workflows.
- Developed and implemented global IT strategies to ensure seamless technology integration across remote and foreign locations.
- Led IT service management functions, overseeing IT services, ticketing, system monitoring, and support operations.
- Deep expertise in Information Technology General Controls (ITGC), control frameworks, risk assessment methodologies, and compliance standards.
- Ensured application consistency and maintainability by establishing and enforcing standards for implementing technical solutions.
- Conducted ITGC audits, identified control deficiencies, and recommended effective remediation strategies.
- Established key performance indicators (KPIs) and metrics to measure and improve team performance.
- Provided analytical insights into control effectiveness, documented test results, and recommended governance enhancements.
- Collaborated with cross-functional teams to conduct audits and provide actionable insights to strengthen IT governance.
- Promoted organizational agility by driving adaptive practices, methodologies, and cross-functional collaboration.
- Managed end-to-end engagement execution, risk mitigation, status reporting, and operational oversight.
Leadership & Achievements
Leadership & Achievements
- Successfully led multiple implementation projects, reducing compliance risks and improving security postures.
- Implemented IT governance frameworks, ensuring regulatory compliance and operational efficiency.
- Developed Access Control security policies, reducing security breaches and improving risk management.
- Established team training programs, fostering skill development and leadership growth.
- Managed multimillion-dollar IT budgets, optimizing costs and maximizing ROI.
- Championed enterprise-wide IT transformation initiatives, increasing efficiency and automation.
Timeline
Cyber Risk and Advisory Manager
Deloitte
07.2024 - Current
GRC & Security Manager
EPI-USE America
05.2018 - 06.2024
SAP GRC & Security Administrator
JBS/Resource IT Solutions
02.2016 - 05.2018
SAP Consultant
Capgemini
09.2012 - 11.2014
Senior Systems Engineer
Infosys
10.2009 - 09.2012
Bachelor - Electronics & Telecommunication
University of Pune
Master’s - management information systems
University of South Florida
Similar Profiles
SRI HARSHA PAMULAPATISRI HARSHA PAMULAPATI
Senior Consultant at DeloitteSenior Consultant at Deloitte
Sandalee ShrivastavaSandalee Shrivastava
Level 2 Analyst at DeloitteLevel 2 Analyst at Deloitte
Ganji Sai Venkata BhimeshGanji Sai Venkata Bhimesh
Senior Software Engineer at DeloitteSenior Software Engineer at Deloitte
Caitlin Nicole OelofseCaitlin Nicole Oelofse
Chartered Accountancy Articles at DeloitteChartered Accountancy Articles at Deloitte
Aman KalraAman Kalra
Window assembler at SDR Glass LimitedWindow assembler at SDR Glass Limited