Lavanya Alajangi

  • SAP Senior Security & GRC Consultant
  • San Jose, CA
  • Member Since May 08, 2023

Candidates About

 

Lavanya Alajangi

SAP Certified Consultant – Security & GRC

PROFILE SUMMARY

      Having 8.3 years of experience as SAP Security Consultant handling GRC AC10.0 implementation, Migration from Virsa 4.0 to GRC 10.1, GRC 5.3 Support, SAP Upgrades, SAP ECC implementations and Production Support activities in SAP ECC, BI, HR, CRM, BOBJ, BPC, Portal and Solman Systems.   

      Experience with implementation, administration and support of GRC Access Control 10.0 & 10.1.

      Migration of  Virsa 4.0 to GRC Access Control 10.1

      Involved in Configuration of GRC Access Control components Access Risk Analysis (ARA), Access Request Management (ARM), Emergency Access Management (EAM) and Business Role Management (BRM).

      Maintenance of MSMP Work flows in Access request Management & Business Role Management.

      Good Knowledge on Business Rules Framework (BRF)

      Hands-on working experience on GRC 5.3 tools like Complaint User Provisioning, Risk Analysis and Remediation, Role Expert and Super user Privilege Management.

      Experience in SOX (Sarbanes Oxley) Compliance and worked on Compliance tool Virsa.

      Handled SAP R/3 Security Upgrade from 4.7 to ECC 6 with EHP6.

      Involved in design and development of SAP roles in ECC implementation.

      Defining new roles according to business design

      Design and implement security development strategy using client resources from definition of job roles through to development, testing and migration.

      Experience in Analyzing SOD issues and implement necessary changes in compliance with Security Standards and policies. 

      Experience in supporting complex SAP environments with large user base and SAP Systems.

      Extensive experience with resolving ticket issues and troubleshooting security authorization problems while adhering to SLA.

      Collaborate with other team members and business representatives to ensure that security settings meet the requirements of the business and align with the defined controls and standards.

      Prepare monthly status reports and KPI reports to achieve the SLA adherence for the team performance.

      Ability to manage multiple tasks and Projects simultaneously.

      Maintain all projects and support related process and approval documents up to date and track all the change logs.

      Involved in SAP Security Auditing

      Mentored and Trained New Joiners in the Team.

 

CERTIFICATIONS

Certified as SAP GRC Consultant

Certified as SAP Netweaver -2004 Security Consultant

 

TRAININGS

Trained in SAP ADM 940, 950 and 960 from SAP Education Services.

Trained in TGRC20, TGRC30 from SAP Education Services

Trained in BW365 from SAP Education Services

Trained in SAPEP from SAP Education Services

 

 

 

 

 

EMPLOYMENT HISTORY

Working as SAP Security & GRC Consultant, HGST San Jose from April 27th 2015 to till Date.

Worked as Senior Consultant, NTT DATA in India from March 15th 2012 to 22nd Aug 2014.

Worked as System Engineer, IBM India Pvt Ltd from 18th Aug 2006 to March 12th, 2012

 

ROLES & RESPONSIBILITIES

Project Details - 1:

HGST, April 2015 to Till Date

Client                                                     : HGST, a Western Digital Company

Type                                                       : Virsa 4.0 to GRC 10.1 Migration, Implementation & Support.
Technology/Software                         :  GRC 10.1,Virsa 4.0 ,ECC 6.0 , BI 7.0 , SRM
Ticketing Tool                                      :  Lotus Notes

Client Description:
HGST, Inc. (formerly Hitachi Global Storage Technologies) is a wholly owned subsidiary of Western Digital that sells hard disk drives, solid-state drives, and external storage products and services. It has over 45,000 employees providing excellent service worldwide.

 

Role: SAP Senior Security & GRC Consultant

Responsibilities:

      Preparation of  Virsa 4.0 to GRC 10.1 Migration

      Review the existing security Architecture and approval processes for ECC, BI and SRM Systems.

      Advice the client for improvements in processes and Security design.

      Configuration of Access Control Components ARA, ARM, EAM and BRM.

      Maintenance / Customization of MSMP Workflows as per the client requirement.

      Customization of Business Rules Framework (BRF+)

      MSMP Configuration of Access Request and Role Approvals.

      MSMP Configuration of Workflows UAR, Functions, Risks, Mitigation Controls and Firefighter logs.

      Maintenance of Templates and Notification messages as per the client requirement

      Creation / Generation of Custom Rule Set 

      Schedule Synchronisation Jobs in Background

      Maintenance of Functions / Risks and Mitigation Controls.

