Name: Ravinder Nalla
Contact: *************@*****.***, +971********* and +919*********
Address: *-**-**/*/**/3, Prashanthi Nagar, UPPAL, Hyderabad-500039, Telangana, INDIA.
Summary
Expert in SAP Security, GRC 12.0 Implementation Consultant with around 15 years of experience, mostly in SAP Security and Authorization, GRC 10, 10.1 and 12, IDM and Basis Support including over 7.0 years of International (UAE and Oman) experience. Now seeks Technical Consultant\leadership challenges in SAP Security Solution Architect\SAP Security and Authorization Design space and GRC implementation, to utilize the acquired Technical skills & experience. Experience in big Oil and Gas Energy, Pharma, automotive and ISU utilities, manufacturing companies for implementation of SAP Security and GRC etc. Knowledge on GRC Audit Management and Fraud Management Process for SAP Assurance and Compliance for S/4 Hana as per business requirement.
●Experience in Business development, Client relationship, improving business, Project delivery Management, Business analyst and Architect. Expert in Preparing and reviewing documentation from the technical skill set, involved in preparation of Blue print documents and project proposals etc.
●Expert in Sap Security and GRC Business Analyst for designing and developing standard operating process (SOP) documents in many project, which includes preparing SAP security design documents, sap security approach documents, role matrix and user training documents, on job training documents. Experience in project documents from blue print to design development documents in most of the projects for SAP security.
●Experience in leading and arranging project meetings for weekly progress, risk and issues, follow up, training, resources and project change management etc.
●Worked together with Functional teams and other product groups, Business analysts, external teams etc., to resolve issues (infrastructure, applications, integration etc.).
●Supported data migration efforts including worked with the business and other network people in preparing and migrating data.
●Worked as a business analyst to capture requirements and document them for business review and sign-off and Analyzing requirements and working with all teams.
●Extensive technical hands-on job of experience in SAP ECC, BI, HCM, CRM, SRM, GTM, GRC10.1, GRC12.0 and Portal systems etc. in all the projects for Many Global clients, as consultant and Lead.
●A proficient SAP Security Design and Configuration, Implementation, Administration & Support Professional with an extensive track record of Technical Hands on Experience with Project Management (initially of Telecom projects and later SAP implementation/roll-out/support).
●Hands on experience in GRC AC 10.1 and GRC 12.0 AC implementation of ARA (Access risk analysis), ARM (Access Request Management), BRM (Business Role Management) and EAM (Centralized Emergency Access Management) & Customizing MSMP Work flows with HR triggers.
●Knowledge on GRC Audit Management and Fraud Management Process for SAP Assurance and Compliance for S/4 Hana as per business requirement. Knowledge on GRC Process control, Risk Management etc. Part of the GRC Risk Management implementation project for multinational company. Worked on Security Auditing in many project for SOD and Governance for Implementation and support projects.
●Worked as SAP Auditor and responsible for organizing and overseeing internal audits in accordance with the annual audit plan. In addition, helped the companies fulfill their obligations to international and government compliance. Managed effective relationships with all the stakeholders. Worked as a SAP Auditor for SAP Implementation projects for technical and functional controls after completing the implementation.
●A Certified SAP NetWeaver Consultant and Technical expertise in SAP ECC Security Solution Architecture including SAP Security, GRC12.0, IDM, BI\BO, CRM, GTS & Portal. Skill sets - complete understanding of all SAP functional modules such as MM, SD, GTM, DBM ISU (DM, FICA, Billing, CS), and FI & HCM (ESS & MSS, PD, TEM, Travel) with technical hands on experience.
●Hands on experience on S4 HANA Security with Fiori. Knowledge and worked on HANA security.
●Worked on IDM 7.2 in GSK project having hands on support and implementation experience.
●Experience as a Manger in Non-IT project for Basic telecom development projects in government public sector in India for more than 13 years and as an Engineer, Project Manager (Turnkey Projects) and supervisor for Electrical Maintenance department in telephone cable manufacturing PSU in India.
