Security Sap

Location:

Frisco, TX

Posted:

February 06, 2017

Contact this candidate

Resume:

KRISHNA MOHAN CHARUGUNDLA

SAP Security and GRC Consultant

E-Mail: ******@*****.***

Mobile: 309-***-****

SUMMARY:

•9+ years of experience in the context of SAP ECC Security and GRC Access Control.

•Profile Generator (PFCG), Role creation, Profile creation, modifications, User Administration, Central User Administration (CUA), Authorization objects, User reconciliation, CATT Scripts, User locks and password maintenance, knowledge of AIS (Audit Information System).

•Expert in development and administration of SAP Application Security in ECC and R/3 environment for the modules of SD, MM, FI, CO, PP, PM,AM,WM, PS, IM, BASIS, HR, CRM, BW, SCM, SRM/EBP, Enterprise Portals, XI and Solution Manager

•Strong knowledge in SAP T Codes, Authorizations, Authorization Object from 4.7 to ECC 6.0

•SAP HR authorizations with Structural & Context Based Authorizations Implementation.

•Experienced in User Provisioning to profiles in R/3

•VISTEX – US - Chargeback’s & Rebates security support.

•Handling high level client meetings for various projects

•Responsible for deliverables of agreed upon SLA’s with the clients.

•Working knowledge in analyzing and processing SOD issues using the GRC access control tools such as Access Risk Analysis (ARA) formerly known as Risk Analysis and Remediation (RAR), Emergency Access Management (EAM) formerly known as Super user Privilege Management (SPM)/Firefighter, Access Request Management (ARM) formerly known as Compliance User Provisioning (CUP), and Business Role Management (BRM) formerly known as Enterprise Role Management (ERM).

•Good Experience in Role Based Authorizations

•Extensively performed and monitored PFUD, SUPC, SUIM, SU53, SU56, ST01 SCC1, SU53,SE09/SE10.Used CATT Scripts for creating mass users.

•OSS User & Authorizations Administration

•Expert in communicating effectively across the organization and integrating work across relevant areas. Creating manuals and documents for End-User training.

•Expert in developing and executing business plans and Collaborate with other team members and business representatives to ensure that security settings meet the requirements of the business and align with the defined process controls and standards.

•Experience with User Acceptance Testing (UAT)

•Experience in various phases of many upgrades and implementations, as well as strengths in encouraging team unity and direction, supporting good communication between team members and clients, and writing clear, reader-friendly documentation

•Analytical Capability in defining As-Is Processes and proposing To-Be Processes.

•Experience of working in compliance with all Internal & External – Statutory Audit Teams.

•Proficient in documenting business requirements, performing application design activities like writing functional designs & technical designs, Security Re-design, and segregation of duties (SOD) remediation projects, Post Implementation support, Test, and deploy activities.

•Completed 1 full life cycle implementation project in different roles ranging from technical reviews, and module consultant to expert guidance in integration.

•Experience in complete Life cycle Implementation of Security projects i.e. from designing to the production with Go-Live phase.

•Exposure to BIW, APO, MI, PI, Gateway, EREC, Support Desk Authorizations

•Extensive experience in functional modules – MM, SD, QM, HR, FI, MDM, CRM, SRM.

•Extensively with Sarbanes-Oxley (SOX), Internal Audit, and External Audit teams for SAP systems compliance activities

•Strong personal computer skills, including Microsoft Office

QUALIFICATION SUMMARY

Bachelor’s Degree in Commerce - Kakatiya University, India.

TECHNICAL SKILLS:

SAP Skills : SAP Security

ERP Package : SAP ECC 6.0 BW 3.5, BI 7.1, GRC AC 5.3 /10.1,

SAP PLM 4.0, SAP SEM 7.1, SAP EP 7.3, SAP SCM 5.0, SAP CRM 5.0, SAP

SRM 7.1

SAP NW MI 7.1, SAP E-Recruitment 6.0 and SAP Solution Manager 7.0

Tools : Digital Forms, Incident Management

GUI : SAP GUI

Database : Oracle (9i, 10g), MS SQL

Operating System : Windows 7, Windows Vista/XP

PROFESSIONAL EXPERIENCE

Company : Accenture Services Pvt Limited

Client: Dr. Reddy’s Laboratories Limited

Project: SAP GRC 10.0 Access Control-Support Project

Period: February 2015 to Till Date

SAP SW Landscape: ECC 6.0; SAP GRC 5.3 & SAP GRC 10.0

Dr. Reddy's Laboratories, is a multinational pharmaceutical company. Dr. Reddy's manufactures and markets a wide range of pharmaceuticals in India and overseas. Dr. Reddy's Laboratories Limited is an integrated global pharmaceutical company that is engaged in providing medicines. The Company operates in three segments: Global Generics, Pharmaceutical Services and Active Ingredients (PSAI), and Proprietary Products.

