Santosh
[email protected] +91
8123253163
Summary:
I consider myself as a responsible person who enjoy the profession, continue to
learn in order to develop & expand my knowledge as well as my career. I look
forward to work on Migration or Implementation or Support projects of GRC10
platforms as a Senior Security Consultant or GRC Consultant in an environment
where my skills are recognized & utilized accordingly.
I have overall 8.5+years of experience in the IT field as a SAP GRC, Security,
BASIS and Support Engineer in different projects.
SAP Experience:
Capgemini India Pvt Ltd – client Direct Energy from June 2015 to June 2016.
UFT Private Limited- client Wipro Technologies for end client ABB from Sept 2014
to Feb 2015
JK Techno-soft limited–client Hindustan Unilever Ltd from June 2013 - Sep 2014.
SAP Edge Technologies – SAP Security Instructor/ Tutor from July 2011 to May
2013.
SGS – client Allianz India from Mar 2010 to Jun 2011
Pharmalink – Abu Dhabi from May 2009 to Feb 2010
Non-SAP Experience:
Brigade, Hyderabad - HP All-In-One Process client Mar 2007 to Dec 2008
SITEL India Limited, Chennai – client EarthLink ISP - Nov 2006 to Feb 2007.
Slash Support India Pvt Ltd, Chennai – client Vonage Holdings Inc-The Broadband
Phone Company - Jan 2006 to Oct 2006
Certifications:
SAP Certified Associate – SAP Business Objects Access Control 10.0
Educational Qualification:
Bachelor of Science (CS) graduate from Kalinga University.-2005.
Technical Skills – SAP
SAP R/3 Skills:
Role Administration skills such as Single, Composite, Parent & Derived Role
creation, modification etc.
User Administration skills such as create, modify, delete, lock/unlock, Copy, pwd
reset.
Troubleshooting the authorization issues using the SU53 and ST01 Transactions
Table Administration skills such as restriction, User Master, Role Master & Address
Tables etc.
Usage of SU24, SUIM, SUGR, SU20, SU21, LSMW, SQVI Transactions
SAP GRC5.3 to GRC10.0 Migration Skills:
Verified the pre-requisites of GRC5.3 ABAP & JAVA components service pack
levels before starting the migration process of GRC5.3
Advised the BASIS team to prepare the GRC10.0 server with all the pre-requisites
such as OS, DB, NW, GRC Components, Data Migration Tool & Folder creation.
Establishment of Connectors, BC set activation of CUP & RAR.
Exporting and importing the CUP & RAR data using the Data Migration tool.
Performed the Intra-Migration Task such as Workflow, Connecter Groups, etc
Configured various parameters for ARA, ARM & EAM as per the business.
Activating other BC sets and validating the data of RAR & CUP.
Page 1 of 5
�SAP GRC 10.0 Implementation Skills:
Analyzed of the pre-requisites for the GRC10 Implementation project.
Maintaining the RFC Connector and Logical System Name.
BC Sets Activated for SAP GRC10.0 Components.
Configuration of AC 10 SPRO settings.
Configuration of Connector settings.
Maintained the Common Component Settings.
Maintain configuration parameters for Access control
Created the ARA, ARM and EAM users and assigned the corresponding roles for
them in the backend system as required.
Customization of Functions, Risks, Mitigation Control ID and mapped the
corresponding Owners in Access Control Owners and Organization work-sets.
Creating and maintaining the Business Processes and sub processes
Maintaining the associated EUP settings for Access Request.
Generated the rules for the Global and Customized Rule-sets.
Designing the workflows through MSMP by creating different stages and paths.
Mitigating Risks by assignment of Mitigating Controls at Role & User level.
Configured / Maintain Emergency Access Management (EAM) settings.
Worked on Joiner, Mover & Leaver issues of SAP GRC10.0
Worked on Decentralization mode of Firefighting and BRM using the BRF Plus.
SAP BASIS Skills:
Monitoring Activities such as SM50, SM51, SM66, AM04, and AL08.
Experience knowledge of SM59, SNOTE, SPAM, SAINT, RZ10, RZ11and Client
Administration Activities with SCC* transactions
SAP BI Skills:
Fair knowledge on Reporting Authorization & Analysis Authorization.