Special mention –
●As a SAP security Solution Expert involved in all the Business meetings related to SAP security Implementation and to take all the responsibilities right from building the Role Matrix, involving presentations for clear explanation and understanding the importance of SAP Security along with Segregation of duties free Design and development of security in Modules and systems etc.
●Experienced SAP Security and Authorization Solution Architect, capable of building the Global Role Matrix along with Segregation of Duties, Design/development & end-to-end Implementation of security in various Modules and systems etc.
●Good knowledge and working hands on experience in IDM 7.0 with support and implementation experience. Worked on IDM core components like IDM DATA base (identity Store), configuration packages, IDM key Utilities. Knowledge on different provisioning Frame works, but worked on SAP provisioning Framework in GSK project.
●Exclusive experience in Project Delivery Management involving Initiation, Requirement Analysis & Finalization, Project Scoping, Planning (Estimation, Scheduling & Milestones), Quality & KPI Monitoring, Risk management, Communication between project stakeholders, Execution Control and Delivery.
●Having good administrative, communication and Interpersonal skills, ability to work independently and under pressure, general business systems knowledge.
●Worked on Requirement Analysis, Solution Design and documentation in the area of SAP Security/Authorizations. Worked on Support and development of SAP Security/Authorizations controls for Ensure SLA’s and Audit Compliance. Worked on SAP Authorization management in Business process- Retail/Automotive/Finance/Real Estate/BPC/BI/BO & HR and System wise- SAP ERP (IS Utilities, IS Auto and IS Retail), S4 HANA, S/4 HANA, SAP GRC 10.1/12.0, SAP Fiori, SAP BI, SAP BO, SAP BPC, SAP PI, SCM, SRM, CRM, SAP Portal, SAP Solution Manager, etc.
●Knowledge on SAP Assurance and Compliance Software for SAP S/4HANA, SAP Fraud Management for SAP S/4HANA, SAP Tax Compliance for SAP S/4HANA, SAP Audit Management for SAP S/4HANA. Exploring to work for GRC Audit Management and Fraud Management Process for SAP Assurance and Compliance for S/4 Hana as per business requirement. Knowledge on GRC Process control, Risk Management etc.
Specialties
Expert in SAP Security Authorization Solution Architect, with Technical expertise in SAP ECC Security Solution Architecture including SAP Security, GRC 10.1 and GRC12.0 AC implementation for many modules, IDM, BI\BO, CRM, and GTS & Portal. Skill sets - complete understanding of all SAP functional modules such as MM, SD, GTM, DBM ISU (DM, FICA, Billing, CS), and FI & HCM (ESS & MSS, PD, TEM, Travel). Good hands on experience in with many multi-national companies, which includes oil and gas, pharmacy, manufacturing, trading and energy IS utilities and IS Auto and Retail etc.
Personal Details:
Marital status: Married Nationality: Indian
Languages: Telugu, Hindi and English Passport Number: Z3719761 Valid till: 30.06.2026.
Education
●M.B.A. (HR), from IGNOU, New Delhi (2010)
●Diploma (Management), from IGNOU, New Delhi (1998)
●B.E. (Electrical), from College of Engineering, Osmania University, Hyderabad, India (1992)
●Diploma (Electrical Engineering), from Govt. Polytechnic, Masab Tank, Hyderabad, India (1987).
