Summary
Overview
Work History
Education
Skills
Interests
Timeline
Generic

Chandan Kishor

SAP Security & GRC Consultant
Mangalore,KA

Summary

SAP Security & GRC Lead with 11+ years of experience delivering and governing enterprise SAP security programs across transportation, insurance, FMCG, and consumer industries. Specialized in SAP Security architecture, SAP GRC Access Control (AC 12.0), S/4HANA security, SAP Fiori authorizations, SAP BTP security, and SAP IAG, with proven success in large-scale transformations. Currently leading SAP security strategy and implementation at Harman (since September 2025), driving secure, compliant, and scalable authorization models across complex SAP landscapes. Previously held senior consulting roles at Swiss Re and Deloitte, where I led and supported ECC to S/4HANA migrations, global rollouts, greenfield implementations, and SAP HANA 2.0 (XSA/XSC) security initiatives.

Overview

12
12
years of professional experience

Work History

SAP Security expert

Wipro R&D
03.2025 - Current
  • Leading S4 Hana Greenfield migration projects.
  • Gap analysis on ECC to S4 conversion.
  • Performed upgrade steps to understand the post migration implications.
  • Preparing the role design of the Fiori based access concept.
  • GRC Ruleset impact analysis during the S4 Hana upgrades.
  • Integrated GRC into S4 Hana systems.
  • Performed GRC SP upgrades.
  • Set up GRC Fiori End user Fiori launchpad page.
  • GRC end to end set up for access provisioning.
  • MSMP workflow customization for complex approval scenarios.
  • Utilized BRF+ framework to set up the complex provisioning/approval process in ARM.
  • Designed the Fiori based Access request page for GRC key users.
  • Set up Fiori based access for the end users.
  • Collaborated with business process owners to define, document, and implement mitigating controls for residual risks.
  • Set up CIS to provision users in IBP, SAC, IAG.
  • Expertise in leveraging SAP GRC to manage enterprise risk, automate internal controls, and ensure compliance with regulations such as SOX.
  • Designed, configured, and implemented automated controls for key financial and operational processes using SAP GRC Process Control, reducing manual effort and improving control effectiveness.
  • Collaborated with business process owners to define, document, and implement mitigating controls for residual risks.

SAP Security expert

Alstom Transport
10.2021 - 09.2024
  • Integrated GRC across multiple SAP platforms such as HANA DB, BW, and Solman systems.
  • Worked on SAP BTP and IAG support related activities
  • Onboarded users on BTP and added them in Org and spaces.
  • Integrated SAP GRC to IAG via cloud connector.
  • Mitigated risks through advanced GRC functions.
  • Handled GRC and SAP upgrades.
  • SAP SAC users and role administrations.
  • Access restrictions for the Models and story.
  • Managing user access via Teams.
  • Good understanding of mitigation controls.
  • Handled several SAP rollout projects.
  • Impose Access Violation Management for identifying, analyzing, and mitigating access risks.
  • Leveraged ETD and GRC for crafting access violation notifications.
  • Monitoring critical changes to data in SAP ERP and S/4HANA in the context of Access Violation Management.
  • Performed security analysis, design, and implementation for SAP systems
  • Managed the AMS team, ensuring quality deliverables. Point of contact for the S/4 HANA migration project.
  • Collected requirements from diverse business process owners.
  • Facilitated seamless onboarding of BTP. Collaborated with cross-functional teams to resolve SAP security-related issues.
  • Handled SAP Roll out projects.

SAP Security Consultant

Swiss Re
10.2019 - 09.2021
  • Worked as SME for S/4 Hana migration projects.
  • Performed administrative tasks for Hana databases alongside managing XSA authorization functions.
  • Designed central hub configuration for Fori role.
  • Actively engaged in audit activities.
  • SAP S/4 Hana upgrades.
  • Creation of Roles for different modules (Planning or BI) with required permissions with the consideration of license constraints
  • Folder - Team mapping for setting up the folder level permissions.
  • Creation of custom story based upon standard SAC model for various security report
  • Bulk user provisioning & team assignment using Postman collection
  • Integration of SAC with IAS for Single sign on

Senior SAP Security Consultant

Deloitte
10.2017 - 01.2019
  • Executed full-cycle implementation of SAP role design for diverse business processes including P2P, O2C, PP, and PM.
  • Organized collaborative workshops to explore and define business roles within BPO operations.
  • Gained hands-on experience in role-building activities.
  • Managed and facilitated UAT, Cutover, and Hypercare processes.
  • Delivered updates for business roles within GRC framework.
  • Executed Firefighter configuration and leveraged MSMP to streamline user access automation.
  • Executed SAP implementations by analyzing business processes and identifying enhancement opportunities.
  • Conducted proactive system analysis and offered Go-Live and Production support as needed.

Associate SAP Security Consultant

IBM India pvt ltd
04.2014 - 10.2016
  • Served as user and role administrator on SAP support project.
  • Handled management of users and roles across platforms like BW, CRM, Solman, Ariba.
  • Worked in Role-redesign project from scratch.
  • Supported auditors by delivering user and role change evidence.
  • Investigate and respond to security incidents and breaches within the SAP environment.

Education

Bachelor of Engineering - Applied Electronics & Instrumentations

Bengal Institute of technology & Management
Shantiniketan
01-2013

Skills

SAP GRC enhancements

SAP GRC Implementations

SAP S/4 Hana Migration/implementation

SAP Fiori security

SAP IAG

SAP BTP Security

SAP HANA security

SAP SAC security

SAP Rollout

SAP Role-redesign

SAP BW security

Interests

Playing Badminton, Travelling

Timeline

SAP Security expert

Wipro R&D
03.2025 - Current

SAP Security expert

Alstom Transport
10.2021 - 09.2024

SAP Security Consultant

Swiss Re
10.2019 - 09.2021

Senior SAP Security Consultant

Deloitte
10.2017 - 01.2019

Associate SAP Security Consultant

IBM India pvt ltd
04.2014 - 10.2016

Bachelor of Engineering - Applied Electronics & Instrumentations

Bengal Institute of technology & Management

Similar Profiles

  • MIFTAHUR RAHMANMIFTAHUR RAHMAN

    SAP SECURITY & GRC LEAD at Tampa ElectricSAP SECURITY & GRC LEAD at Tampa Electric

  • null null

    SAP Security Consultant at Consulting Marvel, LLCSAP Security Consultant at Consulting Marvel, LLC

  • Rahul ApteRahul Apte

    Senior Application Architect - SAP at Mohawk IndustriesSenior Application Architect - SAP at Mohawk Industries

  • Rakesh GopaliaRakesh Gopalia

    Manager, SAP Security & GRC AC, SAP BTP Security at Capgemini SEManager, SAP Security & GRC AC, SAP BTP Security at Capgemini SE

CREATE PROFILE
Chandan KishorSAP Security & GRC Consultant