Sivaramakrishna D Mobile: +91-996******* SAP Security & GRC Team Lead Email:*********.*****@*****.*********:*********.*****@*****.***
Career Objective:
To constantly strive towards perfection as a SAP Technical Consultant through optimal utilization of my knowledge and strength with full commitment and conviction to become a valuable asset for the esteemed organization. Possess work ethics, quick learner and a team player. A result-oriented person, with the ability to analyze and anticipate the problem. Have the stamina to cope with working in a highly pressurized entrepreneurial atmosphere with high energy levels.
Professional Summary:
Over 8 years of experience in SAP as a SAP GRC Security Consultant on
Following Environments SAP R/3 ECC 6.0, BI7.0, SRM 7.0 GRC (AC 5.2, 5.3, 10.1),
Solution Manager 7.0, Fiori 2.0, S/4 HANA
Experience in completing R/3 full life cycle implementations and security administrations
Maintaining SAP security policies and documentation
Conducting workshops with Key Stakeholders, IT Leadership, and Business to organize workshops to get the exact security requirements that need to be built from an end user access perspective.
Expertise with the Profile Generator (PFCG), Role Maintenance and Creation, User Administration, Authorization Objects, User Master Reconciliation
Experience in resolving and correcting authorization errors by utilizing SU53, SU56, ST01 and SUIM.
Expertise in developing roles with proper naming convention depending upon business and functional requirements for R/3 systems.
Expertise in auditing. Ex: HPA review, IT SOD review and remediation etc.
Extensively worked on authorization objects, fields and authorizations.
Critical authorization objects such as S_TABU_DIS, S_PROGRAM, and S_DEVELOP were restricted and monitored.
Daily monitoring, transport movement & background job schedule
Supporting Solution manager 7.0
Creation of user accounts & assignation of roles in Charm 7.0
Maintained Central User Administration (CUA) for SAP R/3 systems on all environments (DEV, QA & PRD) using SCUA, SCUG, SCUL, and SCUM.
Experience in performing trouble shooting on R/3 security issues.
Experience in SAP GRC AC 5.3, the Access Control Launch Pad, Compliance User Provisioning (CUP), Risk Analysis & Remediation (RAR), Super User Privilege management(SPM)
Used the (RAR) Compliance calibrator extensively for carrying user based, Role based risk analysis of SOD violations and critical authorizations.
Experience in SAP GRC design and implementation, administration of the SAP GRC 10.1 in AC: ARA, EAM, ARM and security concepts such as SOD, SOX
Created, configured and maintained Firefighter ID, log reviews and analyzed emergency usage.
Supporting and fixing bugs in GRC 10.1
Worked on S/4 HANA, Fiori Apps creation, groups, securing various S/4 HANA Apps, front end server (FES), business roles, back end server roles (BES).
Created Fiori App, Groups and designed Fiori Roles as per the requirement.
BI General Authorizations and Analysis Authorizations.
Created analysis authorizations in BI/BW systems and created new roles as part of business requirement.
SRM user administration
Experience Summary:
SAP Security & GRC Team Lead in HCL Technologies Ltd from January 2018 to Till date
SAP Security & GRC Technical Lead in Capgemini India Pvt Ltd from June 2014 to January 2018
SAP Security & GRC consultant in HCL Technologies Ltd from September 2011 to June 2014
Technical Skills:
ERP: SAP R/3 version ECC6.0, BI (7.0),
GRC (5.2, 5.3 & 10.1) Solution Manager 7.0, Fiori 2.0,
S/4 HANA, SRM (7.0)
Operating Systems : Windows, Red hat Linux
PROJECTS HANDLED:
Project:
Client: Lanxess
Role: Lead Consultant
Duration: January 2018 – Present
Organization: HCL Technologies Environment: ECC6.0, GRC (10.1), Fiori, And S/4HANA
Responsibilities:
Leading a team of 4 technical consultants for supporting SAP Security & GRC solution.
Delivering SAP Security using ASAP Implementation Methodologies. Prepared and executed various phases of Implementation i.e. Project Preparation, Business Blueprint, Implementation, Final Preparation and Go-live & Support.
Responsible for the User Administration, Role Maintenance and managing the authorization activities independently.
Creating authorization design and role mapping in coordination with clients.
Responsible for Local Role Creation and creating Role Mapping Sheet for the bulk Role assignments.
Analyzing and Suggesting Security process improvement in the project.
Coordinating and having regular status meetings with the client on the ongoing Security design in the projects
Identify and escalate issues before hand over to Managers for critical issues /risks in the project.
Planning and Estimating the Task/Activities for the Team and providing full support in SAP Security for Development as well as for Maintenance.
Providing Suggestions to the Onsite Lead, working closely with Client Team Members, escalating the issues to the leads whenever required and taking the necessary actions as per the approvals from the Leads.
Project:
Client: GE Power Conversion
Role: SAP Security & GRC consultant
Duration: June 2014 – January 2018
Organization: Capgemini India Pvt Ltd Environment: ECC6.0, GRC (10.1), And Solution Manager 7.0
Responsibilities:
Experience in SAP GRC design and implementation, administration of the SAP GRC 10.1 in AC: ARA, EAM, ARM and security concepts such as SOD, SOX
Created, configured and maintained Firefighter ID, log reviews and analyzed emergency usage.
Supporting and fixing bugs in GRC 10.1
Gathering Audit (HPA, IT SOD) requirements. Support Client in performing their External Periodic Auditing.
