Resume

Sign in

Sap Project

Location:
Bengaluru, Karnataka, India
Posted:
February 12, 2018

Contact this candidate

Resume:

Trinadh Bokka ac4ftz@r.postjobfree.com

SAP GRC Lead Consultant Ph: +91-988*******

Summary

•Having 10 + years of experience in SAP GRC 10.0, 10.1 & 5.3, R/3 Security.

•Currently working as GRC SME for multiple projects in Accenture Solution Factory

•Having 4 End to End implementation and two support project experience in GRC 10.X

•Implementation and support experience in GRC 5.3

•Experienced in Security Upgrade for HANA system

•Having experience in both technical and functional implementation of Access Control 10.X with hands-on experience in configuring and setting-up AC 10/10.1 modules such as Access Risk Analysis (ARA), Access Request Management (ARM), Emergency Access Management (EAM), Business Role Management (BRM) & User Access Review

•Working on Estimations & RFPs and preparing the RFP presentation document for GRC and ECC systems.

•Received ACE (Accenture Excellence) award for the 3rd quarter of 2016

•Certified in SAP GRC AC 10.0 with 100%

•Trained on GRC Process Control 10.0 in SAP Labs, Bangalore

•Trained on GRC 5.3 - SAP Business Objects Access Control 5.3 - Implementation & Configuration in SAP Labs, Bangalore

•Thorough knowledge and understanding the Access Control application

•Having experience on Rule Building and Validation Risk Analysis, Risk Analysis Framework, Risk Remediation, Mitigation, Workflow approval set up, Continuous Compliance, Super User Privilege Management (Firefighter ID) and

Competencies

SAP GRC 5.3, 10.0, 10.1, R/3 Security, BI, CRM, Visual Admin and Vendavo GRC 10.0

Tools: Peregrine, HPOV, SM7, Remedy Tool, ICM, Solution Manager and Vendavo

Organization III: Accenture

Client 4: Adnoc, Abu Dhabi

Role: Upgrade Consultant

Duration: 2017 August to Dec 2017

Environment: ECC

Roles and Responsibilities:

ECC SU25 Upgrade activity

Analysis of existing Roles and authorizations.

Backup of existing roles and tables pre-and post-upgrade.

Performing of SU25 upgrade activities 2A, 2B, 2C, and 2D

Analysis of impacted roles for SU25 upgrade

Gathering he requirements from business team for newly introduced object

Modifying the roles based on the provided inputs from business

Changes in SU24 for field values of objects

Creation and modification of roles

Creation roles for FIORI authorizations

Based on the audit findings, recommend and defined policy and procedures for user and role administration

Prepared documentation for User and Role administration process

Setting up new policies for security related activities

Client 3: Electrolux, Sweden

Role: GRC SME Consultant

Duration: 2016 September to Till Date

Environment: 10.1

Roles and Responsibilities:

GRC 10.1 Implementation

•Planned for design and deployment strategies for GRC 10.1 project

•Conducting weekly gateway meetings and presenting the status of Project details

•Leading the project and updating status of project to Accenture and client management

•Collecting initial requirements as per their existing landscape

•Designed and Presented GRC 10.1 features & scope of ARM, ARA, BRM and EAM

•Designed project plan for GRC 10.1 modules ARM, BRM, UAR & SPM

•Analyzed and prepared documentation for customizable activities and estimated number of Man-days from Design phase to deployment and PGLS support

•Designed, developed logic and configured MSMP workflows for ARM, EAM & UAR

•Created and developed required logic for MSM workflows in BRF plus tool

•Coordination of IBM TIM team for setting up master data source

•Successfully configured LDAP connectivity for GRC system as Primary master data with coordination of basis team

•Involving IBM TIM team to integrate GRC system with TIM system

•Developed and configured required notification mails contents for ARM & BRM modules

•Designed and configured workflows for UAR

•Performed Unit test and Integration test and supporting for UAT issues.

•Configured LDAP groups provisioning in LDAP system by mapping ECC roles

•Prepared the documentation & presented to client on newly configured modules

•Preparation of training documentation and providing training to client management

•Successfully moved the changes to Production environment for Go-live

Client 2: Nokia FBB, Finland

Role: GRC Module Lead

Duration: 2016 February to August

Environment: 10.0

Roles and Responsibilities:

GRC 10.0 ARM module Implementation for SAP & Non SAP systems

•End to End GRC 10.0 Implementation for SAP and Non SAP systems.

