Kiran

SAP Security and GRC Consultant

Mobile : 80995 79037 Email: kirankumarkk2708@gmail.com

EXPERIENCE SUMMARY

● Over all 5 years of experience in SAP Security on ECC 6.0 and GRC 10.1.
● SAP ECC Profile Generator (single roles, master / derived roles, composite roles)
● Managing user login parameters and password parameters.
● Analyzing authorization issues/errors and implementing appropriate solutions
● Providing Detailed Reports of Users, User Status, Roles, T-Codes and Objects.
● Performing User Administration including creating users, creating roles, assigning profiles,
assigning roles, assigning authorization objects to roles.
● Analyzing authorization issues via SU53 and ST01 and STAUTHTRACE.
● Configuring of EAM on user based Firefighter ID’S.
● Maintaining Rule Set, Function ID & Risk ID with Risk Owners and generated rules for the Risk
ID
● Creation of Mitigation Approvers & Monitors and created mitigating control IDs.
● End to End full implementation of EAM (Emergency access management).
● Worked on User Administration.

TECHNICAL SKILLS

● SAP Security (ECC)

● SAP GRC

SAP Experience:-

Projects:-

Project 2:-
Client Upfield
Role SAP GRC Consultant
Environment SAP R/3 ECC 6.0, GRC 10.1.
Duration Dec 2018 – Present

Client Profile:- Upfield is a global company owning multiple brands of margarine, food spreads, and plant-
based foods, including Flora and Blue Band. It is the largest plant-based consumer packaged
goods company in the world, operating in 95 countries.

Responsibilities:-
● Worked on User Administration and Role Administration.
● Setting up MSMP workflow and troubleshooting skills for errors related to MSMP.
● Have configured standalone AC specific settings in IMG.
● Have scheduled access control background jobs for proper synchronization.
● Creation of business process and sub process as per the business requirement.
● Creation of rule-sets – function ids and risk ids and generating the Rules against Risk ID.
● Maintained AC owners (FF ID owner and Controller, Mitigation Monitor and approver, Role owner and Risk owner)
in GRC.
● Setting up new controllers, owners and role approvers.
● Monitor data for ARA module for reporting and troubleshoot the issues related to risks analysis.
● Setting up Mitigation controls and monitor the usage of mitigation controls.
● Created the root Organizations and maintaining the Mitigation Monitor and approver.
● Configured the both centralized and decentralized Fire Fighter, enabled the ID based Firefighter
 ● Creation and assignment of firefighter ID – Owners, Controllers and Reason Codes. (EAM)
● Creation and assignment of Mitigation Control ID at user/ Role level.
● Checking SOD conflicts and suggesting remediating/ Mitigating procedures at role level and user level.
● Worked on EAM – Emergency Access Management in Assignment of owners to FF IDs, Assignment of
Firefighter Users to Firefighter IDs.
● Configured MSMP workflow for ARM using BRF+ to automate User Administration.
● Strong working knowledge on Single, Derived and Composite Roles in role administration.
● Strong knowledge on security design and working on customized check indicators for SAP Default
Authorizations by using SU24.
● Worked on security related tables like AGR*, and USR*.
● Analyzing Missing authorizations and providing the appropriate solutions.
● Analyzing authorization issues via SU53,ST01 and STAUTHTRACE.
● Worked on Authorization Objects S_TABU_DIS and S_TABU_NAM.
● Creating change request for role changes transportation to Production Environment.
● Configuring of EAM on user based Firefighter ID’S.
● Mapped Owners, Firefighters and Controllers using NWBC.
● Generating the log reports related firefighter ID’S.
● Troubleshooting the workflow related issues.
● Creation of Mitigation Approvers & Monitors and created mitigating IDs

Project 1:-
Client Bloom Energy
Role SAP GRC Consultant
Environment SAP R/3 ECC 6.0, GRC 10.1.
Duration Nov 2015 – Dec 2018

Client Profile:- Bloom Energy is a public company headquartered in San Jose, California. It manufactures
and markets solid oxide fuel cells that produce electricity on-site. The company was founded in 2001 and
came out of stealth mode in 2010. It raised more than $1 billion in venture capital funding before going
public in 2018.

Responsibilities:-
● Worked on User Administration and Role Administration.
● Strong working knowledge on Single, Derived and Composite Roles in role administration.
● Strong knowledge on security design and working on customized check indicators for SAP Default
Authorizations by using SU24.
● Worked on security related tables like AGR*, and USR*.
● Analyzing Missing authorizations and providing the appropriate solutions.
● Analyzing authorization issues via SU53 and ST01.
● Worked on Authorization Objects S_TABU_DIS and S_TABU_NAM.
● Monthly inaction of user who have not logged in to production system since 90 days.
● Responsible for daily security issues & monitoring unsuccessful logons
● Configuring of EAM on user based Firefighter ID’S.
● Adding firefighter IDs to firefighter.
● Generating the log reports related firefighter ID’S.

EDUCATION DETAILS

 Bachelor of Technology from ECE – Graduated in 2013.