
Lavanya Alajangi
- SAP Senior Security & GRC Consultant
- San Jose, CA
- Member Since May 08, 2023
Lavanya Alajangi
SAP Certified Consultant – Security & GRC
PROFILE SUMMARY
● Having 8.3 years of experience as SAP Security Consultant handling GRC AC10.0 implementation, Migration from Virsa 4.0 to GRC 10.1, GRC 5.3 Support, SAP Upgrades, SAP ECC implementations and Production Support activities in SAP ECC, BI, HR, CRM, BOBJ, BPC, Portal and Solman Systems.
● Experience with implementation, administration and support of GRC Access Control 10.0 & 10.1.
● Migration of Virsa 4.0 to GRC Access Control 10.1
● Involved in Configuration of GRC Access Control components Access Risk Analysis (ARA), Access Request Management (ARM), Emergency Access Management (EAM) and Business Role Management (BRM).
● Maintenance of MSMP Work flows in Access request Management & Business Role Management.
● Good Knowledge on Business Rules Framework (BRF)
● Hands-on working experience on GRC 5.3 tools like Complaint User Provisioning, Risk Analysis and Remediation, Role Expert and Super user Privilege Management.
● Experience in SOX (Sarbanes Oxley) Compliance and worked on Compliance tool Virsa.
● Handled SAP R/3 Security Upgrade from 4.7 to ECC 6 with EHP6.
● Involved in design and development of SAP roles in ECC implementation.
● Defining new roles according to business design
● Design and implement security development strategy using client resources from definition of job roles through to development, testing and migration.
● Experience in Analyzing SOD issues and implement necessary changes in compliance with Security Standards and policies.
● Experience in supporting complex SAP environments with large user base and SAP Systems.
● Extensive experience with resolving ticket issues and troubleshooting security authorization problems while adhering to SLA.
● Collaborate with other team members and business representatives to ensure that security settings meet the requirements of the business and align with the defined controls and standards.
● Prepare monthly status reports and KPI reports to achieve the SLA adherence for the team performance.
● Ability to manage multiple tasks and Projects simultaneously.
● Maintain all projects and support related process and approval documents up to date and track all the change logs.
● Involved in SAP Security Auditing
● Mentored and Trained New Joiners in the Team.
CERTIFICATIONS
Certified as SAP GRC Consultant
Certified as SAP Netweaver -2004 Security Consultant
TRAININGS
Trained in SAP ADM 940, 950 and 960 from SAP Education Services.
Trained in TGRC20, TGRC30 from SAP Education Services
Trained in BW365 from SAP Education Services
Trained in SAPEP from SAP Education Services
EMPLOYMENT HISTORY
Working as SAP Security & GRC Consultant, HGST San Jose from April 27th 2015 to till Date.
Worked as Senior Consultant, NTT DATA in India from March 15th 2012 to 22nd Aug 2014.
Worked as System Engineer, IBM India Pvt Ltd from 18th Aug 2006 to March 12th, 2012
ROLES & RESPONSIBILITIES
Project Details - 1:
HGST, April 2015 to Till Date
Client : HGST, a Western Digital Company
Type : Virsa 4.0 to GRC 10.1 Migration, Implementation & Support.
Technology/Software : GRC 10.1,Virsa 4.0 ,ECC 6.0 , BI 7.0 , SRM
Ticketing Tool : Lotus Notes
Client Description: HGST, Inc. (formerly Hitachi Global Storage Technologies) is a wholly owned subsidiary of Western Digital that sells hard disk drives, solid-state drives, and external storage products and services. It has over 45,000 employees providing excellent service worldwide.
Role: SAP Senior Security & GRC Consultant
Responsibilities:
● Preparation of Virsa 4.0 to GRC 10.1 Migration
● Review the existing security Architecture and approval processes for ECC, BI and SRM Systems.
● Advice the client for improvements in processes and Security design.
● Configuration of Access Control Components ARA, ARM, EAM and BRM.
● Maintenance / Customization of MSMP Workflows as per the client requirement.
● Customization of Business Rules Framework (BRF+)
● MSMP Configuration of Access Request and Role Approvals.
● MSMP Configuration of Workflows UAR, Functions, Risks, Mitigation Controls and Firefighter logs.
● Maintenance of Templates and Notification messages as per the client requirement
● Creation / Generation of Custom Rule Set
● Schedule Synchronisation Jobs in Background
● Maintenance of Functions / Risks and Mitigation Controls.
