Mohan Dhamodharan
Title:
SAP Security and GRC Architect
Location:
New Jersey, USA
Mobile:
Experience Summary
SAP Certification
1.SAP Certified Application Associate - SAP BusinessObjects Access Control 10.1
2.SAP Certified Technical Professional - System Security Architect Authorization Concept for SAP S/4 HANA
3.SAP Certified Technology Associate - SAP Authorization and Auditing for SAP NetWeaver 7.31
4.SAP Certified Technology Associate - SAP System Security and Authorizations.
Experience Summary
Mohan Dhamodharan has more than 16 year of SAP consulting experience which includes SAP Security, GRC AC 12.0, FIORI, S4 HANA, SAP BPC, IBP Security, Basis, EP, CRM, SRM, EWM, etc experience meeting SAP security needs of major corporations. Known for exceptional technical proficiency and astute application of Sarbanes-Oxley and other audit directives. Project management skills combine with demonstrated ability to develop and implement technical solutions to meet critical business needs. Outstanding leadership and interpersonal skills result in productive working relationships and top performance among staff. Effective communicator able to translate between technical and business units, making complex data easy to understand. Often trusted with full access to confidential company data.
Mohan Dhamodharan has 16 years of SAP Security experience with 5 full life cycle end to end implementation projects with S4 HANA 2020 along with Fiori and many roll outs for different regions and Production supports.
Mohan Dhamodharan has 8+ Years of Strong SAP GRC 10.1 and 12,0 Access Control experience (SAP Certified) which includes implementing Access Risk Analysis (ARA), Emergency Access Management (EAM), Business Role Management (BRM), Access Request Management (ARM) and User Access Review (UAR) with workflow enabled solution.
Requirement gathering with business and develop/deploy required BPC Security profiles, test them to make sure requirements matches with business expectation and deploy the security profiles to production. Validate migration of SAP BPC security and GRC configuration in Production environment and post go live support to perform system stabilization (Hyper Care phase)
Mohan Dhamodharan has 3+ Years of Strong SAP BPC Security experience which includes requirement gathering with business and develop/deploy required BPC Security profiles, test them to make sure requirements matches with business expectation and deploy the security profiles to production.
Mohan Dhamodharan has also worked on SAP Basis for 6 years which included server installation, configuration, sizing the server and production support for multiple landscape with Unix/Linux operating system and Oracle/HANA DB as Database.
Key Technical Skills:
SAP Security, SAP GRC AC 12.0, SAP S4 HANA, FIORI, IBP, BPC 10.1, SAP Solution Manager, SAP CRM, SAP SRM and APO.
Experience
Mohan Dhamodharan has extensively worked in Various complex SAP landscapes such as S4 HANA, SAP BPC,, GRC 12.0, FIORI, BI, SCM, HCM, GTS, Solution Manager, PI, NFe, HANA DB and expert in managing the different function modules FI, CO, HR, PP, MM, QM, PM, EHS BI, BOBJ and SD modules.
01 Type of Industry: Chemical Industry
Client: Chevron Philips Chemical, Texas
Employer: Capgemini Americas
Role/Title: SAP GRC Upgrade lead
Project Duration: Dec 2020 to Till Now
Responsibilities:
Was leading the GRC 12.0 Access control upgrade project from 10.1 to 12.0
Involved in GRC upgrade planning and execution.
End to end testing before and after upgrade
Troubleshooting and fixing the upgrade related issues.
Implemented EAM on HANA DB functionality
Implemented FIORI for GRC access control apps including end to end Fiori configuration.
02 Type of Industry: Public Sector
Client: Horizon Global, Texas
Employer: Capgemini Americas
Role/Title: SAP Security and GRC Implementation Lead
Project Duration: Dec 2020 to May till now
Responsibilities:
Leading S/4 HANA 2020 along with Fiori green field implementation for SAP security and GRC.
Prepared security and GRC strategy design document and same was approved by audit team.
Involved starting from foundation phase to gather the requirements and currently working on build phase to build security roles.
This is complete Fiori enabled where business users will login to only Fiori to access the business transactions, so the security roles are built with Fiori.
GRC scope is to implement Access Risk Analysis (ARA) and Emergency Access Management (EAM) with complete workflow enabled.
Implementing FIORI for GRC access control apps including end to end Fiori configuration.
03 Type of Industry: Pharmaceutical
Client: Becton and Dickinson, New Jersey
Employer: Capgemini Americas
Role/Title: SAP BPC Security and SAP GRC Upgrade Lead
Project Duration: Apr 2019 to Nov 2020
Responsibilities:
Was leading the GRC 12.0 upgrade project from 10.1
Involved in GRC upgrade planning and execution.
End to end testing before and after upgrade.
Troubleshooting and fixing the upgrade related issues.
Implemented EAM functionality for BPC web console which was more complex and challenging task.
Was leading BPC team for implementing security part of it.
Formalize design of SAP BPC security roles based on Business functional requirements
Develop and Configure SAP BPC Security profiles
Implemented Consolidation and Revenue Planning models
Complete formalized unit and integration testing support business user acceptance testing of SAP BPC security profiles
Validate migration of SAP BPC security roles/profiles in Production environment
04 Type of Industry: Pharmaceutical
Client: Cantel Medical
Employer: Capgemini Americas
Role/Title: SAP Security and GRC Implementation Lead
Project Duration: Sep 2017 to Apr 2019
Responsibilities:
Providing end to end solution for SAP Security, GRC, FIORI and Basis for project COMET.
