Security Project
Resume:
Raghu Surabhi
Email: *******@************.*** Contact: 650-***-****
Professional Summary:
• Seasoned IT Professional with 10+ years of Experience as a SAP Consultant in
various roles, this includes SAP GRC, Security & ABAP.
• Strong experience in SAP GRC applications and troubleshooting activities of Access
Controls at the time of pre & post installations.
• Configurations Experience in Access Controls capabilities ARA, BRM, ARM & EAM
and worked on reports.
• Defining Risks, Analyzing Risks, Creating Business Process, Rule creation,
mitigation, Role Owner, Alerts, Analyzing management reports, Basic Configuration
Settings in all AC capabilities.
• CUP Workflow configurations, Creating New Accounts, Lock & Unlocking, Change &
Delete accounts, HR Triggers, UAR, SOD Review, Roles Assignment, Maintaining
approval stages.
• Role creation, Maintenance, Reports, Role Attribute creation, Methodology creation,
Role Provisioning, Role Synchronization.
• Integrating all AC capabilities, exposure to web services, BAPIs, RFC users,
scheduling relevant back ground jobs, system configurations and LDAP configuration.
• Working experience on SUIM reports, scheduling background jobs.
• Able to assess client needs and convey necessary information with clarity and
maintain good inter personal communication.
• Excellent analytical, problem solving and communication skills.
• Unique GRC integration with multiple ERP and 3rd party applications like Oracle, Jd
edwards and peoplesoft .
• Worked on SAP GRC and CA IDM integration.
• Strong exposure on SAP Authorization Concept, Profile Generator, Single Role,
Composite Role, Derived Role concept, User Creation and using SOD rules.
• Experience of SAP ECC, CRM, BW, PI, SRM and HANA Portal Security
configuration, design, development, testing, implementation and production support.
• Maintenance of User Master Records, Profiles, Authorizations
• Implemented Role based security administration, including design & testing.
• Troubleshooting SU53, ST01, SUIM.
• Extensive experience in User Administration and Role Assignment in CUA.
• Created and modified master/derived roles, using the Profile Generator (PFCG) tool.
• Extensive work on PFCG, SU24, SU01, SU21, SUIM, & PFUD.
• Trouble shooting performance issues & adjustment of SAP profiles.
• Knowledge of SAP business process, user provisioning processes, and security.
• maintenance processes and leading industry practices
• Work with Business specialists to help them understand what SAP authorization
objects are causing the conflicts and what all options exist for mitigating the conflicts.
Educational Qualification:
Bachelor of Technology (Computer Science) .
Technical Skills:
Skill Set : SAP Security, ABAP/4, BAPI, BADI, ALE, IDOC,
User Exit, XI, Web Services, ARA, ARM, EAM, BRM,
Work flows, MSMP, BRF+, HR Triggers, UAR, SOD
Review, Audit Management, HANA, BOBJ, BODS,
Analytics, C and Java.
SAP System : ECC, CRM, BW/BI, PI, SRM and BPC.
Operating System : MS DOS, Windows 98/Xp/ 2000/windows7.
Database : Oracle, DB2, Ms SQL and HANA.
Domain Knowledge : SAP GRC 5.3 & 10.X, SAP Security, AAK(ABAP Add
on Tool Kit) and various Legacy Connectors for SAP GRC
Achievements:
• Got an excellence award in 2012 implementing Products on time.
• Got an appreciation award for successful completion of five years in Greenlight Technologies.
• Got Customer appreciation for successful implementation of GRC10 for ECC and BW and
CRM systems on time.
• Visited many customer places including overseas as part of product implementation and
trouble shooting.
Project Experience:
Clients: Synopsys Feb 2015 to Till date
Project: Migration 4.0 to GRC10.1
Role: SAP GRC Consultant
Roles and Responsibilities:
• Responsible for preparing Virsa 4.0 Master data baseline document.
• Performed post installation configuration like activating BC sets, Applications and Services.