● Set up Access Control Owners
● Creation / Maintenance of Firefighters, Controllers and Owners.
● Define Methodology Process for the defined role types and its steps in BRM
● Develop Back end roles to access GRC
● End to End Testing of all Scenarios in GRC AC
● Provided End User Training Documents.
● Trained Business Users to GRC Access Request Management and approval workflow processes.
Project Details - 2:
Juniper Networks, April 2014 to Aug 2014
Employer : NTT DATA
Client : Juniper Networks
Type : Implementation & Support.
Technology/Software : ECC 6.0, GRC 10.0, BI 7.0, BOBJ
Ticketing Tool : Service Now
Client Description: Juniper Networks is in the business of network innovation. Juniper Networks designs, develops, and sells products and services that together provide its customers with network infrastructure. It operates in two segments: Infrastructure and Service Layer Technologies.9400 Employees providing excellent service worldwide.
Role: SAP Senior Security / GRC Consultant
Responsibilities:
● Interact with the business and functional leads to define security roles development strategy.
● Development of Roles as per the client requirement in ECC.
● Troubleshooting Authorization issues using trace and SU53.
● Maintenance of Authorization Objects at SU24.
● Creation of Custom TCodes
● Worked on restricting access to Tables
● Troubleshooting authorization issues using SU53 and ST01.
● Creation and maintenance of BI Analysis authorizations
● Determining info providers, info areas and info cubes for analysis.
● Worked with RSECADMIN & Project specific customized authorization.
● Troubleshooting Reporting issues in BI.
● Involved in GRC configuration activities.
● Performed Integration Framework Activities.
● Maintenance of MSMP workflows.
● Worked on Business Rules Framework (BRF+)
● Running Synchronization Jobs in Background.
● Upload /Download of the ruleset.
● SOD Rule set generation
● Creation and Maintenance of Functions , Risk id’s
● Performed risk analysis at user and role level
● Roles upload to GRC.
● Creation and Maintenance of Access control Owners
● Creation of Firefighter ID’s
● Maintenance of FF Owners and controllers
● Creation and maintenance of Folder Level Security in BOBJ
● Security setup at connections level
● To setup security in BI Launch Pad
● Security Setup in Web Intelligence
Project Details - 3:
Sigma Aldrich, August 2012 to March 2014
Employer : NTT DATA
Client : Sigma Aldrich
Type : Implementation & Support.
Technology/Software : ECC 6.0, GRC 10.0, BI 7.0, HR , CRM , BPC and Solman
Ticketing Tool : I Support
Client Description: Sigma-Aldrich is a leading Life Science and High Technology company. Its biochemical and organic chemical products and kits are used in scientific and genomic research, biotechnology, pharmaceutical development, the diagnosis of disease and chemical manufacturing. Have customers in life science companies, university and government institutions, hospitals and in industry. Sigma-Aldrich sells to over 160 countries & operates directly in 40 countries and has over 8,300 employees providing excellent service worldwide.
Role: SAP GRC / Security Lead
Responsibilities:
● SAP Security Support Lead for all modules which includes ECC, BI , HR and CRM.
● Prepare monthly status reports and KPI reports to achieve the SLA adherence for the team performance.
● Interacting with Client & requirement gathering from functional teams and data owners for role development.
● Participate actively with internal training/knowledge transfer to new security team members as well as project support team members
● Redesign Security for Project Systems.
● Analyse unassigned roles in SAP Systems for the cleanup activities .
● Review and prepare Security related Documentation.
● Extensive experience with resolving ticket issues and troubleshooting security authorization problems while adhering to SLA.
● In Day to day technical support , assist the team where client interaction and technical expertise helps to resolve Security issues.
● Maintenance of Roles as per the Client Standard in SAP R/3 System
● Creation of Bulk Users & Role Assignment for Project Work.
● Worked with security related tables such as AGR*, USH*, USR*
● Creation / Maintenance of custom Tcodes to restrict access to Users
● Troubleshooting Authorization issues using SU53 , ST01
● BI User authorization analysis.
● Creation of Analysis Authorization.
● Supporting business users in assessing authorization needs and identifying appropriate roles to be assigned
● Worked with RSECADMIN & Project specific customized authorization.
● Analysis / Determining of Info areas , Info cubes , Info providers in RSA1
● Troubleshooting Authorization issues using RSECADMIN
● SAP HR User Administration
● ESS and MSS Access Management.
