Prathyusha Maturu

  • SAP Security & GRC
  • Glendale, CA
  • Member Since Jun 02, 2023

Candidates About

 

Prathyusha Maturu

Professional summary:

Ø  A competent professional with 8 years of experience as a SAP Security Consultant and GRC.

Ø  Experience in SAP implementation, Roll-outs and Support Projects.

Ø  Working experience with SAP GRC AC 10, R/3-ECC, BI, SAP HCM, CRM 2007, Enterprise Portals, and CUA systems.

Ø  Proficient in GRC AC components EAM, ARA, ARM and BRM implementation, support activities.

Ø  Maintaining SAP security in terms of creating roles and profiles, assigning roles, assigning authorization objects to roles through PFCG.

Ø  Experienced in implementing security procedures for user creation and maintenance in client-specific model and Central User Administration (CUA) in SAP R/3(ECC), BW 3.5(BI7.0), CRM 2007, SAP HCM and Enterprise Portals.

Ø  Experience in GRC Implementation and support with CC, RAR, FF, SPM, CUP, ARA, ARM, EAM, BRM and SAP CUA (Central User Administration) integration with SAP ECC 6.0 with an excellent understanding of Sarbanes-Oxley Act (Section 302 and Section 404).

Ø  Maintain firefighter owners and controllers and assign to firefighter ids to enable users to perform emergency activities within a controlled and fully audit-able environment.

Ø  Collecting firefighter logs on weekly/monthly basis and sending to process management team.

Ø  Extensive knowledge on SOD management process to prevent the system from the risk, identifying problem and to take proper action in order to keep system clean.

Ø  Defining functions, access risks, mitigation controls as per business requirement.

Ø  Worked on HCM Security and modification of HR roles.

Ø  Good knowledge on evaluation path, PD profiles and position based roles.

Ø  Experience in managing analysis authorizations, finding missing authorization objects for Reporting users and assigning analysis authorization using RSECADMIN.

Ø  Troubleshooting the user authorization failure in Bex Analyzer and different BI reports.

 

Ø  Role dependent view configuration / CRMC_UI_PROFILE, Org Model / Unit positioning -enhanced object assignment, Authorization Report Programs (CRMD_UI_ROLE_PREPARE,

CRMD_UI_ROLE_ASSIGN)

Ø  Experience in working with various technologies and also involved in their service issues.

 

 

 

 

 

 

Technical skills

 

OS

UNIX, Windows NT 4.0,HP-UX ,Sun Solaris, Windows2000

RDBMS

Oracle 8i, 9.2/9.4, MS/SQL, DB2

ERP

SAP R/3 ECC 6.0/5.0, ERP 6.0

Applications

Lotus Notes, Microsoft: Access, Word, Excel, Power Point, MS Outlook, MS Project, MS Visio

Security Tools

SAP GRC AC 10/, SAP User Management Engine (UME) and CUA, Profile Generator (PFCG), Role and profile creation and modification, User administration.

 

Professional SuMMARY

Public Storage, Glendale, California   - August 2015 to Present

 

Project: Webchamp 2.0 POS Application

 

Role: SAP SECURITY & GRC CONSULTANT      

WebChamp 2.0 is a point of sale application for Public Storage. It is a complex application with built in business logics to automate and control business process within the system, unlike existing application, which is human dependent for decision making and payment application rules.               

Responsibilities:

Ø  Performed user maintenance tasks, user creation, deletion, lock down, activation, password management tasks utilizing SU01, and SU10

Ø  Maintained Sap Security in terms of creating users, creating profiles, creating roles, assigning profiles, assigning roles.

Ø  SAP R/3 Security for User Master Records Maintenance, maintaining Authorizations Group/Profiles/Roles and assigning roles/profiles to users.

Ø  Assigning Additional roles to the existing users based upon the request

Ø  Analyzed and troubleshoot security issues using SU53, ST01 and SUIM

Ø  Performing post Go-live support by troubleshooting user related issues, leveraging SU53, STO1, SU24, and SE16 transaction codes when appropriate.

Ø  Maintain firefighter owners and controllers to firefighter users to enable users to perform emergency activities within a controlled and fully audit-able environment.

Ø  Collecting firefighter logs on weekly/monthly basis and sending to process management team.

Ø  Create, maintain, and manage Rule Sets/Functions and Risks used to generate Rules.