• Worked closely with Basis team to get AC 10.1 plugIns(GRCPINW / GRCPIERP) installed on all
target systems.
• Exported CC, FF data from Virsa 4.0 to GRC AC 10.1.
• Imported CC and FF Data like Rule set data(Functions, Risks, Rule set, Mitigation controller
data) and FF data (Owner and Controllers and Reason code etc ).
• Performed Intra Migration activities like Creating connections, connection groups, performing
Auth, Repository syncs, maintain configuration settings.
• Performed Post migration steps including activation of MSMP workflow BC sets, generation of
rule, maintaining workflow stages.
• Supported post migration data validation activities in SPRO and NWBC.
• Good understanding and experience with BRF+ (Business Rule Framework).
• Created Initiator, Agent and Routing rules with in BRF+.
• Created and modified workflows, AC owners, Rules, Mitigation Controls to meet the business
requirements.
• Responsible for preparing UAT test document.
• Responsible and point of contact for all GRC related activities.
• Conducted the workshops and trainings with various teams like internal resources, auditors
and end users.
Client : Unilever May 2014 to Jan 2015
Project: SAP GRC10.1 Implementation
Role: SAP GRC Consultant.
Roles & Responsibilities:
• Configured Pre Post installation steps related to AC component.
• Configured MSMP workflow for New access,change access, Delete access,Lock/Unlocking, Functional creation, Mitigation control id creation, Risk id creation,Fire
fighter id request and also Role approval in Access request management.
• Email notification settings and scheduled the back ground jobs.
• Created Owners, Mitigation Controllers, Risk owner, Security lead Point of contact.
• Created FF owners, Controllers and Firefighter id’s for Emergency access request.
• Customized rule set uploaded, Generated the Rule set.
• Created the Methodology process for Role management and also created role attributes.
• Imported the roles for provisioning and maintained the Mandatory fields for the Roles.
• Run the background jobs to sync Authorization data, User sync, Role Sync and Profile Sync.
• Transported the GRC related TR’s from Dev to Production.
• Trouble shoot the Configuration issues like Email notification error, MSMP workflow trigger
errors, Role /User level risk analysis issue,Auto provisioning errors.
• Creation of BRF plus rules based on client requirement for MSMP workflow.
• Lead design, creation and delivery of GRC 10 solutions for SAP Security and Compliance.
• Design, configuration, and implementation of Risk Analysis (ARA/RAR), User Provisioning
(ARM/CUP), and FireFighter (EAM/SPM).
• Analyzed and configured GRC 10 (AC) Global Rule Set per clients’ processes/standards.
• Develop (FireFighter) roles and workflow approval process in GRC 10.
• Configure GRC Access control tool to avoid SOD conflicts to comply with Sarbanes Oxley
(SOX) regulation using RAR, CUP, and SPM.
• Analyze SAP Segregation of Duties (SOD) conflicts and recommend corrective action.
• Created SoD Matrix based on SAP Transactions and Authorization Objects.
• Implemented SOD conflicts administration strategies and managed remediation tasks to
comply with SAP/SOD requirements.
• Design & Create Security Profiles based on functional and technical needs of all security
roles and authorizations for all SAP modules (ECC 6.0, BW, SRM, CRM, Portals, HR and
HANA).
• Created LDAP configuration for user data master source
• Conducted the workshops and trainings with various teams like internal resources, auditors
and end users.
Clients: Kraft Foods Dec 2013 to Apr 2014
Project: GRC 5.3 to GRC 10.0 upgrade
Role: SAP Consultant(GRC).
Roles & Responsibilities:
• Responsible for preparing GRC 5.3 Configuration and Master data baseline document.
• Performed post installation configuration like activating BC sets.
• Worked closely with Basis team to get AC 10 plugIns installed on all target systems and
installation of Migration tool on GRC 5.3.
• Migrated Configuration, Master data and Transactional data from GRC 5.3 to GRC AC 10 for
RAR, CUP, SPM and BRM.