● Checking the User IDs record in PA30
● Assignment of SAP HR Roles for Managers, HR Personnel etc.
● Checking existing relationships to the organizational unit
● Add relationship to Position
● Assignment of PD Profile to Positions
● Determining the positions in PPOSE and worked on Info types
● Updation of Structural Authorizations in OOSB
● Generation of User authorization for HR System.
● SAP CRM User Administration
● Creation of Business Partner
● Checking existing relationships to the organizational unit
● Troubleshooting the organizational assignment issues using Tcodes CRMC_UI_PROFILE and PPOMA_CRM
● SAP BPC User Administration
● Creation and Maintenance of Task Profiles , Data Access Profiles and Teams
● Assignment of Users to Teams, Task and Data Access Profiles.
● Involved in Configuration of GRC Access Control Components.
● Involved in NWBC configuration like activation of client, web services
● Involved in activation of workflow customizing and task customizing agents and event linkages.
● Maintained the configuration parameters for all components.
● Created connectors and assigned to the connector groups
● Performed the integration frame work activities.
● Scheduled bg jobs for synchronization.
● Performed the risk analysis user level, role level.
● Creation of FFID, FFowners, FFcontrollers.
● Activation of FF logs.
● Maintenance of mitigation controls.
● Maintained MSMP workflow for Access request management.
● Knowledge on BRF+ and BRM.
Project Details - 4 :
Sunbulah Project, April 2012 to July 2012
Employer : NTT DATA
Client : Sunbulah , Middle East
Type : Technical Upgrade.
Technology/Software : SAP R/3 4.7 to ECC6 EHP6
Client Description: Sunbulah is a leading Food and Fine Pastries Manufacturing Company in Saudi Arabia.
Role: SAP Security Consultant
Responsibilities:
● Worked on SAP R/3 Security Upgrade from 4.7 to ECC 6 with EHP6
● Only security resource who involved in the complete security upgrade of this project.
● Worked on the steps 2a to 2d in su25.
● Worked on profile generation in all the roles.
● Confirming Profile Generator is Active
● Resolved authorization issues due to new authorization checks in upgrade.
● Provided post security upgrade support as well.
● Handled successfully without escalations and provided on time support to security issues.
Project Details - 5:
British Petroleum (AMS), August 2006 to March 2012
Employer : IBM INDIA Pvt. Ltd
Client : British Petroleum, UK
Type : Support.
Technology/Software : 4.7, ECC 6.0, GRC 5.3, Virsa 4.0
Ticketing Tool : Clarify, ITIM Tivoli manager, Remedy
Client Description: British Petroleum, officially BP plc is the third largest global energy company, a multinational oil company ("oil major") with headquarters in London. The company is among the largest private sector energy corporations in the world, and one of the six "super majors" (vertically integrated private sector oil exploration, natural gas, and petroleum product marketing companies).
British Petroleum Business Company deals with extraction and selling of petrol and petroleum products. BP consists of different stacks for which the security and basis support is given. The different stacks involved in to this BP are - upstream, chemicals and corporate stream.
Role : SAP Security Analyst
Responsibilities:
● Worked on SAP R/3 Security and BW Security for BP AMS UK Project
● Experience with SOX Compliance using VIRSA and GRC 5.3 tools to check SOD Conflicts and mitigating the same
● Modifying user authorization access
● Mass User Lock/Unlock for cutover activity, system refresh.
● Confirming Profile Generator is Active
● Creating, Maintaining, Deleting and transporting activity groups (Generating and maintaining authorizations profiles)
● Defining new roles according to business design
● Design and implement security development strategy using client resources from definition of job roles through to development, testing and migration
● Creation of Template & Derived Roles in ERP SAP System.
● Worked with Critical authorization objects like S_TABU_DIS,S_PROGRAM & S_DEVELOP
● Creating Security Profiles, activity groups
● Troubleshoot security/authorization related problems using SU53, ST01 and SUIM
● Troubleshooting/problem analysis of user authorization
● Performing traces for troubleshoot authorizations
● Creation of users
● Creation of Roles, profiles, maintaining authorization objects
● Perform SOD Review to roles.
● Checking missing authorizations
● Creating Transaction codes and assigning to the Roles
● Assigning roles to the users, deleting roles from the user profiles and the systems
● Lock and unlock users
● Deleting users
● Password resetting, Validity date extension
● Assigning transaction codes to the company menu
● Adding Transaction codes to the profile
● <span style="font-size:10pt;font-family:'Souce Sans Pro