Alex Samuel

• Led Cyber Security, Data Privacy, and Risk Management audits covering databases, applications, firewalls, networks, and access controls.

• Extensive experience in ERP audits for SAP and Oracle, including GRC tools, automated controls, and core business process reviews (P2P, O2C, Finance, MM, SD).

• Hands-on in IT Governance, policy formulation, and risk assessment frameworks.

• Led vendor security and outsourcing audits, ensuring compliance with corporate and regulatory standards.

• Responsibilities include performing and managing assignments for information technology audits, information security reviews, specialized application control reviews, process reviews surrounding IT management and operations.

• Leading assignments including developing audit project plans, allocating resources, and leading staff members.

• Determining audit procedures necessary to achieve the desired audit results.

• Reporting on audit and process findings and making recommendations for correction of noted control deficiencies and improvements in operations as per industry standards and best practices.

• Performing Risk based Audit based on client industry

• Giving inputs to the client on the overall IT Infrastructure and design based on industry best practices.

• Updating and framing controls based on industry benchmarks such as COBIT, ITIL etc and from regulatory requirements such as IT ACT 2000, SEBI, RBI, NIST and IRDA guideline on cyber security.

• Identifying & Auditing the IT general controls for adequacy

• Maintain strong client focus by building strong relationships with clients, scheduling and conducting key client meetings.

• Play a key role in development of staff through mentoring, training and advising.

• Good Working knowledge on NIST, Cobit and ISO controls.

• Responsible for managing & supporting the core IT Infrastructure Systems including Servers, Networks & Data Center Operations. Level 3 escalation point for any LAN or WAN related issues

• Enforce security policy & procedures implementation with facilitation of other departments

• Modifying/Reviewing Business Continuity Planning (BCP) document and Disaster Recovery Document.

• Network Security Incident monitoring and Reporting. Managing Tape movement activities

• Perform information security risk assessments of various products, processes and technologies across the business unit and identify potential risks.

• Application Control Review, Process Controls Review. Firewall & Server Log monitoring, Collection and Reporting. Performing Quarterly Datacenter Audit.

• Process Documentations for each IT/Network process.

• Manage all IT vendor & outsourcing relationships in line with global policy, including contract / cost negotiation and Service Level Management. Vendor Contracts Review (SLA)

SAP BASIS Responsibility

• Administration of SAP including the installation, configuration and maintenance.

• Creating and deleting users, assigning and resetting passwords, locking and unlocking users.

• Client administration like local client copy, remote client copy, creates and deleting clients.

• Creating and Restoring data backups

• Creating RFCs and configure TMS (Transport Management System)

• Monitoring and managing the servers, background jobs, performance of the system

• Creating roles using different methods like transactions, direct objects, missing authorizations, restrictions...etc

• Troubleshooting security or authorization problems using SU53, ST01 and SUIM

• Monitoring the status of work processes, application servers and system logs etc.

• Analyzing the ABAP dumps. • Managing the database space allocation

• Troubleshooting any type of problem related to operating systems

• Configuring SAP GUI at client computers