Certifications
SAP Net Weaver 2004
SAP WEBAS 6.40 for Oracle Certification in 2007
Professional Experience
Sr. SAP Security/GRC Consultant at Halian International FZ LLC, Dubai. November 2019 to till Date. (On Contract)
Client
Deloitte/Al Wasl
Technology
GRC 12.0 Implementation with Role redesign
Role
SAP GRC Consultant
Project
SAP GRC 10.1 Implementation Project and GRC 12.0 Upgrade Project
Duration
NOV2019 to Till Date
Scope
Design of SAP Roles and removing SOD conflict according to customer needs and GRC10.1 implementation for ARM, ARA, BRM and EAM. Upgrade to GRC 12.0
Brief on involvement
Working on GRC 10.1 implementation project with preparation of Role matrix, GRC risk Matrix, GRC configuration for implementation of ARA (Access risk analysis), ARM (Access Request Management), BRM (Business Role Management) and EAM (Centralized Emergency Access Management) & Customizing MSMP Work flows. Roles revamp to free from SOD. Working on different phases of project Configuration, roles revamp, testing, UAT and training with document preparation for the project and other project related activities. Simultaneously working on Upgrade project from GRC 10.1 to GRC12.0
SAP Auditor at Edersoft Technologies DWC LLC, DUBAI, SEP 2019 to NOV 2019. (On Contract).
Client
Protiviti/Agathia and DUCAB
Technology
Post Implementation Audit Review of SAP ERP Project
Role
SAP Auditor
Project
SAP Internal Audit for Confidential company.
Duration
SEP 2019 to NOV2019.
Scope
SAP Project Blue Print, Functional / Technical specification document review
SAP Segregation of Duties Documentation review.
Review of the risks and associated Application controls for FICO, SD, MM, PP, PM and MM-EWM modules.
Segregation of Duties & Critical Access review for in scope modules.
Review of business processes implemented for in scope Modules.
Brief on involvement
Involved and worked as a SAP Auditor for technical and functional review. As an Internal Audit team for the Post Implementation Review of Interim SAP ERP Project. Audit included a review of the risks and associated controls identified during Risk Assessment exercise and during the ‘process understanding’ exercise phase at the commencement of the audit. Segregation of Duties & Critical Access review in Access Controls.
Sr. SAP Security/GRC Consultant at Halian International FZ LLC, Dubai. July 2018 to April 2019. (On Contract)
Responsibilities:
SAP GRC Implementation. SAP Security Design and Configuration, Building the Global Role Matrix along with Segregation of Duties, Design/development & end-to-end Implementation of security in systems. Working as a Sr. SAP Senior GRC and Security Consultant.
Client
Al-Futtaim/Cognizant
Technology
GRC 10.1 Implementation & SAP Security Role redesign and HR Triggers Project
Role
Senior SAP Security & GRC Consultant.
Project
GRC Implementation
Duration
July 2018 to April 2019.
Scope
Design of SAP Roles and removing SOD conflict according to customer needs and GRC implementation for ARM,ARA, BRM and EAM with HR Triggers.
Brief on involvement
Worked on GRC 10.1 implementation project with preparation of Role matrix, GRC risk Matrix, GRC configuration for implementation of ARA (Access risk analysis), ARM (Access Request Management), BRM (Business Role Management) and EAM (Centralized Emergency Access Management) & Customizing MSMP Work flows. Roles revamp to free from SOD. Worked on Risk Matrix for different business units in AFG (IS Auto and Retail) like UNITS, Services, Parts, Business finance, group finance areas. Worked on different phases of project Configuration, roles revamp, testing, UAT and training with document preparation for the project and other project related activities etc.
Sr. SAP Security/GRC Consultant at Sapient Technologies and Consulting May 2018 to July 2018
Responsibilities:
Worked on SAP Security Design and Configuration, Implementation, Administration & Support Professional with Project Management. Building the Global Role Matrix along with Segregation of Duties, Design/development & end to end Implementation of security in systems
Projects with Sapient:
Client
Armed Forces Company
Project
SAP Implementation
Technology
S/4 HANA
Role
Senior SAP Consultant – Security / GRC
Duration
May 2018 to July 2018
Scope
The implementation covers the following SAP modules: Building the Global Role Matrix along with Segregation of Duties, Design/development & end-to-end Implementation of security in systems.