•Gathering the initial requirements as per the existing business process

•Preparation of the strategic plan for executing GRC Project

•Designed and presented workflows details to client

•Setting up weekly meetings with business team for their requirements

•Analysis of the impacts of new GRC tool for current process

•Preparation of the TDD and MoG (Maintenance of the Guide) documents

•Getting the signoff mail from client for TDD and MoG

•Getting the Signoff mail for UAT and Technical go-live

•Designed new workflows as per the client requirement and configured

•Customized ARM request as per the client requirement by using SE80

•Configured and implemented for Non SAP systems by using FLAT files

•Customization of notifications mails

•MSMP and BRF plus customization

•Defined scripts for UAT and same executed in DEV and QA

•Successfully gone for the Live without any major issues

Client 1: Halliburton, US

Role: GRC Analyst and Developer

Duration: 2015 June to 2016 March

Environment: 10.1

Roles and Responsibilities

GRC 10.1 Enhancements

•Mainly involving in enhancements of GRC workflows with new requirements

•Configuration activities for new SAP system and supporting to end user issues

•Root cause analysis for MSMP and BRF plus workflow issues

•Defining new workflows in MSMP and updating BRF plus with new logic for new requirements

•Design and develop new logics for new systems

Organization II: Capgemini India Pvt Ltd

Client 4: Hindustan Unilever Ltd, UK

Role: GRC Team Lead

Duration: 2013 March to 05.06.2015

Team Size: 5

Environment: 10.0 & 5.3

Roles and Responsibilities

GRC 10 Implementation and Support

•Workflows configured in MSMP for New User, Change user, Firefighter Access with BRF+ Initiator Rule ID

•Creation of Connecters and Connector Groups for each backend system and

•Custom Agents rules, Initiator Rules Defined in BRF + and used in MSMP Workflow

•Mapping approvers in BRF+ Agent rule

•Custom Initiator Rule created in BRF plus for New user, Change User, Lock user and Firefighter Access

•Synchronization Jobs scheduled for Repository Object Sync, Authorization sync, users and Transactions

•Generated rules and rule IDs for Risk Analysis

•Configured Access Control settings with required parameters

•Maintained auto provision settings globally

•Mass roles uploaded into GRC system

•MSMP Workflow configured for new/change Functions & Risks

•Mapping Roles and approvers to Functional Area in BRF plus tool

•Transporting Functional area and approvers list from BRF Plus tool

•Creating Functional Area and Business Process as per the requirement.

•Applying Mitigation Controls at role and user level.

•Applying Mass Mitigation Controls by using download and upload programs

•Creating New Mitigation controls and Administrators and mapping the same.

•Weekly SoD review at role level and User level

•Analyzing the Custom transaction codes and updating the GRC Ruleset if risks are exist in the base transaction code.

•Giving Security Clearance for Custom Transaction by following FS and TS docs

•Knowing the functionality of the custom transaction from Functional & technical team

•Ruleset updation post giving security clearance of new custom T-code

•Resolving GRC 10 support issues

•Creating new mitigation controls for newly identified risks

•Adding Approver and Monitors to existing Business Units

•Adding new approvers & Monitors to existing Mitigation Controls and deleting old approvers

•Modifying functions with custom T-codes

•SOD report – report on mitigated and unmitigated risks with information about critical risks

•Involving Global GRC UAT and Change Impact Analysis

•Persona Admin support: Adding flavors & groups to end users

•Providing training to Business user on GRC 10 requests

•Taking care of escalations by attending the client calls

•Reporting weekly, monthly and annually tickets updates

•Taking care of SLAs for agreed tool ticket

Client 3: Burberry

Duration: 2013 Jan to March 2013

Team Size: 3

Roles and Responsibilities

GRC 10 Implementation Activities

•Prepared strategic plan and executed the project

•Conducted project phase gateway meetings

•Gathering the requirements for project execution at preparation phase

•Conducting the meetings with all stakeholders for at Preparation phase, Feasibility phase and UAT