Role: Consultant / SAP Netweaver Security / GRC ARA & EAM Administrator

Responsibilities:

Involved in Pre and Post Installation activities of GRC AC 10.0

Maintenance of Access Control Components.

RFC Creations

Worked on Emergency Access Management (EAM) like assignment of FIRE FIGHTER ID’s to the user and changing the validity of ID request & generating log reports.

Maintenance of Templates and Notification messages as per client requirement Creation / Generation of Custom Rule Set

Run Risk Analysis at User / Role Level

Maintenance of Functions / Risks and Mitigation Controls.

Continuously improved security configuration to reflect best practices and prepare for system audits. Tested and implemented security recommendations given by SAP audit team. SAP GRC Access Controls 10.0 (ARA, EAM)

Responsible for design, develop, test and implementation of Access Controls capabilities

Review, validate the SAP system landscape for Access Controls capabilities.

Custom Authorization maintenance.

Responsible for gathering the requirements for complete GRC Access Controls capabilities.

Change Control Management (CCM)

Analyzing SU53, ST01 screen shots to debug Authorization problems.

Sarbanes Oxley Compliance - SAP System Audit and documentation of significant Processes and controls. Complete overall support includes design and implementation for all Security needs for all user ID admin and Role builds for SOX compliance

Maintaining SOD’s.

Minimizing the SOD’s as Zero as per the Client Audit Requirement

Ensuring the SOD’s not getting increasing.

Responsible for support pack upgrades from lower to higher for open technical issues if require.

User and Role Admin in ECC

Experience in SAP HANA Security which includes creation of user id’s, Designed and created Analytical privileges, catalogue roles, design time roles and Granting Privileges to Roles for HANA DB objects by using HANA Studio, Analysed authorization issues

Supporting in Process Control.

Creation / Maintenance of roles in ECC

Processing tickets as per the privileges of the client (SLA).

Client: Dr. Reddy’s Laboratories Limited.

Project : SRM Vikreta Connect

Period: March 2014 to January 2015

Role : Consultant / SAP NetWeaver Security

SAP SW Landscape: ECC 6.0; SAP SRM 7.1

Role: Consultant / SAP Netweaver Security Lead

Responsibilities:

Responsible for all aspects of SAP Security Administration tasks including Coordinating and interacting with business, technical and functional consultants for gathering SAP Security requirements, role development (Single Role, Composite Role and Master/Derived Role), create/maintain analysis authorization, testing, transport roles/authorizations, Security system parameter validation, generating analysis reports, troubleshoot authorization error and create/maintain SAP Security process documents for SAP systems ECC6, SRM and Enterprise Portal 7.3

Applied SAP Security policy / procedure / best practices and system controls to SAP systems

User Administration/Maintenance - Central User Administration (CUA) : Creating users, assigning roles to users, resetting password, locking/unlocking users, text comparison for child systems (SU01, SU10, SCUA, SCUL, SCUG, SCUM, RSDELCUA, ST01, SALE in all SAP systems.

Troubleshoot user roles, tracing the users, security authorization objects and custom reporting authorization objects to debug/troubleshoot an authorization error, resolving the issue by giving required authorizations in SAP modules

Attended change control management meeting in respect to security changes and transports.

Used Central User Administration tool for User Administration/maintenance.

Created training IDs and help training team for every phase of implementation and future enhancements.

Used Remedy System for Incident and Change Management.

Extensively worked on production tickets and requests, first (P1), second (P2) and third level support, fixing end user Roles/Profiles based on change requests created for breaks/fixes.

Provided knowledge transfer (KT) and training to off-shore/on-site resources for the entire security design/development and maintenance process.

Responsible for communication, coordination, and teamwork within the team and end users.

Monitor and report to management on the status of project efforts, anticipating/identifying issues…etc

Client: Dr. Reddy’s Laboratories Limited.