Brief on involvement
Worked on Security and Authorization Role design. Spearheading as a SAP Security and Authorization consultant for project phases, Realization, final preparation and Go live and support. Supported data migration efforts including working with the business and other network people in preparing and migrating data in SAP Security Area.
Client
DUCAB
Technology
ECC 6.0 & FIORI
Role
Senior SAP Consultant – Security & GRC
Project
Support for SAP Role Re-Design and SOD
Duration
May 2018 to July 2018.
Scope
Design of SAP Roles and SOD according customer needs
Brief on involvement
Provided Sap Security support and troubleshoot with the help of SU53 screen shots and ST01 trace; enabled trace in SAP ECC, HCM, BI, CRM, SRM and Portal systems and troubleshoot the missing authorizations in R/3 modules like FI, MM, PM, CO, ISU, HR and SD other ECC modules. Re-design of current roles to more precise access control.
SAP Security & Authorization lead / Architect at Edersoft Technologies DWC LLC, DUBAI, and UAE
Jan 2017 – DEC 2017
Responsibilities:
●Involved in Preparing and reviewing documentation from the technical skill set, involved in preparation of Blue print documents and involved in preparing project proposals etc.
●Worked together with Functional teams and other product groups, Business analysts, external teams etc., to resolve issues (infrastructure, applications, integration etc.).
●Worked as a business analyst to capture requirements and document them for business review and sign-off and Analyzing requirements and working with all teams.
●Worked on Security and authorization on call support for different projects as a Technical Consultant.
●Performing daily team administration routines as well as team development and people management activities to improve team productivities.
●Worked on RFP Role re-design and cleaning of SAP Security and Authorization for big multinational Cable manufacturing company in UAE and submitted proposal.
●Worked on RFP Role re-design and cleaning of SAP Security and Authorization project for a Singapore based company.
SAP Security & Authorization lead SAP MENA, Muscat, PDO. OMAN. (Through Recruit 121 UK), June 2015 – Dec 2016
●Involved in Preparing and reviewing documentation from the technical skill set, involved in preparation of Blue print documents and preparing project proposals etc.
●Leading and arranging project meetings for weekly progress, risk and issues, follow up, training, resources and project change management etc.
●Worked as a business analyst to capture requirements and document them for business review and sign-off and Analyzing requirements and working with all teams.
●Worked on technical aspects of project, implementing with hands on experience, and Leading a team of 6resources as SAP Security and Authorization Lead for SAP Security Implementation in SRM (SLC, STS, and OPP & SUS) with CLM, MDM, and SRM single Portal.
●Managed the team and work on project for design, customization, testing and implementing Roles & Profiles in SRM and (SRM OPP, SUS, SLC, STS, C-folder etc.) and CLM & SRM Portal.
●Responsible for coordinating with Portal team to develop ABAP stack roles along with preparation of Role Matrix and preparation of Role naming convention document and Security and Authorization approach Document.
●Worked in hyper care, post go-live support and provided training and Knowledge transfer to client and Handed over to BAU. (business As usual)
●Spearheaded as a SAP Security and Authorization lead for SRM Implementation project for all phases, like initial planning and preparation, Business Blueprint, Realization, final preparation and Go live and support.
●Performed daily team administration routines as well as team development and people management activities to improve team productivities.
●Worked on GRC AC 101.1 implementation Tasks and worked on GRC AC10.1 implementation of ARA (Access risk analysis), ARM (Access Request Management), BRM (Business Role Management) and EAM (Centralized Emergency Access Management) & Customizing MSMP Work flows.
SAP Security & Authorization / Project lead at Tech Mahindra, India/UAE, and Nov2007-Jun 2015.
●Initiated this engagement as SAP Basis Administrator along with Security Implementer and progressed as Project Team Lead (Jan 2010), and led up to 25 resources in various projects.
●Worked on all projects with technical hands on if required lead the Team otherwise I am the only consultant responsible for technical work.
