Venkata Harish Kumar Garimella

SAP Security & GRC Consultant with 8+ years of experience

Email: ad1r54@r.postjobfree.com Mobile No: +1-424-***-****

Skills / Competences:

SAP GRC

oSAP GRC AC 12.0/10.1 implementation

oSAP GRC 12.0/10.x Application support

oSAP GRC 10.1 to 12.0 upgrade scoping

SAP Security

oSAP ECC

oSAP S/4 HANA

oSAP BI/BW

SAP FIORI Security

CUA (Centralized User Administration)

Portal User provisioning

Professional Summery

Design and configuration of Emergency Access Management (EAM), Access Risk Analysis (ARA), Access Request Management (ARM) and Business Role Management (BRM).

Good experience of Central User Administration (CUA) Architecture.

Experience in Integrating SuccessFactors’s, ABAP Stack, HANA DB, LDAP, and Portal systems with GRC.

Experience in training the Client as part of handover after Implementation.

Collaborate with other team members and business representatives to ensure that security roles, authorizations, activity levels and settings meet the client requirements.

Strong organization and time management skills. Ability to communicate effectively using clear, concise, and understandable language.

Maintenance of User details in secure marketplace.

Experience in Timelines framing and Resource planning for GRC Implementation, Upgrade Projects.

Hands on experience on S/4 HANA Fiori implementation as a security consultant.

Experience on creation of the Fiori Roles bases on the applications required.

Worked on catalog's creation and addition of the tiles into catalogs.

Worked on creation of customized tiles, target mapping and addition into catalogs.

Troubleshooting of S/4 HANA Fiori relates issues using Error log (/IWFND/ERROR_LOG), STAUTHTRACE.

Transported the Fiori customized catalogs into other landscapes.

SAP Security Skills

User Administration - includes timely creation of new users, adjustment of user’s access based on his/her job requirements and deletion of existing user account.

Role Administration - Extensively used the PFCG tool for creation/maintenance and deletion of the Single/Composite/Master and derived roles.

Creation and transportation of single, composite, and derived roles from Development to quality to production environment.

Used SU53, STAUTHTRACE and ST01 to troubleshoot and resolve the authorization issues faced by end users.

Resetting user's password and guiding the password policy to users.

Creation of Authorization groups for table access to users.

Project Asahi Breweries America, INC.

Designation

SAP Security and GRC consultant

Team Size

4

Environment

SAP GRC 12.0, SAP ECC, SAP FIORI

Duration

June 2022 – Till Date

Location

Torrance, CA

Responsibilities:

Design and configuration of the SAP GRC Access Control solution sub-components ARA (Access Risk Analysis), EAM (Emergency Access Management), and ARM (Access Request Management).

Activation of BC Sets of EAM, ARA, ARM and BRM as part of post installation activities.

Configuration settings related to Emergency Access Management, Access Risk Analysis, Workflow and Access Request Management.

Configuration of MSMP workflow using BRF+ condition.

Worked on SAP IBP/IAS security and assigning Groups to users for IBP.

Supported with internal and External Audit.

Worked on CPI-DS Security.

Execution of User and Role Risk Analysis to identify existing SoD violations Risk or Critical action Risk.

Understanding of usage of Fiori Apps library for Fiori Apps Implementation.

Creation and maintenance of Catalogs and Groups.

Activation of O-data services.

Role Administration - Extensively used the PFCG tool for creation/maintenance and deletion of the Single/Composite/Master and derived roles.

Creation and transportation of single, composite, and derived roles from Development to quality to production environment.

Used SU53, STAUTHTRACE and ST01 to troubleshoot and resolve the authorization issues faced by end users.

Resetting user's password and guiding the password policy to users.

Creation of Authorization groups for table access to users.

Project VOLVO

Designation

SAP Security and GRC Consultant

Team Size

3

Environment

ECC 6.0, GRC 12.0, SAP FIORI

Duration

May 2020 – April 2022

Location

Bangalore, INDIA

Responsibilities:

•Implemented GRC 12.0 Access Control Sub-component ARM (Access Request Management) and EAM (Emergency Access Management).

•Worked on configuration for ABAP and Portal system.

•Worked on PD Profile and Portal Group Provisioning.

•Worked on BRM – provisioning functionality for update assignments.

•Worked on Emergency Access Management for ABAP systems.

•Maintaining of owner’s and Controller’s in access control owners and mapping the owner’s and controller’s to FFID.

•Performed the test cases for EAM and ARM.

•Worked on the User Access Review.

•Created test scenarios for GRC changes and performed the test cases.

GRC AC 12.1

Monitoring of GRC request and closure after resolution.

Risk analysis, User level and Role Level

Scheduling background jobs.

Mitigation in case of SOD.

GRC Roll Out at multiple location

Creation of OGR Unit.

Mapping of Approvers, Monitors in Access Control Owner.

Creation Of New Mitigation Control ID as per new Roll Out

Project Warner Bros. Entertainment Inc.

Designation

SAP Security and GRC Consultant

Team Size

5

Environment

ECC 6.0, GRC AC 12.0, SAP FIORI

Duration

November 2017 – Apr 2020

Location

Mumbai, INDIA

Designed and Implemented GRC 12.0 Access Control Sub-component ARM (Access Request Management), EAM (Emergency Access Management) and ARA (Access Risk Analysis).

Worked on Emergency Access Management for ABAP systems.

As per the requirement implemented EAM for portal systems with webdynpro links, FIORI and for HANA DB systems

Implemented EAM for Winshuttle.

As part of the requirement worked on Migration of Approva Biz Rights Rule set to GRC Rule set.

Worked on GRC Security role design

Worked on the custom email notifications for the workflows needed.

Worked on several technical documents related to EAM.

Worked on SOP documents for EAM.

Worked on non-prod EAM documents.

Worked on KO’s documents for the helpdesk.

Worked on Post Installation and configuration documents.

Worked on all the Cut over tasks related to the project.

Conducted training and workshops for business users.

Conducted trainings sessions for client as well as existing security team.

Managed user login parameters and password parameters.

Analyzing Missing authorizations and providing the appropriate solutions.

Worked on Authorization Objects S_TABU_DIS and S_TABU_NAM.

Protected Tables and Programs using Authorization Groups.

Worked on Authorization Objects S_RS_COMP and S_RS_COMP1.

Configuring of EAM on user-based Firefighter ID’S.

Adding firefighter IDs to firefighter

Generating log reports related to firefighter ID’S.

Generated mass profiles using SUPC.

Project Granules India Limited

Designation

SAP Security Consultant

Team Size

3

Environment

ECC 6.0

Duration

Feb 2015 – Oct 2017

Location

Hyderabad, INDIA

Creating and maintaining of roles using profile Generator

Worked on Authorization Groups and assigned tables to the groups.

Mass user maintenance for business convenience.

Worked on roles administration like creating, modifying, deleting and assigning to users based on request.

Good working knowledge of AGR* and USR* tables.

Resolving missing authorizations using SU53, ST01 and STAUTHTRACE to the users.

Transporting the change requests throughout the Landscape.

Locking and changing validity date of expired users.

Contact this candidate