•Analyzed the impacts of up gradation with all stakeholder

•Activated GRC & GRAC BC Sets and Services in SICF

•Plug-Ins installed in ERP system with require patches

•Installed GRC 10.0 Add-on GRCFND_A Component with patches

•Performed post & pre installation steps for ARA, ARM. EAM and BRM

•Created Connectors and Connector Types for back end systems and also defined subsequent connectors

•Maintained Connectors with Integrated Scenarios

•Workflows configured in MSMP for New User, Change user, Firefighter Access with BRF+ Initiator Rule ID

•Custom Agents rules, Initiator Rules Defined in BRF + and used in MSMP Workflow

•Mapping approvers in BRF+ Agent rule

•Custom Initiator Rule created in BRF plus for New user, Change User, Lock user and Firefighter Access

•Synchronization Jobs scheduled for Repository Object Sync, Authorization sync, users and Transactions

•Generated rules and rule IDs for Risk Analysis

•Configured Access Control settings with required parameters

•Maintained auto provision settings globally

•Mass roles uploaded into GRC system

•MSMP Workflow configured for new/change Functions & Risks

•MSMP Workflow configured for Mitigation Control creation and assignment

•Maintained MSMP Workflows for Agents, Rules and Paths

•Number Ranges defined for Access Request

•Applied Snotes when we got an errors for new Function approve

•Created new mitigation controls and mapped the owners and monitors

•Created root organization and maintained with mitigation controls

•Assigned Mitigation controls for Identified Risks

•Centrally Configured Fire Fighter IDs and created control owners in Access Control

•FF ID, FF Monitor, Risk approver, Mitigation Monitors owners created in Access Control

•BRM role methodology and process configured for Single and Derived Roles

•Defined BRF plus rule for role methodology and assigned Condition Groups

•Condition Group Types assigned to BRF plus Application and Functions

Client2: Tarkett FR

Duration: 2012 Nov to 2012 Dec

Environment: SAP R/3 Release 4.7, ECC 6.0

Duration 2 Months

Team Size: 2

Roles and Responsibilities

R/3 Support

•User administration: User Creating, modifying, password resetting, locking and unlocking.

•Creating authorization groups and maintenance of the table authorizations

•Roles Maintenance, Roles Uploads & Downloads

•Mass Transports & Deletion of Roles

Client 1: Philips NL

Duration: 2009 May to 2012 Oct

Environment: SAP R/3 Release 4.7, ECC 5, ECC 6.0, GRC 5.3, CRM & BI 7.0

Team Size: 15

Roles and Responsibilities

GRC 5.3 Support & Configuration Activities

•Involved in the GRC 5.3 CUP, RAR and SPM Implementation & Configuration tasks.

•Created FF users for SPM and converted them into FF IDs.

•Uploaded UME roles like CC, AE & RE_UME_ROLES.txt files in RAR.

•Created AC Administration user in UME Database with AEADMIN, READMIN & VIRSA_CC_ADMINISTRATOR roles

•As per document, created JCo connections and Technical system for target systems

•Created Logical Systems and Assign System Connectors

•Downloaded Static Text from R/3 system by using report /VIRSA/ZCC_DOWNLOAD_DESC and uploaded to GRC system

•Downloaded SU24 data from R/3 system and uploaded to GRC system by using report /VIRSA/ZCC_DOWNLOAD_SAPOBJ

•Uploaded SAP delivered Rule files to GRC system

•Configured Organization Rules for new company code in RAR

•Uploaded 3 initial data (XML) files into CUP

•Connecters Creating and testing

•Created System connectors for User Data Source

•Configured CUP for the workflow with creation of Initiators, Stages and Path

•Configured Custom Approver Determinator (CAD) for SPM

•Maintained Number ranges in CUP

•Created new mass & single roles in CUP with primary and back up approvers

•Created Firefighter ID’s and assigned approvers as owners for execution in production level.

•Creation of new Mitigation controls and business units.

•Creation of the Monitors and Approver for Mitigation Controls

•Adding Approver and Monitors to existing Business Units

•Adding new approvers & Monitors to existing Mitigation Controls and deleting old approvers

GRC Support Activities

•Monitoring daily and weekly RAR Background jobs

•Updating and changing primary and back up approvers in CUP for single and mass roles.