Project: APO

Role: SAP Netweaver Security Consultant

Period: March 2013 to February 2014

SAP SW Landscape: ECC 6.0; SAP APO 7.1

Role: Consultant / SAP Netweaver Security Lead

Responsibilities:

Sap Security Approach- high level design

R3 Security Strategy and Architecture

Authorization groups functional tables, custom development authorization solutions

Implementing and reviewing SAP Authorization Concept

Portal Security Strategy

BI, CRM, SRM Security Strategy, HCM

Sap Security Integration

Portal, BI, APO, R3 roles and integration

Testing, Cut Over and "Go life"

Client: Dr.Reddy’s Laboratories.

Project Name: SAP Security – HR Authorizations

Role: SAP Netweaver Security Consultant

Period: March 2012 to February 2013

SAP SW Landscape: ECC 6.0, SAP GRC 5.3

Responsibilities

SAP HR Security design using structural authorizations (HR-ORG) for Germany HR

Implemented Double Verification Symmetric Principle across HR leads in HCM

Implemented HR Security for Germany Data Protection Work Council for Personnel Data

Implemented HR Security against Data Protection Work Council for Organization Mgmt

Worked with Critical authorization objects like S_TABU_DIS,S_PROGRAM & S_DEVELOP

Blueprinting Security for Talent Management – India

Implemented & Maintained Structural Authorization.

Period of Responsibility & Time Logic Implementation.

Context Dependent Authorization Implementation.

Authorization framework for Controlling Payroll Activities.

Designed security for Appraisal System.

Maintained authorizations for Personnel Development & Training.

Implemented authorization concept for Time & Shift Management

SAP Org Visualization by Nakisa - OrgChart & Org Planning

Testing, Cut Over and "Go life"

Client: Dr.Reddy’s Laboratories.

Project Name: Audit Management

Role: SAP Netweaver Security Consultant

Period: January 2011 to February 2012

SAP SW Landscape: ECC 6.0

Description : Company plans to implement a new version of Audit Management in QM

Module in SAP this is implemented for India business.

Responsibilities

Phase1 Deliverables:

Initially Assign respective Standard Roles & Authorizations module wise to Project teams to permit them login, work & develop in all systems.

Later Refinement needs to be done for those standard roles to have accurate access & close all sec holes as possible.

Determine/Identify Scale and Scope of Authorization Requirements for SAP Security implementation.

Understanding security policy in organization if any to consider into security project.

Identify if there is any need to additional security infrastructure like AD, Identity Mgmt, GRC …etc based on Phase1 experience.

Phase2 Deliverables:

Determine What level of security does SAP data require in organization.

Define Roles & Authorization Implementation Framework & detailed SAP Security Design for Client.

Define User access process / user groups / user admin procedure, Naming conventions, Password policies.

Prepare Enterprise-Wide Role Matrix for all SAP applications in scope

Collect & consider Organization security policies & Compliances if any in place

Transactions list

Reports list

Menu paths, levels of navigation, tabs, and accessible content

Transactions to Role Mapping

Role to users or user groups Mapping

Organizational levels

Design, Develop & Test Roles.

Draft a Security Organization Hierarchy, Role Owners, Approval process for changes.

Define Security Roles change Mgmt process.

Define User Administration process.

Go-live

Handover of Security Role Matrix and Other operational security documents.

Client: Dr.Reddy’s Laboratories.

Project Name: SOD Conflicts - SoX

Role: SAP Netweaver Security Consultant

Period: January 2011 to February 2012

SAP SW Landscape: ECC 6.0

Description : SOD Conflicts removed as per top management required and met the audit

Requirements.

Responsibilities

Mapping the business requirements to realize the business plants.

Involved in testing from Unit/application/string testing etc.

New Roles creations.

Role based authorizations to all the Users.

Maintaining SOD’s.

Minimizing the SOD’s as Zero as per the Client Audit Requirement

Ensuring the SOD’s not getting increasing.

Enabled the new process while providing the authorizations to check the SOD’s and get minimize the risk.

Client: Dr.Reddy’s Laboratories

Project Name: Bristol – USA – New Company Code migration.

Role: SAP Netweaver Security Consultant

Period: August 2011 to December 2011

SAP SW Landscape: ECC 6.0

Responsibilities

Mapping the business requirements to realize the business plants.

Involved in testing from Unit/application/string testing etc.

User Ids Creations.

New Roles creations.

Role based authorizations to all the Users.

Maintaining SOD’s.

Determine What level of security does SAP data require in organization.

Define Roles & Authorization Implementation Framework & detailed SAP Security Design for Client.

Define User access process / user groups / user admin procedure, Naming conventions, Password policies.

