Sap Security Grc

Venkata Sai Boddu

Atlanta, GA 770-***-**** *****************@*****.*** www.linkedin.com/in/venkata-sai-boddu/ Professional Summary

SAP Security and GRC professional with 5 years of experience in SAP Security Design, Implementation, and Administration. Expertise in SAP GRC 10.1/12.0, user provisioning, SOX compliance, and role authorization design. Adept at resolving complex SAP security issues, ensuring compliance, and implementing best practices. Proven ability to support SAP implementations, upgrades, and security audits. Core Skills & Expertise

• SAP Security Design & Implementation

• SAP GRC Access Control (10.1/12.0)

• Role, Incident, Problem& Authorization Management

• SOX Compliance & Audit Support

• User Provisioning & SOD Remediation

• SAP ECC, S/4HANA, BW,FIORI,HR, CRM, SRM Security

• Single Sign-On (SSO) & SAP IAS/IPS

• Production Support & Troubleshooting

• Technical Documentation & Testing

Professional Experience

Senior SAP Security and GRC Consultant May 2024 – Present TechCloudUSA, Atlanta, GA

• Leading SAP Security role and authorization design for S/4HANA, ensuring compliance with SOX and industry regulations.

• Managing SAP GRC 10.1 and Access Control 12.0, including risk analysis, emergency access management, and role-based provisioning.

• Performing user administration, access reviews, and segregation of duties (SoD) analysis to mitigate risks.

• Collaborating with cross-functional teams to support security-related project implementations and audits.

• Providing 2nd level support for SAP security issues, troubleshooting user access, and resolving authorization conflicts.

• Conducting security assessments, identifying gaps, and recommending enhancements for compliance and risk mitigation.

Graduate Student Assistant September 2023 – April 2024 Trine University, Phoenix, AZ

• Assisted faculty with cybersecurity and network administration tasks.

• Provided IT support and troubleshooting for university systems.

• Researched and implemented security measures to protect institutional data. SAP Security and GRC Consultant October 2022 – August 2023 Wipro Limited, Bengaluru, India

• Configured and managed SAP security profiles, authorizations, and user provisioning workflows across SAP ECC, S/4HANA, and Fiori.

• Led SAP security implementations, ensuring alignment with audit and regulatory requirements.

• Provided technical expertise in SAP GRC Access Control, including role design, risk analysis, and remediation.

• Worked closely with auditors to support SOX compliance, internal controls, and risk assessments.

• Developed security test scripts and performed validations to ensure smooth security role deployment. SAP Security and GRC Analyst/Associate Consultant April 2021 – October 2022 Wipro Limited, Bengaluru, India

• Designed and implemented SAP security solutions for access control, identity management, and compliance.

• Performed periodic access reviews and risk analysis to minimize unauthorized access and mitigate security threats

• Assisted in SAP security audits, prepared documentation, and supported user provisioning activities.

• Troubleshot access-related issues and collaborated with SAP functional teams to ensure seamless security processes.

Internship Trainee September 2020 – March 2021

SBCS India, Bengaluru, India

• Gained hands-on experience in SAP security configurations and identity management (IAM).

• Assisted in security risk assessments and compliance reviews.

• Documented security policies, standard operating procedures, and mitigation strategies. Education

Master’s in Information Technology

Trine University, Phoenix, AZ

Bachelor’s in Electronics and Communication Engineering R.M.K College of Engineering and Technology, TN, India Certifications

• Cloud Security on SAP Business Technology Platform.

• Manage user identity and access in SAP S/4HANA Cloud.

• Exploring the Principles of SAP Governance, Risk, and Compliance in the S/4HANA Cloud.

• Cybersecurity Roles, Processes & Operating System Security.

• Cybersecurity Compliance Framework & System Administration. Tools & Technologies

• SAP GRC (AC,PC, Risk Analysis, Firefighter)

• SAP Security (ECC, S/4HANA,FIORI, BW, CRM, SRM)

• SAP IAS/IPS, SAML2.0, OAuth

• Microsoft Active Directory & Azure Entra ID

• ServiceNow (Incident Management)

• SAP Solution Manager & SAP Fiori Security

Projects & Achievements

• Successfully designed and implemented SAP Security role structures for global SAP S/4HANA implementation.

• Reduced audit compliance issues by 40% by remediating SoD conflicts and enhancing role assignments.

• Automated user provisioning workflows in SAP GRC, reducing manual workload and access-related incidents.

Contact this candidate