•Identifying Risks for User level in RAR and same updating to Managers

•New roles creation with primary and backup approvers

•Enabling and disabling auto provisioning in CUP for existing roles

•CUP requests redirecting / forwarding to respective back up approvers when primary approvers are not available

•Creating requests for new users creation, role assignment & removal, reactivation & deactivation of user and Super user access,

•Checking Security Checks and approving correct requests

SNote ICS Support Activity:

•Downloading newly released Snotes monthly once from Service Market place and updating to Project OTLs to create new Change Requests to apply on all the systems.

•Monitoring workflow of SM7 Change Requests and Tasks and updating to the task owners whenever task is not moving to next phase

•Performing the UATs for implemented Snotes in Quality systems and preparing the documents for the same.

•Monitoring the n Snotes on all the sectors of systems (22) for all the implemented Snotes and support pack

R/3, CRM & BI & Vendavo Support Activities from 2009 May to 2010 May

•User Administration: Creation of new user ids for end users, locking and deleting the ids when end user leaves organization

•Troubleshooting: Responsible for analysis of end users authorization related problem in R/3 system. Analysis on basis of SU53 and Trace file from ST01, provide possible solution to end user and guide them.

•Process Improvement: Involved in process improvement

•Authorizations: Create new roles for Client Rollout projects. As a key player in Security team, I built the new roles for new SAP rollout project in different company codes which were assigned to end users based on their jobs and responsibilities in organization

•Transporting Roles: Transporting roles in SAP Landscape

•Documentation for Future: Built documentation for new solutions and complex issues for other team members

•Authorizations: Inserting Missing Authorizations Manually: I was taking care of end users authorization problems which they were facing during execution of business processes (Analyzing SU53 screenshot and carrying out system trace if required).

•Creating users in the Portal, Vendavo and Visual Admin tools

•Creating authorization groups and maintain the table authorizations

•Providing table access by using Authorization groups

•Downloading and uploading roles to transportable clients

SAP Portal (SAP Marketplace):

•S-User creation and maintain authorization.

•Opening SAP OSS Connection and maintaining access data through SAP Portal.

•Documentation update.

CRM Support Activities

•Working on CRM security issues such as assigning Business roles in the PPOMA_CRM

•Performing the ACE Updation in the ACE_UPDATE

•System opening and closing with Firefighter ID and also monitoring the logs

•User administration: Creating, modifying, password resetting, locking and unlocking of the users

•Analyzing and troubleshooting root cause of authorization issues and fixing the missing authorizations issues

•Providing special users like firefighter IDs and collecting Logs for the firefighter IDs

Organization I: NISC

Client: CGI

Project : Bell Canada

Duration: 2006 Dec to 2009 May

Roles and Responsibilities

R/3 Support

•User administration: Creating, modifying, password resetting, locking and unlocking.

•Role creation, modification and role transports

•Ensure segregation of duties (SoD) exists in the SAP system using VIRSA systems VRAT tool

•Extending FF IDs and maintenance of FF IDs

•Giving Fire call access through Firefighter tool and extending fire call access

•Checking missing authorizations by using SU53

•Resolved incident and new hire tickets

•Creating new roles according to business requirements subjective approval.

•Creating and transporting roles to destination systems

•Creating authorization groups and maintains the table authorizations.

•Applying S-Notes with instructions.

•Monitoring background jobs and system logs

•Transporting roles to destination systems

•Creating authorization groups and maintain the table authorizations

•Restricting and providing table level access by using Authorization groups

Non-Sap Experience

Clients : Kharafi National, Kuwait & Gantec, Hyderbad

Role : Windows Administrator

Duration : 2004 June to 2006 November

Platform : Windows NT /2000/2003/XP

Roles and Responsibilities

•Installation of Windows 2000/2003 Servers and XP

•Creating and administering users and giving permissions

•Creating and modifying of MS SQL databases

•Maintaining particular database backups and restores

•Installation of Antivirus copy on servers and clients

•Installation of patches and service packs for OS

•Installation and Troubleshooting of Operating System, and Printers

•Installed and configured IIS server

•Applied windows service packs on XP

•Installed HR Payroll software for HR department

Educational Qualifications

•M.Sc from Andhra University, Visakhapatnam, 1st Division

•B.Sc from Andhra University, Visakhapatnam, 1st Division



Contact this candidate