Leading 12 members Security, GRC, FIORI and Basis teams at Cantel.
Involving project management activities.
Implementing S4 HANA for various Function Modules.
Involved end to end project starting from preparation phase to Go live and post go live support
Implemented on GRC 10.1 Access control various components.
Worked with business and audit team to finalize GRC ruleset
Configure GRC ruleset for critical permission which was not part of Global ruleset
Familiar with SoD concept for running the risk analysis and remediate or mitigate the risk as per business requirement.
Security role design with SoX compliance to ensure the security roles are risk free
Working closely with all SAP modules and supporting them as and when security team needed.
Configured end to end Fiori including, Gateway activation, Alias setting, Odata activation, SICF service activation, mapping Odata services to system alias, and creating catalog and catalog groups for all S4 HANA and GRC tiles.
05 Type of Industry: Pharmaceutical
Client: Becton and Dickinson, New Jersey
Employer: Capgemini India, Bangalore, India
Role/Title: SAP Security role Administration Lead
Project Duration: Dec 2008 to Nov 2015
05 Type of Industry: Pharmaceutical
Client: Becton and Dickinson, New Jersey
Employer: Capgemini Americas
Role/Title: SAP Security Role Administration Lead
Project Duration: Nov 2015 to Aug 2017
Responsibilities
R3 Security (Role Admin)
Creating single, Composite roles and Derived role as per customer requirement for different modules (FTM, STP, CTC, DTS, ITR, etc.,)
Creating authorization objects and fields.
Security related profile parameters settings.
Troubleshooting authorization issues using SU53, ST01 and SU56.
Generating various SUIM security reports for users and roles.
Performed security post upgrade activity for various systems using SU25
Promoting the org variables from normal fields based on the process team requirements
Familiar with security tables AGR* and USR*
Mass generation of profiles using SUPC.
Maintain Assignment of authorization objects and check indicators.
Activated the AIS Logs (SM18, SM19 and SM20)
Involved generating USMM reports and role classification activities in License attributes.
Involved preparing audit reports as per audit requirements in various systems
BI Security
Management of Analysis authorization using RESECADMIN.
Creating BI reporting authorization objects using tcode RSECAUTH
Assigning BI reporting authorization to the users and roles using RSECUSER
Reviewing error logs using RSECPROT
Define Authorization relevant characteristic and Attributes using RSD1
Authorization trace through transaction codes like RSSMTRACE, RSSMQ, RSUDO and RSSM.
Familiar with all the BI related authorization object (S_RS*)
Enterprise Portal Security (EP)
Creating users and assigning portal roles/groups from different producer portals.
Mass user creation with roles/group assignment using portal script.
Copy the new user from existing users
Lock/Unlock the users, deleting the users and generating the passwords.
Importing or exporting the roles, users and group’s data.
Creating mass users with multiple roles/groups assignment
Solution Manager
Creating CHARM requests and transport request and approving the charm requests to target systems.
Executing transport report and reviewing the different status of the transports.
Creating and managing security requirement and design document documents and performing different approval process for the documents.
Using BPML (Business Process Master List) report as an authorization matrix where the process team add remove the tcodes in solution manager based on the requirement.
Tools used
HP Quality Center – Testing tool
SIAM Service now – Ticketing tool
Share point tracker – Tracking tool
Clarity – Time sheet reporting tool
3PM – Timesheet reporting tool
Solution Manager - SAP Implementation tool
06 Type of Industry: Multi Domain
Client: Shared Support services
Employer: Sathyam Computer service, Bangalore, India
Role/Title: SAP Basis and Security Administration
Project Duration: Apr 2007 to Dec 2008
Responsibilities:
Transport management system
Client administration
Support Package, Kernel and Add-on
Background Job
Printers in SAP
System copy
Database Administration using BRtools
Monitoring
Creating and changing the user masters in the CUA Environment
Mass user change maintenance in CUA
GRC 5.3 Access Control Administration
Logon and password protection
Creating single role, Composite role and Derived role
Creating authorization objects and activities
Security related parameters changing
Find out missing authorization and resolving using Su53 and St01
User information system
07 Type of Industry: Diamond Industry
Client: Dimexon Diamonds Limited
Employer: Dimexon Diamonds Limited, Mumbai, India
Role/Title: SAP Basis and Security Administration
Project Duration: Apr 2006 to Apr 2007
Responsibilities:
Implemented ECC 5.0 and BI with Unix environment
Involved in server installation and Post installation activities
Configured transport management system
Local and Remote client copy, client export import
Support pack administration
Server offline and online backup using IBM Tivoli
Worked on SAP security activities like user creation, role creation and troubleshooting.
08 Type of Industry: Textile Industry
Client: Jupiter, India
Employer: Calibre Infotech, Coimbatore, India
Role/Title: SAP Basis and Security Administration
Project Duration: Jan 2005 to Apr 2006
Responsibilities:
This was SAP basis production support project and supporting regular project tasks like monitoring, troubleshooting, patch upgrade, transports, client copies, server backups and regular maintenance activities
Higher Education
Educational Record (In Reverse Chorological Order Starting Highest Degree)
Course of Study
Specialization
Name of University
Address of University
Year of Completion
MCA
Computer Applications
Madras University
Navalar Nagar, Chepauk, Triplicane, Chennai, Tamil Nadu 600005, India
2003
Bsc
PHYSICS
Madras University
Navalar Nagar, Chepauk, Triplicane, Chennai, Tamil Nadu 600005, India
2000