• Performed Intra Migration activities like Creating connections, connection groups, performing
Auth, Repository syncs, maintain configuration settings.
• Performed Post migration steps including activation of MSMP workflow BC sets, generation of
rule, maintaining workflow stages.
• Supported post migration data validation activities in SPRO and NWBC.
• Good understanding and experience with BRF+ (Business Rule Framework).
• Created Initiator, Agent and Routing rules with in BRF+.
• Created and modified workflows, AC owners, Rules, Mitigation Controls to meet the business
requirements.
• Scheduled background jobs for EAM, BRM,ARA and ARM.
• Responsible for preparing UAT test document
• Extended the GRC10 system to BW, CRM and BPC systems using RTADS.
Clients: EDP Jan 2013 to Nov 2013
Project: Implementation
Role: SAP GRC & Security Consultant
Roles and Responsibilities:
• Transport between Development, Quality /Test and Production systems of R/3 using STMS.
• Role modifications, creations, according to the business needs with proper documentation.
• Accessed User info system (New user, Roles, Authorizations, User, T Codes etc.) through
SUIM regularly.
• Involved creating mass users, deleting mass users, locking and unlocking mass users.
• Troubleshoot R/3 security problem by using different scenario such as system trace.
• Responsible for day to day technical support and resolution of security issues.
• Resolve user’s daily problems (lock, unlock, and reinitialize passwords, no access to a
transaction).
• Assist users with access problems and questions using SUIM and SU53.
• Monitoring the online background jobs and resolved the issues if any background job failed.
• Customized rule set uploaded, Generated the Rule set.
• Created the Methodology process for Role management and also created role attributes.
• Imported the roles for provisioning and maintained the Mandatory fields for the Roles.
• Run the background jobs to sync Authorization data, User sync, Role Sync and Profile Sync.
• Trouble shoot the Configuration issues like Role /User level risk analysis issue,Auto
provisioning errors.
Clients: Mother Dairy July 2012 to Dec 2012
Project: Up gradation
Role: SAP GRC Consultant
Roles and Responsibilities:
• Responsible for preparing GRC 5.3 Configuration and Master data baseline document.
• Performed post installation configuration like activating BC sets.
• Worked closely with Basis team to get AC 10 plugIns installed on all target systems and
installation of Migration tool on GRC 5.3.
• Migrated Configuration, Master data and Transactional data from GRC 5.3 to GRC AC 10 for
RAR, CUP, SPM and BRM.
• Performed Intra Migration activities like Creating connections, connection groups, performing
Auth, Repository syncs, maintain configuration settings.
• Performed Post migration steps including activation of MSMP workflow BC sets, generation of
rule, maintaining workflow stages.
• Supported post migration data validation activities in SPRO and NWBC.
• Good understanding and experience with BRF+ (Business Rule Framework).
• Created Initiator, Agent and Routing rules with in BRF+.
• Created and modified workflows, AC owners, Rules, Mitigation Controls to meet the business
requirements.
• Scheduled background jobs for EAM, BRM,ARA and ARM.
• Responsible for preparing UAT test document.
• Resolved all Web services related issues.
Clients: Reliance Capital July 2010 to June 2012
Project: Implementation & Support
Role: SAP GRC & Security Consultant.
Roles and Responsibilities:
• Configured Pre Post installation steps related to AC component.
• Configured MSMP workflow for New access,change access, Delete access,Lock/Unlocking, Functional creation, Mitigation control id creation, Risk id creation,Fire
fighter id request and also Role approval in Access request management.
• Email notification settings and scheduled the back ground jobs.
• Created Owners, Mitigation Controllers, Risk owner, Security lead Point of contact.
• Created FF owners, Controllers and Firefighter id’s for Emergency access request.
• Customized rule set uploaded, Generated the Rule set.
• Created the Methodology process for Role management and also created role attributes.
• Run the background jobs to sync Authorization data, User sync, Role Sync and Profile Sync.
• Transported the GRC related TR’s from Dev to Production.