      Set up Access Control Owners

      Creation / Maintenance of Firefighters, Controllers and Owners.

      Define Methodology Process for the defined role types and its steps in BRM

      Develop Back end roles to access  GRC

      End to End Testing of all Scenarios in GRC AC

      Provided End User Training Documents.

      Trained Business Users to GRC Access Request Management and approval workflow processes.

 

Project Details - 2:

Juniper Networks, April 2014 to Aug 2014

Employer                                              : NTT DATA

Client                                                     : Juniper Networks
Type                                                       : Implementation & Support.
Technology/Software                         :  ECC 6.0, GRC 10.0, BI 7.0, BOBJ
Ticketing Tool                                      : Service Now

Client Description:
Juniper Networks is in the business of network innovation. Juniper Networks designs, develops, and sells products and services that together provide its customers with network infrastructure. It operates in two segments: Infrastructure and Service Layer Technologies.9400 Employees providing excellent service worldwide.

 

Role: SAP Senior Security / GRC Consultant

Responsibilities:

      Interact with the business and functional leads to define security roles development strategy.

      Development of Roles as per the client requirement in ECC.

      Troubleshooting Authorization issues using trace and SU53.

      Maintenance of Authorization Objects at SU24.

      Creation of Custom TCodes

      Worked on restricting access to Tables

      Troubleshooting authorization issues using SU53 and ST01.

      Creation and maintenance of BI Analysis authorizations

      Determining info providers, info areas and info cubes for analysis.

      Worked with RSECADMIN & Project specific customized authorization.

      Troubleshooting Reporting issues in BI.

      Involved in GRC configuration activities.

      Performed Integration Framework Activities.

      Maintenance of MSMP workflows.

      Worked on Business Rules Framework (BRF+)

      Running Synchronization Jobs in Background.

      Upload /Download of the ruleset.

      SOD Rule set generation

      Creation and Maintenance of Functions , Risk id’s

      Performed risk analysis at user and role level

      Roles upload to GRC.

      Creation and Maintenance of Access control Owners

      Creation of Firefighter ID’s

      Maintenance of FF Owners and controllers

      Creation and maintenance of Folder Level Security in BOBJ

      Security setup at connections level

      To setup security in BI Launch Pad

      Security Setup in Web Intelligence

 

Project Details - 3:

Sigma Aldrich, August 2012 to March 2014

Employer                                              : NTT DATA

Client                                                     : Sigma Aldrich
Type                                                       : Implementation & Support.
Technology/Software                         :  ECC 6.0, GRC 10.0, BI 7.0, HR , CRM , BPC and Solman
Ticketing Tool                                      : I Support

Client Description:
Sigma-Aldrich is a leading Life Science and High Technology company. Its biochemical and organic chemical products and kits are used in scientific and genomic research, biotechnology, pharmaceutical development, the diagnosis of disease and chemical manufacturing. Have customers in life science companies, university and government institutions, hospitals and in industry. Sigma-Aldrich sells to over 160 countries & operates directly in 40 countries and has over 8,300 employees providing excellent service worldwide.

 

Role: SAP GRC / Security Lead

 

Responsibilities:

      SAP Security Support Lead for all modules which includes ECC, BI , HR and CRM.

      Prepare monthly status reports and KPI reports to achieve the SLA adherence for the team performance.

      Interacting with Client & requirement gathering from functional teams and data owners for role development.

     Participate actively with internal training/knowledge transfer to new security team members as well as project support team members

      Redesign Security for Project Systems.

      Analyse unassigned roles in SAP Systems for the cleanup activities .

      Review and prepare Security related Documentation.

      Extensive experience with resolving ticket issues and troubleshooting security authorization problems while adhering to SLA.

      In Day to day technical support , assist the team where client interaction and technical expertise helps to resolve Security issues.

      Maintenance of Roles as per the Client Standard in SAP R/3 System

     Creation of Bulk Users & Role Assignment for Project Work.

      Worked with security related tables such as AGR*, USH*, USR*

      Creation / Maintenance of custom Tcodes to restrict access to Users

      Troubleshooting Authorization issues using SU53 , ST01

      BI User authorization analysis.

      Creation of Analysis Authorization.

      Supporting business users in assessing authorization needs and identifying appropriate roles to be assigned

      Worked with RSECADMIN & Project specific customized authorization.

      Analysis / Determining of Info areas , Info cubes , Info providers in RSA1

      Troubleshooting Authorization issues using RSECADMIN

      SAP HR User Administration

      ESS and MSS Access Management.

