Venkatarama Pulumati

  • Senior SAP Security Consultant
  • Reading, PA
  • Member Since May 11, 2023

Candidates About

 

Venkatarama (Venkat) Pulumati

Expert Security & GRC Consultant (Utilities, Tech., Healthcare & Manf. Industries)

Certified Security & GRC (Governance, Risk & Compliance) Expert with more than 12 years of experience offering strategic security solutions for diverse clientele.

Best known for

·         Strategic alignment with technical and business architecture needs

·         Sound execution catering to business needs for safer & secure environment

·         Expert SAP Liaison

Security

Implementations     Migrations Upgrades       Acquisitions (US &Europe Based)    User License Management

GRC (Governance, Risk& Compliance)

Compliant User provisioning                  Emergency Access Management             Business Role Management   

Process Control                                       SOX                                                        Audits & Compliance

Identity Management

IDM (SAP)                         Oracle Identity Manager (OIM)

                                                      

                                                         PROFESSIONAL EXPERIENCE:

Senior SAP Security Consultant                                                                                                   August 2017- To Date                                              

Client: UGI

Industry: Utility – Reading, PA

Project Description/Scope:

·         Supported UNITE-Phase1 SAP Project involving ECC, CRM_ISU,BW,HANA & GRC 10.1 systems Go-Live and stabilization phases

Responsibilities/Deliverables:

·         Reviewed security deliverables, knowledge transfer sessions and suggested solutions

·         Led security efforts for stabilization phase supporting role defects

·         Trained Key users in submitting GRC access requests covering position transfers, new hires, Fire Fighter usage

 

Senior SAP Security Consultant

Client: Pacific Gas & Electric                                                                                                   July 2014 - March 2017

Industry: Utility- San Francisco, CA

Project Description & Deliverables:

·         Aligned new technical security solutions in field of Health & Safety (EHSM), Digital Connect (Fiori) with company’s solution architecture

o    Delivered best practices for automated reporting for safety & Health, based on OSHA guidelines by setting up security roles with business needs and HR based job positions

o    Solutioned security aspects of Gateway system for mobile & portal usage as part of mobile and digital connect offerings at PG&E

·         Security SME for production supports in environments including ECC, BI, EWM, SRM, Solution Manager,

        Enterprise Portal, BOBJ, BPC, HANA, GRC

·         Conceptualized and delivered Company wide SAP user license management using Flexera tool as part of Enterprise Initiative

o    Remediated SAP audit observations in user licenses achieving compliance

o    Achieved two fold reduction in costs and time by working as business analyst and security expert

o    Automated with rule based framework using renew, reduce & reuse of user license approach saving resources by 100% and reducing manual effort in 25 systems

·         Architected key initiatives of Cyber Security vision by user & role provisioning in SAP with  Oracle Identity Manager integration(OIM)

o    Integrated SAP systems (ABAP& JAVA based) for user based setup & role provisioning using Oracle Identity Manager automating security processes

o    Automated key components under GRC, including user controls and role certification, there by achieving significant savings in security processes and  transparency in operations

·         Championed business and process improvements as part of Super Fit strategic initiative

o    Solutioned process improvements of security processes with Gap Analysis and As-Is deep dive

 

Senior SAP Security Consultant

Client: Southern California Edison                                                                                                 Jan2014-July2014

Industry: Utility- Irwindale, CA

Project Description & Deliverables:

·         Led PoLAR (Pole Loading Application Replacement) project security roles design, build and testing processes providing access/control/monitor/audit security functions involving diverse applications like SAP (HANA/PI/PO), Design Manager(DM), SPIDA and Geographical Information System(GIS) providing

o    Streamlined access for end users using Pole Loading Program (PLP) dashboard to initiate PLP business process and update pole status

o    Provided technical and end user access in Business Objects using HANA schema and analytic roles setup

o    Supported BOBJ reporting applications on HANA along with user & permission management

·         Security SME for production supports in environments including ECC, BI, CRM, PO, Solution Manager,

Enterprise Portal,  HANA, GRC

 

 

Senior SAP Security Lead

Client: Applied Materials                                                                                                             Feb 2011 – Dec 2013                                                         

Industry: Semiconductor - Santa Clara, CA

Project Description & Deliverables:

·         Aligned strategically overall security for Varian a US based acquired company. ECC/CRM/BI/BOBJ systems were seamlessly integrated with parent company for effective operations

o    Led team of two direct reports from offshore and one direct report onsite

o    Leveraged Enterprise Warehouse Management (EWM) Varian solution and incorporated to AMAT handling mapping and role requirements standardized as per AMAT needs saving on new implementation costs for security

o    Leveraged managed service model handling offshore and onsite security resources to achieve efficiency and scale of operations saving on 100% security resource costs and reduced work load

·         Aligned successfully Europe based acquired firm PWS SAP security system as per global applied GFP template for ECC/CRM/BI/GTS/EP systems

o    Transitioned out key security processes of new firm to AMAT standards and GFP program deploying security reports leveraging extensive security knowledge and well positioned experience at AMAT saving on man hours and achieving transparency of information with faster work and better decision making

o    Key stakeholder of OCM by way of user R2PM(role to person) mapping and ensuing SOD/audit/Controls activities ensuring smoother and faster operations

o    Led compliance efforts leveraging GRC 5.3 for SOD checks, user role provisioning, Super User Management achieving safer operations