Modifying role on adding an Info cube to existing role & assigning it to user in BI
7.0
SAP HR Skills:
Knowledge of SAP HR Security Implementation Activities such as creation of an
Organization Structure, Job, and Position.
Knowledge of PD profiles for adjusting the User Master Data after the PD
assignment using the PO13.
Project 6
Company : Capgemini India Pvt Ltd
Client : DE
Designation : Senior Technical Consultant
Duration : June 2015 to June 2016
Project Type : GRC Technical Up-gradation & GRC10.1 EAM Implementation
Responsibilities:
Analyzed the pre-requisites for Technical Up-gradation of GRC 5.3 RAR Data to
GRC10.1 ARA along with Implementation of Decentralization mode of EAM in
GRC10.1 server.
Advised the Centrica BASIS team to implement plug-in GRCPINW as per the kernel
version & GRC10.1 server setup with the provided pre-requisites.
Established & enabled the connectors between the systems & profile parameters
as required.
Activated the corresponding BC sets and SICF services in GRC10.1 system.
Performed Post-Installation activities such as maintaining the connector groups,
mapping connection settings, Integration framework, configuration parameters,
synchronization, etc.
Page 2 of 5
� Mass role importing for all connectors.
Created Role attributes, configured EUP settings & User provisioning settings.
Configured various parameters for ARA & EAM.
Worked on Decentralization mode of EAM.
Configured the corresponding parameters in the plug-in system as required.
Configured the MSMP workflow for Firefighter Log Review of EAM activity as re-
quired.
Also prepared the Functional Specification document for the project.
Project 5
Company : Wipro Technologies
Client : ABB Account
Designation : SAP GRC Consultant
Duration : September 2014 to Feb 2015
Project Type : GRC10 Post-Implementation & R/3 Support Project
Responsibilities:
Worked on Incidents & CR’s of GRC10.0 support activities using HPSM Ticketing
tool.
Worked on Composite, Single and Derived roles as per the project requirement.
Worked on replacing the Mitigation master data such as Mitigation Control
Owners, Control ID’s as per the business requirement.
Created Companies using the SUCOMP as and when required in the project.
Generated the Reports as per the business as and when required.
Prepared the KT Document for the support consultant for closing the Incidents as
per the SAP Best Practice.
Advised the Project Management to apply few SAP Notes after thorough analysis
for ongoing GRC issues such as Provisioning Log’s issue etc.
Configured the Decentralization mode of EAM settings as a CR in the Plug-in
system and GRC system activities as a part of the Task.
Maintained the standard two stages in MSMP for Decentralization mode of EAM.
Involved in the GRC10 core component (GRCFND_A) and it’s plug-in (GRCPINW)
SP Up-gradation task & it’s testing.
Performed the UT, RT after SP level up-gradation from SP12 to SP15 in GRC10.0
Project 4
Company : JKT
Client : JKT – Internal Project
Designation : GRC Team
Duration : June 2013 to Sep 2014
Project Type : GRC5.3 Migration to GRC10.0 and GRC10.0 EAM Implementation
Responsibilities:
GRC10.0 server setup with all the pre-requisites such as OS, DB, NW, GRC
Components
Performed the Post-Installation activities such as SICF, BC Sets activation.
Maintained the RFC Connection between the Plug-in and GRC systems.
Created corresponding GRC Users in the backend system & assigned the
respective roles.
Maintained the Automatic & Task specific Customizing Workflow settings.
Maintained the Connector Groups for Connectors & Connection Settings in SPRO.
Configured the parameters for ARM, ARA, EAM and BRM components.
Maintained the Mapping for Actions & Connector Groups using SPRO settings.
Page 3 of 5
� Configured the Business Process & Sub processes as required.
Performed Authorization, Repository Synchronizations & Batch Risk Analysis.
Generated the rules for standard Rule-set.
Generated the MSMP Workflows for Access Request, Funct, Risks, and Mit Cntr ID.
Maintained the Role Management, User Provisioning & EUP Settings as required.
Assigned the Owners to Firefighter IDs, Firefighter IDs & Controllers to
Firefighters.
Created the Reason Codes for Firefighter ID access as per the department.