Responsible for the User Administration, Role Maintenance and managing the authorization activities independently.
Creating authorization design and role mapping in coordination with clients.
Analyzing and Suggesting Security process improvement in the project.
Coordinating and having regular status meetings with the client on the ongoing Security design in the projects
Planning and Estimating the Task/Activities for the Team and providing full support in SAP Security for Development as well as for Maintenance.
Project:
Client: Chemtura
Role: SAP Security & GRC Consultant
Duration: July 2013 – June 2014
Organization: HCL Axon
Environment: ECC6.0, GRC (AC 5.2 & 10.1)
Responsibilities:
Successfully done GRC10.1 (ARA) testing in development and quality environments.
Worked on GRC 5.2 components (Access Enforcer, Compliance Calibrator, Fire Fighter)
Creating and approving of Access Enforcer requests.
Producing SoD Analytical Reports (Detail) against Users, Roles and Profiles using RAR.
Mitigation and remediation of users and roles for SOX using User/Role Analysis in RAR.
Determining and report if any risks will be introduced by simulating the addition of transactions, Roles to a User ID
Setting up Fire Fighter user ids, and preparing fire fighter log reviews on monthly basis.
Worked with User Information System, creating and changing users and assigning users to roles.
Created and modified Single roles, Composite roles and Derived roles using profile generator to meet business requirement.
Maintained users using Central User Administration (CUA)
Project:
Client: Shire
Role: SAP Security & GRC Consultant
Duration: August 2012 – June 2013
Organization: HCL Axon
Environment: ECC6.0, SAP BI 7.0, SRM 7.0 GRC (AC 5.3 & 10.1)
Responsibilities:
Responsible for creating user IDs based on a standard naming convention, setting up of new users, modifying user accounts, resetting passwords, User Terminations, locking and unlocking user Ids in various systems ( R/3, BW,HCM,SCM,SRM,XI)
Experience in resolving and correcting authorization errors by utilizing SU53, SU56, ST01 and SUIM
User Terminations in all SAP systems
Extensively used tables like AGR_USERS, AGR_TCODES, AGR_1251, AGR_DEFINE etc.
Mass User Maintenances by using SU10.
Participate in weekly meeting with client management & present project status
Involved in Shire internal project (Project – GROW) and Created Single roles, defined derived roles & composite roles.
Creation of SRM user ids ( Generating user accounts in USERS_GEN and update in DOA table)
Providing the access to the BW reports to authorized users by creating/changing roles.
BI Security- management of Analysis authorization via RSECADMIN
Checking of SOD conflicts at transactions and object level and identifying the risk levels.
Used GRC (5.3 & 10.0) RAR extensively for carrying user based, Role based risk analysis of SOD violations
Project:
Client: Orica
Role: SAP Security & GRC Associate Consultant
Duration: February 2012 – July 2012
Organization: HCL Axon
Environment: ECC6.0, GRC (AC 5.2, AC 5.3)
Responsibilities:
Created various type of roles as per Role Matrix (FI, SD, HR,CRM,SCM & PIS)
Created Single roles, defined derived roles.
User Administration (Setting up a New User, locking/unlocking a user, resetting password)
Preformed extensive Unit Testing (UT) and System Testing (ST), before going to User Acceptance Tests (UAT).
Used SU24 for reviewing objects in the transaction code and depending upon the request, manually inserting authorization objects in previously built roles.
Experience in resolving and correcting authorization errors by utilizing SU53, SU56, ST01 and SUIM
Extensively worked on authorization objects, fields and authorizations.
Participate in weekly meeting with client management & present project status
Reviewed and corrected sensitive authorizations (S_TABU_DIS, S_PROGRAM, etc.) and have experience with security tables such as (AGR_*, USR_*) to generate reports.
Working with SAP GRC AC 5.3, the Access Control Launch Pad, Compliance User Provisioning (CUP), Risk Analysis & Remediation (RAR) and Super User Privilege management (SPM).
Performed the Risk analysis at User and Role level using RAR.
Creation of Firefighter IDs with super user privileges& assigning them to users through /Virsa/vfat (SPM)
Creating monitors approvers and mapping them to mitigation control.
Project:
Client: Spansion
Role: SAP Security Associate Consultant
Duration: September 2011 – January 2012
Organization: HCL Axon
Environment: ECC 6.0
Responsibilities:
Interacting with the Customer and other external consultants/parties to gather the requirement for implementation.
Worked with functional team and set up the roles as per requirement.
User Transaction SU24 extensively, for verifying authorization objects & check indicators that are linked to relevant transaction for possible restriction.
Transporting roles across the system landscape with BPO approvals.
Creating single and composite roles as per business requirements and assigning it to the users after intensive testing in DEV, QA and PRD Systems.
Addition, Removal of Transaction Codes, authorizations, authorization objects by modifying existing roles based upon change request.
Performed User Administration activities such as setting up user login Ids and assigning and resetting passwords, locking and unlocking users.
Analyzed critical security authorization errors and trouble shooting, using tcodes ST01, SU53 and SUIM.
Reviewed and corrected sensitive authorizations (S_TABU_DIS, S_PROGRAM, etc.) and have experience with security tables such as (AGR_*, USR_*) to generate reports.
Worked with table authorizations and maintained table Authorization Groups in PFCG to protect tables.
Education:
MBA in Information Technology, GITAM University, India
Bachelor of Science, Andhra University, India