Prepare Enterprise-Wide Role Matrix for all SAP applications in scope

Collect & consider Organization security policies & Compliances if any in place

Transactions list

Reports list

Menu paths, levels of navigation, tabs, and accessible content

Transactions to Role Mapping

Role to users or user groups Mapping

Organizational levels

Design, Develop & Test Roles.

Draft a Security Organization Hierarchy, Role Owners, Approval process for changes.

Define Security Roles change Mgmt process.

Define User Administration process.

Go-live

Handover of Security Role Matrix and Other operational security documents.

Client: Dr.Reddy’s Laboratories

Project Name: Aurigene Hyderabad & Bangalore New Company Code in INDIA

Role: SAP Netweaver Security Consultant

Period: April 2010 to July 2011

SAP SW Landscape: ECC 6.0

Responsibilities

Determine What level of security does SAP data require in organization.

Define Roles & Authorization Implementation Framework & detailed SAP Security Design for Client.

Define User access process / user groups / user admin procedure, Naming conventions, Password policies.

Prepare Enterprise-Wide Role Matrix for all SAP applications in scope

Collect & consider Organization security policies & Compliances if any in place

Transactions list

Reports list

Menu paths, levels of navigation, tabs, and accessible content

Transactions to Role Mapping

Role to users or user groups Mapping

Organizational levels

Design, Develop & Test Roles.

Draft a Security Organization Hierarchy, Role Owners, Approval process for changes.

Define Security Roles change Mgmt process.

Define User Administration process.

Go-live

Handover of Security Role Matrix and Other operational security documents.

Client: Dr.Reddy’s Laboratories

Project Name: Cuernavaca plant New Company Code in MEXICO - New Company migration.

Role: SAP Netweaver Security Consultant

Period: April 2009 to March 2010

SAP SW Landscape: ECC 6.0

Responsibilities

Determine What level of security does SAP data require in organization.

Define Roles & Authorization Implementation Framework & detailed SAP Security Design for Client.

Define User access process / user groups / user admin procedure, Naming conventions, Password policies.

Prepare Enterprise-Wide Role Matrix for all SAP applications in scope

Collect & consider Organization security policies & Compliances if any in place

Transactions list

Reports list

Menu paths, levels of navigation, tabs, and accessible content

Transactions to Role Mapping

Role to users or user groups Mapping

Organizational levels

Design, Develop & Test Roles.

Draft a Security Organization Hierarchy, Role Owners, Approval process for changes.

Define Security Roles change Mgmt process.

Define User Administration process.

Go-live

Handover of Security Role Matrix and Other operational security documents.

Client: Dr.Reddy’s Laboratories.

Project Name: Aurigen SAP Security [Standard] – RUN Operations

Role: SAP Netweaver Security Consultant

Period: April 2007 to March 2009

SAP SW Landscape: ECC 6.0

Responsibilities

Creating users, user groups

Creating & Maintaining Various types of Roles

Assignment of Authorizations using direct & Indirect assignment

Creating & assigning Area menu's & SAP Menus

Creating & securing tables with Auth groups

Authorization trace using ST01

Configuring & Maintain Central user administration

Checking / Activating / Displaying Table Logging

Filling Authorization in a New / Upgraded SAP System

User Security Audit Tools - Usage & Configuring

License Administration Workbench

Impermissible Passwords Maintenance

Working with Systems Trace & Audit Traces

Working with Audit Information Systems

Working with Password control & Password security frameworks

EMPLOYMENT HISTORY

Sr.Analyst-SAP Netweaver Security Consultant- Accenture Services- Feb’2015-till date

SAP Netweaver Security Consultant -Dr.Reddy’s Laboratories Ltd-Jan’2006-Jan’2015

SAP MM Consultant & Warehouse Lead- Medicon Galancials Ltd- Sep’2005- Dec’2005

ACHIEVEMNETS

Awarded – Champion Trophy Award received for project UCB Rollout.

Awarded – Star of the Month Award received for Best Support and handling the ticket without SLA

Awarded – Top Performer for making Segregation of Duties (SOD) as “0” in compliance from CFO.

Awarded – Chairman’s Excellence Award received for project BRITOL mySAP implementation.

Recognition – Cross Functional Team appreciation received from Formulation Quality Business.

Awarded – Certificate of Merit for Excellence in Collaboration & Team work.

(This is awarded to Cuernavaca, Mexico mySAP implementation)

Contact this candidate