Maintained two stages standard MSMP path for Joiner, Mover & Leaver scenarios.
Created a single role using the BRM and BRF+ using the Role Maintenance work
set in NWBC.
Mitigated the identified risk at Role level Access Risk Analysis.
Customized the NWBC cockpit using the standard Webdynpro.
Project 3
Company : JKT
Client : HUL – A FMCG Organization
Designation : GRC Consultant
Duration : Nov 2013 to May 2014
Project Type : GRC5.3 Migration to GRC10.0
Responsibilities:
Verifying the pre-requisites of GRC5.3 ABAP & JAVA components service pack
levels before starting the migration process of GRC5.3
Advised the BASIS team to prepare the GRC10.0 server with all the pre-requisites
such as OS, DB, NW, GRC Components, Data Migration Tool & Folder creation.
Connector establishment of all backend systems & BC set activation of CUP &
RAR.
Exported & Imported the CUP & RAR data using the Data Migration tool.
Performed Intra-migration Tasks such as maintaining the Workflow, Connector
Groups, Connection Settings, and Synchronization etc.
Mass Role importing for all connectors.
Created Role Attributes and Configured End User Personalization settings.
Configured various parameters for ARA, ARM as required.
Activated other BC sets and validating the data of RAR & CUP
Resolved the issues such as “No Rules were Selected” on implementing the
SNOTE.
Configured the MSMP workflow for all Masters such as Function ID, Risk ID & Mit
Contr ID.
Also enabled the MSMP workflow for Manager and Security Lead stages.
Resolved the Mitigated Role character issue on implementing the SNOTE.
Configured the CUA settings as per the existing scenario for User Provisioning.
Performed UT for Joiner, Mover and Leaver scenarios in ARM.
Trained the GRC10.0 Support Activities for a Super User as required.
Maintained standard authorizations in SU24.
Non-IT Experience:
Worked as a SAP R/3 Security Instructor for a couple of batches between July
2011 to May 2013 for SAP Edge Training Institute.
Project 2
Company : SGS
Client : Allianz – Insurance based Organization
Page 4 of 5
�Designation : Consultant
Duration : Mar 2010 to Jun 2011
Project Type : R/3 Security Support Project
Responsibilities:
Using the service-now ticketing tools, resolved the Incidents and Requests as per
the priority within the SLA of the organization.
Provided access to users for different URL’s of GRC 5.3 tool using the Portal roles.
Worked with user managers and role owners of respective LoB for approval
process
Design & developed the single, composite & derived roles using PFCG to meet
business requirement for FI & BI end-users in their client codes.
Critical authorization objects such as S_TABU_DIS, S_DEVELOP, S_TABU_LIN were
restricted.
Analyzed the missing authorizations based on SU53 snapshot dump sent by the
end-user & assigned it to the users in the respective client codes on getting
approvals.
Traced the user activities using ST01 & troubleshoot the issues using the RC
codes.
Generated the detailed reports using USR*, ADR*, AGR* tables.
Worked extensively using SUIM transaction for the day-to-day requirements.
Merging the tables using SQVI transaction when required to get the required
report.
Secured access to table display & maintenance using Authorization Groups SE54.
Knowledge on USMM transaction for segregating the users in Auditing.
Project 1
Company : Pharmalink (Abu-Dhabi & Dubai)
Client : Pharmalink – Internal Project
Designation : System Administrator
Duration : May 2009 to Feb 2010
Project Type : SAP Support Project
Responsibilities:
Troubleshooter the user issues using the Microsoft Outlook.
Monitored the SM50, SM51, SM66, SM04, SM37, OS File System status (OS07),
Table space status (DB02) as a check list & forwarding the reports to the
department.
Worked on User Administration activities as per the business process.
Resolved the user access issues using the lock codes.
Modifying the Roles with considering the critical authorization objects &
transactions.
Performed UT for the modified roles in DEV server before assigning it to a user.
Transported the roles from DEV to QAS across the landscape when required.
Working knowledge on HR Security activities such as creating an Organization
Unit, Job, Position. Modifying a HR User profile by assigning the PD profiles &
running the corresponding reports for adjusting the data.
Page 5 of 5