      Checking the User IDs record in PA30

      Assignment of SAP HR Roles for Managers, HR Personnel etc.

      Checking existing relationships to the organizational unit

      Add relationship to Position

      Assignment of PD Profile to Positions

      Determining the positions in PPOSE and worked on Info types

      Updation of Structural Authorizations in OOSB

      Generation of User authorization for HR System.

      SAP  CRM User Administration

      Creation of Business Partner

      Checking existing relationships to the organizational unit

      Troubleshooting the organizational assignment issues using Tcodes  CRMC_UI_PROFILE and PPOMA_CRM

      SAP BPC User Administration

      Creation and Maintenance of Task Profiles , Data Access Profiles and Teams

      Assignment of Users to Teams, Task and Data Access Profiles.

      Involved in Configuration of  GRC Access Control Components.

      Involved in NWBC configuration like activation of client, web services  

      Involved in activation of workflow customizing and task customizing agents and event linkages.

      Maintained the configuration parameters for all components.

      Created connectors and assigned to the connector groups

      Performed the integration frame work activities.

      Scheduled bg jobs for synchronization.

      Performed the risk analysis user level, role level.

      Creation of FFID, FFowners, FFcontrollers.

      Activation of FF logs.

      Maintenance of mitigation controls.

      Maintained MSMP workflow for Access request management.

      Knowledge on BRF+ and BRM.

 

 

Project Details - 4 :

Sunbulah Project, April 2012 to July 2012

Employer                                              : NTT DATA
Client                                                     : Sunbulah , Middle East
Type                                                       : Technical Upgrade.
Technology/Software                         : SAP R/3 4.7 to ECC6 EHP6

Client Description: Sunbulah is a leading Food and Fine Pastries Manufacturing Company in Saudi Arabia.

Role: SAP Security Consultant

 

Responsibilities:

      Worked on SAP R/3 Security Upgrade from 4.7 to ECC 6 with EHP6

      Only security resource who involved in the complete security upgrade of this project.

      Worked on the steps 2a to 2d in su25.

      Worked on profile generation in all the roles.

      Confirming Profile Generator is Active

      Resolved authorization issues due to new authorization checks in upgrade.

      Provided post security upgrade support as well.

      Handled successfully without escalations and provided on time support to security issues.

 

 Project Details - 5:


British Petroleum (AMS), August 2006 to March 2012

Employer                                              : IBM INDIA Pvt. Ltd
Client                                                     : British Petroleum, UK
Type                                                       : Support.
Technology/Software                         : 4.7, ECC 6.0, GRC 5.3, Virsa 4.0
Ticketing Tool                                      : Clarify, ITIM Tivoli manager, Remedy

Client Description: British Petroleum, officially BP plc is the third largest global energy company, a multinational oil company ("oil major") with headquarters in London. The company is among the largest private sector energy corporations in the world, and one of the six "super majors" (vertically integrated private sector oil exploration, natural gas, and petroleum product marketing companies). 

British Petroleum Business Company deals with extraction and selling of petrol and petroleum products.  BP consists of different stacks for which the security and basis support is given.  The different stacks involved in to this BP are - upstream, chemicals and corporate stream.

Role : SAP Security Analyst

 

Responsibilities:

      Worked on SAP R/3 Security and BW Security  for BP AMS UK  Project

      Experience with SOX Compliance using VIRSA and GRC 5.3 tools to check SOD Conflicts and mitigating the same

      Modifying user authorization access

      Mass User Lock/Unlock for cutover activity, system refresh.

      Confirming Profile Generator is Active

      Creating, Maintaining, Deleting and transporting activity groups (Generating and maintaining authorizations profiles)

      Defining new roles according to business design

      Design and implement  security development strategy using client resources from definition of job roles through to development, testing and migration

      Creation of Template & Derived Roles in ERP SAP System.

      Worked with Critical authorization objects like S_TABU_DIS,S_PROGRAM & S_DEVELOP

      Creating Security Profiles, activity groups

      Troubleshoot security/authorization related problems using SU53, ST01 and SUIM

      Troubleshooting/problem analysis of user authorization

      Performing traces for troubleshoot authorizations

      Creation of users

      Creation of  Roles, profiles, maintaining authorization objects

      Perform SOD Review to roles.

      Checking missing authorizations

      Creating Transaction codes and assigning to the Roles

      Assigning roles to the users, deleting roles from the user profiles and the systems

      Lock and unlock users

      Deleting users

      Password resetting, Validity date extension

      Assigning transaction codes to the company menu

      Adding Transaction codes to the profile

      <span style="font-size:10pt;font-family:'Souce Sans Pro