Satish G Dublin-OH

SAP Security/GRC Consultant

Contact No: +1 614 602 2393
Email ID: satish.sapsec1@gmail.com
Summary:

 10+ Years of extensive experience in SAP Security and GRC including

Implementation, Production support, Post Go-live support, Role remediation,
SAP GRC configuration.
 Worked as onsite and offshore lead for multiple projects and maintained the
co-ordination between onsite and offshore teams.
 Worked in Asia / North America with exposure to adjust to different work cultures
 Have completed GRC AC and Security implementations for large customers
across the Globe
 Design and Implementation of GRC 10.1 including Installation, Post Installation,
configuration, workflows and GRC 12.0 Upgrade
 Good hands on in Designing, Implementation of Security in SAP ECC 5.0/6.0,
EHP7, S4 HANA, Fiori, BW/BI7.0, BOBJ, HANA, MDM, PI, HR(HCM), SCM,
SNC, GRC 5.3, GRC
 Configuration and administration of GRC 10.1 components ARM,ARA,EAM and
BRM
 Implemented MSMP workflows for ARM,EAM Log review and UAR
 Designed BRF+ rules to meet customer requirements for MSMP workflows
 Implemented Intelligent escalation at different stages of MSMP workflow
 Designed class based rule to trigger escalation at Manager stage
 Worked on SOH migrations and HANA 2.0 Upgrade
 Integration of HANA with SAP GRC
 Worked on Design time roles of HANA 1.0 and 2.0 systems
 Configuration and administration of RAR, SPM,ERM and CUP of GRC 5.3
 Implemented GRC Password self-service to reset the passwords of Production
and Non production systems
 Designed Custom Rulesets, Functions and Risks
 Have worked on Remediation at Role(Single/Composite) level and User level
 Worked on designing mitigation controls
 Executing risk analysis/simulation at role and user level
 Scheduled GRC synchronization jobs for different connectors
 Developed Security and User Provisioning Strategies in alignment with SAP Best
Practices and the business requirement
 Involved in various phases of Software Development Life Cycle i.e. Analysis,
Design, Implementation, Testing / Debugging and ASAP methodology.
 Thoroughly experienced in all phases of a project lifecycle. Participated in
multiple full cycle implementations.
  Worked as a team lead for a support project as well as Executor for Security
audit team.
 Design, Developing, Testing and Implementing SAP Security Roles, Profiles and
Authorizations for various landscapes including S/4 HANA systems
 Handled security for various modules: ECC, BI, BOBJ, Fiori, HR, FI, CO, MM,
SD, PP, PM, PI.
 Central User Administration (CUA) experience to create users, assign roles, and
maintenance.
 Knowledge on Success factors Security
 Good experience in User Administration (creating, changing, maintaining user
accounts and assigning roles).
 Good experience in Role Administration (Created and modified Single roles,
Composite roles and Derived roles using automatic profile generator) to meet
business requirements by making sure users do not get more authorizations than
needed to perform their tasks.
 Good experience in analyzing missing authorizations and assigning roles to
users.
 Developed tools related to SAP Security where User Administration and Role
Administration has been performed 70% faster than the manual process
 Experience in implementing security in BW including info object level security
 Built Analysis Authorizations using the transaction RSECADMIN.
 Created roles restricting access to Info cubes, ODS objects, specific queries and
workbooks.
 Troubleshoot authorizations related problems using RSECADMIN
 Experienced and strong with Security Audits, SOX Section 404 compliance and
Audit Information System. Used SAP audit transactions and configured audit and
reporting through SM18, SM19 & SM20.
 Managing the work distribution and tracking the progress to achieve the SLA
adherence.

Skills:
SAP Security R3,HR,BI,MDM,PI,HANA,SLT,S/4 HANA,HANA
DB
SAP Mobile SAP Fiori
SAP GRC AC ARA,EAM,ARM,BRM

Professional experience:

SAP GRC/Security Consultant

Cardinal Health,Dublin,OH Dec 2017 - Present

Responsibilities:

 Designed the Architecture of SAP Security for S4 HANA, ECC, APO, HANA,
Ariba, SNC, HANA DB, Portal.
 Worked on SOH migrations and HANA 1.0 to 2.0 Upgrade
 Designed and maintained the SAP Security roles for S/4 HANA systems
 Designed SAP FIORI roles in S4HANA and SAP NetWeaver Gateway systems
with customizing and standard approach
 Worked with Fiori developers to design roles for S/4 HANA
 Designed technical roles for multiple tenants of HANA system
 Creation of Business roles/Analytical Privileges in HANA system
 Worked on GRC 12.0 upgrade and configured EAM for SAP HANA DB’s
 Configured GRC AC Emergency Access Management (EAM), Access Risk
Analysis (ARA), Access Request Management (ARM) components.
 Configured MSMP Workflows for EAM log review, ARM and UAR
 Integration of multiple tenants of HANA with GRC 10.1 for provisioning
 Implementation of GRC Business role concept for Technical/Business roles of
different systems
 Design, Developing, Testing and Implementing SAP Security Roles, Profiles and
Authorizations for various landscapes
 Trouble Shooting Authorization issues
 Designed Security ro les of new UI5 system
 Integration new UI5 system with GRC for provisioning
 Designed GRC Ruleset for SOS analysis
 Implemented automations for GRC Controls
 Co-ordinated with offshore for work distribution.

SAP GRC/Security Lead Consultant

Kellogg Foods Jan 2016 – Dec 2017

Responsibilities:

 Design, Developing, Testing and Implementing SAP Security Roles, Profiles and
Authorizations for various landscapes
 Worked as onsite lead and effectively co-ordinated with offshore for smooth
deployment of project
 Conduct meetings and working session workshops with different groups to
discuss and gather the requirement for Role matrix
 Creation of HANA Security roles/Users
  Integration of HANA with SAP GRC for provisioning
 Trouble Shooting Authorization issues
 Addition of fiori web services in GRC Rule set based on the functionality
 Designed Security roles of Fiori
 Implemented Fiori Security for Material Management module
 Worked on SAP Fiori Catalogues, Groups and Web services
 Identifying and mapping authorization objects for SAP Fiori Web services
 Working on Role changes of Success factors
 Executing risk analysis/simulation at role level/user level
 Providing firefighter access to users over cutover
 Worked on Role Remediation exercise
 Creating/applying mitigation controls at User level
 Identified ‘Z’ custom transaction codes to be included in the ruleset of GRC and
processed changes as necessary
 Resolved all the defects identified in IT1/IT2/IT3/UAT1/UAT2 cycles
 Uploading Roles to GRC system
 Executing GRC sync jobs for all backend systems
 Worked as onsite coordinator to lead the offshore team

SAP GRC Consultant

National Grid Aug 2014 – Dec 2015

Responsibilities:

 Implemented GRC AC10.1

 Configured GRC AC Emergency Access Management (EAM), Access Risk Analysis
(ARA), Access Request Management (ARM) components.
 Configured MSMP Work flows for EAM log review, ARM and UAR
 Designed BRF plus initiator/agent Rules to enable workflow usage as an add-on to
the existing design. This BRF plus logic was setup to support multiple levels of
approvals driven by request types and conditions contained within the request
 Conduct meetings and working session workshops to discuss and implement the
approved design
 Draft design documents to cover all functionality configured for ongoing support
 Configuring and executing User Access Review
 Implemented SAP GRC Password Self Service for production/non production
systems
 Designed GRC rule set for SOD/Critical action risks
 Identified and included custom tcodes in the risk library based on the functionality of
transaction
 Designed class based rule to implement escalation at Manager stage