Bhargav Krishna K

ad4euv@r.postjobfree.com

+1-989-***-****

SAP Security & GRC Consultant

Professional Summary:

•Over 10 years of experience as a proficient SAP Security and GRC Consultant.

•Expertise in End-to-End Migration, Implementation, Role Re-design, Upgradation and SAP GRC 10.1 configuration.

•Identifying and resolving complex Segregation of Duties (SOD) issues.

•Skilled in running Ecatt & SAP GUI Scripts for mass user creations, role assignments, and efficient task automation.

•Extensive experience in troubleshooting Authorization issues across various SAP modules, ensuring seamless system

functionality.

•Proficient understanding of SAP Security Authorizations, adeptly applied in real-world scenarios

•Recognized as an SAP Certified Application Associate - SAP BusinessObjects Access Control 10.0 (C_GRCAC_10).

•Played a pivotal role in End-to-End ECC implementation projects, ensuring smooth system rollout and user adoption.

•Involved in GRC components, contributing to the configuration of Access Risk Analysis (ARA), Emergency Access

Management (EAM), Business Role Management (BRM), and Audit Risk Management (ARM).

•Role redesign initiatives, aligning roles with evolving business processes and compliance standards.

•SAP Fiori Security Role Administration with Spaces, pages, catalogs and groups, troubleshooting authorization issues

with Fiori apps.

Education: Master of Information Systems Central Michigan University USA December 2023 GPA: 3.95

Certifications: C_GRCAC_10 - SAP Certified Application Associate - SAP Access Control 10.0

Ticketing Tools

Software Tools

Team Dynamix/Service Snow / ITSM /ICM/ Cherwell /HPQC, JIRA

Tidal Tool (User administration)

Innowera (User Administration)

Worksoft (User Administration)

Professional Experience:

Master’s Degree in Information systems

Central Michigan University Sep 2022 – Dec 2023

BAT (British American Tobacco)

Security and GRC Consultant (Migration) Aug 2021 – Sep 2022

SAP Security-MDG to S/4 HANA Migration, handling role modifications and user assignments.

Utilized SECATT scripts and GUI Scripts (SECATT_1, SAP GUI Scripts) for precise user and task management.

Resolved authorization issues during FUT, SIT, UAT, Regression testing, and Hypercare, emphasizing adherence to SOX compliance.

Implemented and monitored critical authorization restrictions for comprehensive SOX compliance (e.g., S_TABU_DIS, S_DATASET, S_PROGRAM).

Conducted thorough analysis using transaction codes (STAUTHTRACE, SU53) to troubleshoot and refine authorizations.

Troubleshooted authorization issues for Fiori catalogs and groups, ensuring seamless user access to Fiori applications.

Added Fiori catalogs and groups to the roles for an enhanced user experience.

Worked on the synchronization of authorization-related jobs, including authorization sync and repository sync. Project

Extensively used tables like AGR_USERS, AGR_TCODES, AGR_1251, AGR_DEFINE etc.

Resolved daily SAP Security issues.

Maintain various role matrices for roles, authorization objects to keep track of the modifications made the roles.

Transport Roles using the ChaRM request method and the Download/Upload method for transporting the roles to systems not in the transport landscape.

Frucor April 2021 – Aug 2021

Security and GRC Consultant (Upgradation)

S4 HANA (SAP Security) upgrade and performed SU25 steps.

Extensive use of USOBX and USOBT tables.

Manage SAP security roles and authorizations across the entire SAP landscape.

Modification of roles as per requirement, upon necessary approvals.

Extensive use of SU24 to check the standard T-code authorization objects and maintain authorization checks.

Troubleshooting authorization issues during Testing phase

User and role administration

Worked on SU10 to perform mass operations.

Used SECATT and SAP GUI scripts for mass users and role assignments.

OI Glass April 2020 – April 2021

Security and GRC Consultant (Implementation

Designing Implementation guidelines for all four products under the SAP GRC Access Controls 10.1.

Software installation guidance to Basis team and Post installation & Base line Configurations

Configured GRC AC components (ARA, EAM, ARM).

As per the business requirement/Metrix Creating Firefighter ID’s and mapping to the owners

Configured MSMP workflows for addressing various user request types in Access Request Management.

Helping users to submit the SAP ACCESS requests.

Microsoft Mar 2016 – April 2020

SAP Security Technical Support (Support)

Trouble shooting, providing technical support to end-users for SAP security issues, including troubleshooting and resolving technical issues related to SAP security.

Monitoring SAP security systems to ensure proper functioning, identifying issues and proactively addressing them.

Resolving SAP security incidents and working with the Incident Management team to close dependency tickets.

User administration, managing user access to SAP security systems, including creating and maintaining user accounts and access rights based on business needs and security requirements.

User support, providing support to end-users on SAP security-related issues, including user access requests, password resets, and other security-related concerns.

Monitoring the SAP system for security breaches and potential vulnerabilities and taking appropriate action to address any security issues that arise.

Interact with Basis Team if any performance issues that arise in SAP systems.

Responsible for providing training and support to users on security-related topics, such as password management and access requests.

Monitoring the Tidal tool and take appropriate action for failed jobs.

Helping users to submit the SAP ACCESS requests.

SAP Marketplace open connections

Responsible for configuring and installing the Innowera application.

User administration for Worksoft tool

Empower Aug 2015 – Feb 2016

SAP Security Consultant (Role Redesign)

Redesign of SAP security, Functional roles, aligning them with evolving business processes and ensuring compliance. Worked with business stakeholders to define the requirements for new SAP roles.

Plan and execute testing of new SAP roles to ensure that they are working correctly and as intended.

Supported users Authorization issues, and troubleshooted them by using SU53 and STAUTHTRACE t-codes.

Providing authorizations based on business processes, risks, and the principle of least privilege.

Developed new SAP roles based on the functional team requirements.

Worked on SU10 to perform mass operations.

Monitored the effectiveness of new SAP roles to ensure that they are meeting business requirements, complying with security policies and regulations, and supporting efficient business processes.

Documented the new SAP roles and associated authorizations, including business process flows, risks, and mitigating controls. This documentation is used to support audits and compliance reporting.

Involved in troubleshooting problems, answering user questions, and providing training and support as needed.

Collaborated with cross-functional teams to gather requirements and ensure the SAP security roles met the needs of various departments within the organization.

Volvo Oct 2013 – Aug 2015

SAP Security and GRC Support (Support)

User Administrations, Performed user maintenance tasks, User creation, deletion, lockdown, activation, and password management tasks.

Mass user creation using SU10.

Trouble shooting Authorization issues for customer issues.

Opening R/3, HTTP Service connections in Service Marketplace for SAP Systems

SAP GUI - user interface Implementation, 7.70/7.60/7.50/7.40 installations, upgrades, and uninstallations.

Extensive use of SUIM for reports related to users and roles.

Responsible for Scheduling background jobs Created and modified Single roles, Composite roles and derived roles using the Automatic Profile Generator (PFCG) from the Role Matrices provided by the functional team.

Setup Traces for authorization purposes and Security Audit Logs for audit purposes.

Used SU10 to perform mass operations.

Skills:

SAP Security and GRC

End-to-End Migration

Greenfield Implementation

SOX Compliance

Segregation of Duties (SOD)

SECATT and SAP GUI Scripts

Access Risk Analysis (ARA) and Emergency Access Management (EAM)

MSMP Workflows

Troubleshooting and Technical Support

Team Dynamix, Service Snow, ITSM, ICM, Cherwell, HPQC, JIRA

Tidal Tool, Innowera, Worksoft

Contact this candidate