 

Senior SAP Security Lead

Client: Cardinal Health                                                                                                                   April 2010- Jan 2011                                                          

Industry: Health Care Services – Dublin, OH

Project Description& Deliverables: Led security compliance and basis support activities for ECC/CRM/Solution Manager & BI systems

·         Developed security technical snapshot reports of users and roles

·         Remediated roles and also updated Virsa rules to ensure compliance and reduction of risks posted in virsa tool

·         Supported basis activities including system health checks to ensure smooth working and preventive checks

·         Trained security coordinators in SOD reports usage with standard work instructions (SWI) and walk-thru sessions

 

Senior SAP Security Consultant

Client: Hitachi Global Storage Technologies                                                                             Aug 2009- March 2010                                                         

Industry: Storage Solutions –San Jose, CA

Project Description & Deliverables: Led overall security roles overall redesign as part of technical upgrade project improving overall security architecture based on best practices and fine tuned processes for ECC,SRM and BI systems saving on redesign and rework

·         Led team of 3 direct reports from offshore and one direct report from Asia in managed services model

·         Articulated clearly with higher management on proposed redesign based on extensive As-Is state of systems and Gap Analysis with clear roadmap and outcomes

·         Initiated new measures in design (Master-Derived roles),build (granular authorizations) optimizing security processes saving on rework

·         Designed security for SRM and BI systems after deep dive and walk thru sessions with functional teams

·         Consulted offshore resource from managed services on security/process and ensured direct participation with client in later phases

·         Remediated Roles and updated mitigation owners ensuring better and smoother operations

·         Created display, maintain, simple and composite roles based on business functions

·         Led compliance efforts with technical guidance for SOD reports and  security roles as per audit and SOX guidelines

 

Senior SAP Security Lead

Client: Applied Materials                                                                                                                 Nov 2007- July 2009

Industry: Semiconductors-Santa Clara, CA

Project Description & Deliverables: Led security efforts for Operations team covering Parts and Services functions spanning Logistics, Pricing, Direct/Indirect Procurement, Planning, Order Management and Services for global rollout ensuring better and leaner operations in ECC, BI, GRC and portal systems.

Led SOX compliance efforts ensuring clean build and streamlined operations.

·         Led team of 3 direct reports from offshore and reported to project SME

·         Envisioned global view of security roles outlined at design (global roles naming convention),build (global composite roles in CUA and respective roles in child systems) ensuring efficient global operations & lesser cost security

·         Articulated clearly security strategy in walk thru sessions with all teams outlining all project phases and security deliverables

·         Ensured compliant operations by planned Segregation of Duties(SOD) reports check in design/build phases with lower security maintenance costs

·         Setup Super User Management (FFID) setup for the teams to cover exceptions, approved system technical changes and audit trail

·         Security point of contact for focal lead meetings, SOD meetings, cross-functional teams discussions

·         Global Network Readiness Resource for SAP security support from Singapore for Asia region for post Go-Live Support

 

 

  Role                                               Client Name                    City, State            Years worked

Senior SAP Security Consultant     Renesas                             San Jose, CA      July 2007-Oct2007

Senior SAP Security Consultant     T-Mobile                           Bellevue, WA     Nov 2006-June2007            

 

Global Enterprise Management Solutions (SAP authorized solution provider for SME Industries) worked for below clients 2004-2006

 

Role                                          Client Name                        City, State                            Years worked

SAP Security Consultant          Royal Construction Group     Boynton Beach, FL         July2006-Oct2006

SAP Security Consultant          O Hair Shutters                       Lubbock, TX                  Feb2006-June2006

SAP Security Consultant          Safety Kleen                           Plano, TX                       March2005-Jan2006

SAP Security Consultant          Nextira One                            Dallas, TX                      Nov 2004- Feb 2005             

 

CERTIFICATIONS:

SAP certified in SAP Net weaver Security

SAP certified in ERP Financials dealing with SOX which includes

a.     Corporate Governance Overview

b.     Auditing with SAP BW and SEM

c.     SAP Solution Overview for Auditing and Sarbanes-Oxley Act

       SAP HANA Implementation and Modeling

 

Skills:

GRC S/W: Virsa (4.X), GRC 5.2, GRC 10

GRC 10: Access Risk Analysis (ARA), Access Request Management (ARM), Emergency Access Management (EAM) and Business Role Management (BRM)

SAP: S/4, ECC, CRM, SRM, BI, XI, PI, PO, Solution Manager, Portals

Identity Management: Oracle Identity Manager (OIM), SAP Identity Management (IdM)

Business Process: GRC Process Control, Saviynt, Approva Biz Rights, Laser Focus

IT Audits: SOX (internal & external)

Databases: Oracle, HANA, SQL Server

Others: SQL, MS Office

   

EDUCATION:

MS in Telecommunications Engineering (Pace University, New York)                       June, 2003

Associate Member of Institution of Electronics & Telecommunications Engineers     Dec, 2000