Ø  Created the mitigation controls to reduce or minimize the SOD/SOX violations.

Ø  Performed the mapping of mitigation controls to the risks of respective users in ARA.

Ø  Scheduling the ARA back ground jobs.

Ø  Provided the remediation plan to remediate the risks, after performing the risk analysis based on Single role, Comp role, Biz. Role and users.

Ø  Working on HCM Security and modification of HR roles.

Ø  Good knowledge on evaluation path, PD profiles and position based roles.

Ø  Using t-code PA30 / PA20 for maintaining personnel administration data for users.

Ø  Troubleshooting issues related to relationships, positions to user (tcode PO13).

Ø  Working experience with HR authorization objects & HR user master record maintenance.

IBM India – Feb 2013-Jan 2015

Client: British Petroleum (BP) –Integrated Supply Trading (IST)

Role: SAP SECURITY & GRC CONSULTANT

BP IST (Integrated Supply Trading) is a trading Division of BP; this makes system extremely critical for BP Business. SAP IST application includes ECC, GRC, BW and XI application and is interfaced with multiple legacy systems. Most of the transactions are created in legacy system and SAP is updated through interfaces.

Responsibilities:

 

Ø  Performing user administration duties, with emphasis on creation and modification of users.

Ø  Updating key deliverable documents such as BRD, FDD, TDD, and Test scripts after a change request.

Ø  Configuring roles using automatic profile generator (PFCG), modifying and deleting existing roles.

Ø  Direct assignment of roles to users using PFCG and SU01.

Ø  Creating User groups and assigning users to groups.

Ø  Maintenance of mass users using ECATT and SU10

Ø  Performing post Go-live support by troubleshooting user related issues, leveraging SU53, STO1, SU24, and SE16 transaction codes when appropriate.

Ø  Performing SOD checks for all PRD users using SAP-GRC Access Risk Analysis toolset

Ø  Mitigating and remediating roles based upon change requests.

Ø  Maintenance of Authorization Objects using SU24

Ø  Working on Remedy ticketing tool and resolving all user incidents

Ø  Building up report of changes made to T-codes in Production environment on a monthly basis.

Ø  Working on Remedy ticketing tool and resolving all user incidents

Ø  Restricting reporting users through S_RS_COMP and S_RS_COMP1 authorization objects

Ø  Created analysis authorizations through RSECADMIN

Ø  Assigned analysis authorizations to the roles using object S_RS_AUTH authorization object

Ø  Troubleshoot authorizations related problems using RSECADMIN

Value Labs- Hyderabad, India April 2010-Feb 2013

ROLE: SAP SECURITY CONSULTANT

Responsibilities:

Ø  Maintained SAP security in terms of creating roles and profiles, assigning roles, assigning authorization objects to roles through PFCG

Ø  Performed user maintenance tasks, user creation, deletion, lock down, activation, password management tasks utilizing SU01, and SU10

Ø  Performed Mass comparison of roles via PFUD

Ø  Single transport and Mass transport of roles through SE10

Ø  Resolved wide range of SAP incident tickets as per established procedures

Ø  Analyzed and troubleshoot security issues using SU53, ST01 and SUIM

Ø  Switching on/off the trace through t-code ST01 for tracing the authorization objects being called for particular t-code.

Ø  Worked on the enhancement requests.

Ø  Building up report of changes made to T-codes in Production environment on a monthly basis.

Ø  Role dependent view configuration / CRMC_UI_PROFILE, Org Model / Unit positioning -enhanced object assignment, Authorization Report Programs (CRMD_UI_ROLE_PREPARE,

CRMD_UI_ROLE_ASSIGN)

 

Oasis Technologies- Hyderabad, India October 2009-April 2010

ROLE: SAP SECURITY CONSULTANT

Responsibilities:

User/Role Administration:

Ø  Creating new user master records with required information.

Ø  Working on priority tickets and providing resolutions with in SLA.

Ø  User provisioning through CUP.

Ø  Managing user license types for user master records.

Ø  Password reset, extending the expiry date, lock and unlock of users.

Ø  Providing developer key access to required users through SAP portal.

Ø  Giving OSS id access to required users for solving or analyzing errors by SAP users.

Ø  Applying request in YSFF for getting extending critical t-code authorization access.

Ø  Assigning required role access and t-code access to user’s with prior approvals.

Ø  Mass user maintenance for assigning mass role or removing mass role to users.