• Trouble shoot the Configuration issues like Email notification error, MSMP workflow trigger
errors, Role /User level risk analysis issue,Auto provisioning errors.
• Creation of BRF plus rules based on client requirement for MSMP workflow.
• Design, configuration, and implementation of Risk Analysis (ARA/RAR), User Provisioning
(ARM/CUP), and FireFighter (EAM/SPM).
• Analyzed and configured GRC 10 (AC) Global Rule Set per clients’ processes/standards.
• Develop (FireFighter) roles and workflow approval process in GRC 10.
• Configure Access Controls (AC10) for reporting and rule maintenance.
• Role modifications, creations, according to the business needs with proper documentation.
• Accessed User info system (New user, Roles, Authorizations, User, T Codes etc.) through
SUIM regularly.
• Involved creating mass users, deleting mass users, locking and unlocking mass users.
• Troubleshoot R/3 security problem by using different scenario such as system trace.
• Responsible for day to day technical support and resolution of security issues.
• Resolve user’s daily problems (lock, unlock, and reinitialize passwords, no access to a
transaction).
• Assist users with access problems and questions using SUIM and SU53.
Clients: DB Power Electronics Apr 2009 June 2010
Project: Implementation
Role: SAP Security Consultant.
Roles and Responsibilities:
• Transport between Development, Quality /Test and Production systems of R/3 using STMS.
• Role modifications, creations, according to the business needs with proper documentation.
• Accessed User info system (New user, Roles, Authorizations, User, T Codes etc.) through
SUIM regularly.
• Involved creating mass users, deleting mass users, locking and unlocking mass users.
• Troubleshoot R/3 security problem by using different scenario such as system trace.
• Responsible for day to day technical support and resolution of security issues.
• Resolve user’s daily problems (lock, unlock, and reinitialize passwords, no access to a
transaction).
• Assist users with access problems and questions using SUIM and SU53.
• Monitoring the online background jobs and resolved the issues if any background job failed.
• Working on Remedy, CQ and work request for role modifications.
• Involved in external and internal Auditing for my project.
• Involved in system up gradation, cutover activities.
• Generate the reports based on business request.
• SOD annual review and User access quarterly review.
• Generate and share monthly monitoring reports.
• Locking and unlocking activities.
• Provide the FF access and generate the logs.
• DR testing activities for application data backup.
Clients: Electromech Apr 2008 Mar 2009
Project: SAP Implementation
Role: SAP Security Consultant.
• Transport between Development, Quality /Test and Production systems of R/3 using STMS.
• Role modifications, creations, according to the business needs with proper documentation.
• Accessed User info system (New user, Roles, Authorizations, User, T Codes etc.) through
SUIM regularly.
• Involved creating mass users, deleting mass users, locking and unlocking mass users.
• Troubleshoot R/3 security problem by using different scenario such as system trace.
• Responsible for day to day technical support and resolution of security issues.
• Resolve user’s daily problems (lock, unlock, and reinitialize passwords, no access to a
transaction).
• Assist users with access problems and questions using SUIM and SU53.
• Monitoring the online background jobs and resolved the issues if any background job failed.
Clients: Serum Institute Apr 2005 Mar 2008
Project: SAP Support
Role: ABAP Consultant.
• Handling the Change and HD tickets as per the client requirements and Preparing Transport
Approval Request Forms
• Understanding the functional specifications designed by the functional team for the new
requirements.
• Designing the Technical Specifications from the functional specifications.
• Developing the code as per the technical specifications.
• Review the technical specifications and code as per the specifications.
• Optimizing and analyzing existing ABAP programs and modify as per the client requirement.
• Interacting with the client & onsite team on a regular basis to gather user requirements
• As party of this project I have worked on ALV reports, Module pool programs, User exits,
BAPIs, BADIs, Function modules, BDC Programs, field symbols, Dynamic internal tables,
Classes all other areas.
• Worked on ABAP enhancements in modules PM, MM, SD, HR, FICO and EHS.
Contact this candidate