●Managed as SAP Security Solution Architect, in SAP ECC Upgrade and Implementation of CRM, SRM with HR (SAP SECURITY) for Federal Electricity and Water Authority, AJMAN UAE.
●Designed roles and worked on generating reports for SOX, analyze authorization issues, tracked the missing authorization for users.
●Worked in SAP security upgrade tasks, worked on GRC 10 implementation and support, SAP IDM support, SAP related production support.
●Provided Sap Security support and troubleshoot with the help of SU53 screen shots and ST01 trace; enabled trace in SAP ECC, HCM, BI, CRM, SRM and Portal systems and troubleshoot the missing authorizations in R/3 modules like FI, MM, PM, CO, ISU, and SD other ECC modules which includes ISU Utilities.
●Handled SAP security upgrade and implementation projects, R3 Security Upgrade, GTS and GRC10 Implementation and SAP security and Basis Production support.
●Spearheaded design, development, testing and implementation of Roles & Profiles in CRM/CEM CS/SRM and working with Portal team to develop ABAP stack roles as a part of SAP Security Implementation in ECC.
●Hands on experience in IDM 7.0 with support and implementation experience. Worked on IDM core components like IDM DATA base (identity Store), configuration packages, IDM key Utilities. Knowledge on different provisioning Frame works, but worked on SAP provisioning Frame work. Worked on SAP IDM support in GSK (a pharmaceutical).
●Led a team of 10 resources for couple of national clients for SAP Security implementation/support (product support, enhancement & upgrade) along with SAP governance, risk and compliance (GRC) solution roll-out.
●Engaged in SAP BI Security Upgrade, SCM (APP) Security upgrade, R3 Security Upgrade, GTS/GRC10 Implementation and SAP security & Basis Production support.
●Participated in a project for global biotechnology tools company as Project lead with special responsibility of SAP Security, to provide SAP Production Support involving 24x5 BASIS & Security Support which includes 8 Landscapes and 30+ Servers.
●Handled all the GRC components risk analysis and remediation (access risk analysis—building of roles), compliant user provisioning (access request management), super user privilege management (centralized emergency access).
●Support multiple (three) roll-out projects for a leading global supplier of technologies for the automotive/commercial vehicle market with the responsibilities of SAP Security implementation and SAP Basis administration.
●Worked on GRC 10 support for SOD check, GRC 5.3 on risk analysis and remediation, compliant user provisioning, GRC 10 Access risk analysis—building of roles, centralized emergency access, access request management with Business Role Management.
●Worked on IDM core components like IDM DATA base (identity Store), configuration packages, IDM key Utilities. Knowledge on different provisioning Frame works, but worked on SAP provisioning Frame work in GSK project.
●Worked on SAP IDM Support and added many systems to IDM 7.2 with SAP Provisioning Frame Work (Enhanced SAP Business Suit Integration).
●Prepared authorization objects and custom transaction maintenance.
●Conducted trainings on Security and Authorization to the team members. Performed daily team administration routines as well as team development and people management activities to improve team productivities.
Non – IT Domain Experience and IT in Cable Manufacturing Company.
Deputy Manager Projects, Hindustan Cables Limited, Hyderabad/Gujarat (Many cities)/Rajasthan, India.
●Initiated the career in Non-IT domain as an Engineer Electrical Maintenance Engineer and progressed as Engineer Projects, Assistant Manager and lastly as Dy. Manager Projects.
●Worked in Electrical Maintenance for Telephone Cable Manufacturing (Public Sector) Company in India.
●Managed Telecom Turnkey Projects in Gujarat (in many cities) for development of Basic telecomm networks and OFC (Optical Fiber Cable) Networks in Gujarat Telecomm circle.
●Worked in SAP ERP (IT) for more than Two years, trained in SAP BASIS and Security and completed SAP NetWeaver Certification, supported BAU production for SAP Basis and Security Authorization.