
Venkatarama Pulumati
- Senior SAP Security Consultant
- Reading, PA
- Member Since May 11, 2023
Venkatarama (Venkat) Pulumati
Expert Security & GRC Consultant (Utilities, Tech., Healthcare & Manf. Industries)
Certified Security & GRC (Governance, Risk & Compliance) Expert with more than 12 years of experience offering strategic security solutions for diverse clientele.
Best known for
· Strategic alignment with technical and business architecture needs
· Sound execution catering to business needs for safer & secure environment
· Expert SAP Liaison
Security
Implementations Migrations Upgrades Acquisitions (US &Europe Based) User License Management
GRC (Governance, Risk& Compliance)
Compliant User provisioning Emergency Access Management Business Role Management
Process Control SOX Audits & Compliance
Identity Management
IDM (SAP) Oracle Identity Manager (OIM)
PROFESSIONAL EXPERIENCE:
Senior SAP Security Consultant August 2017- To Date
Client: UGI
Industry: Utility – Reading, PA
Project Description/Scope:
· Supported UNITE-Phase1 SAP Project involving ECC, CRM_ISU,BW,HANA & GRC 10.1 systems Go-Live and stabilization phases
Responsibilities/Deliverables:
· Reviewed security deliverables, knowledge transfer sessions and suggested solutions
· Led security efforts for stabilization phase supporting role defects
· Trained Key users in submitting GRC access requests covering position transfers, new hires, Fire Fighter usage
Senior SAP Security Consultant
Client: Pacific Gas & Electric July 2014 - March 2017
Industry: Utility- San Francisco, CA
Project Description & Deliverables:
· Aligned new technical security solutions in field of Health & Safety (EHSM), Digital Connect (Fiori) with company’s solution architecture
o Delivered best practices for automated reporting for safety & Health, based on OSHA guidelines by setting up security roles with business needs and HR based job positions
o Solutioned security aspects of Gateway system for mobile & portal usage as part of mobile and digital connect offerings at PG&E
· Security SME for production supports in environments including ECC, BI, EWM, SRM, Solution Manager,
Enterprise Portal, BOBJ, BPC, HANA, GRC
· Conceptualized and delivered Company wide SAP user license management using Flexera tool as part of Enterprise Initiative
o Remediated SAP audit observations in user licenses achieving compliance
o Achieved two fold reduction in costs and time by working as business analyst and security expert
o Automated with rule based framework using renew, reduce & reuse of user license approach saving resources by 100% and reducing manual effort in 25 systems
· Architected key initiatives of Cyber Security vision by user & role provisioning in SAP with Oracle Identity Manager integration(OIM)
o Integrated SAP systems (ABAP& JAVA based) for user based setup & role provisioning using Oracle Identity Manager automating security processes
o Automated key components under GRC, including user controls and role certification, there by achieving significant savings in security processes and transparency in operations
· Championed business and process improvements as part of Super Fit strategic initiative
o Solutioned process improvements of security processes with Gap Analysis and As-Is deep dive
Senior SAP Security Consultant
Client: Southern California Edison Jan2014-July2014
Industry: Utility- Irwindale, CA
Project Description & Deliverables:
· Led PoLAR (Pole Loading Application Replacement) project security roles design, build and testing processes providing access/control/monitor/audit security functions involving diverse applications like SAP (HANA/PI/PO), Design Manager(DM), SPIDA and Geographical Information System(GIS) providing
o Streamlined access for end users using Pole Loading Program (PLP) dashboard to initiate PLP business process and update pole status
o Provided technical and end user access in Business Objects using HANA schema and analytic roles setup
o Supported BOBJ reporting applications on HANA along with user & permission management
· Security SME for production supports in environments including ECC, BI, CRM, PO, Solution Manager,
Enterprise Portal, HANA, GRC
Senior SAP Security Lead
Client: Applied Materials Feb 2011 – Dec 2013
Industry: Semiconductor - Santa Clara, CA
Project Description & Deliverables:
· Aligned strategically overall security for Varian a US based acquired company. ECC/CRM/BI/BOBJ systems were seamlessly integrated with parent company for effective operations
o Led team of two direct reports from offshore and one direct report onsite
o Leveraged Enterprise Warehouse Management (EWM) Varian solution and incorporated to AMAT handling mapping and role requirements standardized as per AMAT needs saving on new implementation costs for security
o Leveraged managed service model handling offshore and onsite security resources to achieve efficiency and scale of operations saving on 100% security resource costs and reduced work load
· Aligned successfully Europe based acquired firm PWS SAP security system as per global applied GFP template for ECC/CRM/BI/GTS/EP systems
o Transitioned out key security processes of new firm to AMAT standards and GFP program deploying security reports leveraging extensive security knowledge and well positioned experience at AMAT saving on man hours and achieving transparency of information with faster work and better decision making
o Key stakeholder of OCM by way of user R2PM(role to person) mapping and ensuing SOD/audit/Controls activities ensuring smoother and faster operations
o Led compliance efforts leveraging GRC 5.3 for SOD checks, user role provisioning, Super User Management achieving safer operations
Senior SAP Security Lead
Client: Cardinal Health April 2010- Jan 2011
Industry: Health Care Services – Dublin, OH
Project Description& Deliverables: Led security compliance and basis support activities for ECC/CRM/Solution Manager & BI systems
· Developed security technical snapshot reports of users and roles
· Remediated roles and also updated Virsa rules to ensure compliance and reduction of risks posted in virsa tool
· Supported basis activities including system health checks to ensure smooth working and preventive checks
· Trained security coordinators in SOD reports usage with standard work instructions (SWI) and walk-thru sessions
Senior SAP Security Consultant
Client: Hitachi Global Storage Technologies Aug 2009- March 2010
Industry: Storage Solutions –San Jose, CA
Project Description & Deliverables: Led overall security roles overall redesign as part of technical upgrade project improving overall security architecture based on best practices and fine tuned processes for ECC,SRM and BI systems saving on redesign and rework
· Led team of 3 direct reports from offshore and one direct report from Asia in managed services model
· Articulated clearly with higher management on proposed redesign based on extensive As-Is state of systems and Gap Analysis with clear roadmap and outcomes
· Initiated new measures in design (Master-Derived roles),build (granular authorizations) optimizing security processes saving on rework
· Designed security for SRM and BI systems after deep dive and walk thru sessions with functional teams
· Consulted offshore resource from managed services on security/process and ensured direct participation with client in later phases
· Remediated Roles and updated mitigation owners ensuring better and smoother operations
· Created display, maintain, simple and composite roles based on business functions
· Led compliance efforts with technical guidance for SOD reports and security roles as per audit and SOX guidelines
Senior SAP Security Lead
Client: Applied Materials Nov 2007- July 2009
Industry: Semiconductors-Santa Clara, CA
Project Description & Deliverables: Led security efforts for Operations team covering Parts and Services functions spanning Logistics, Pricing, Direct/Indirect Procurement, Planning, Order Management and Services for global rollout ensuring better and leaner operations in ECC, BI, GRC and portal systems.
Led SOX compliance efforts ensuring clean build and streamlined operations.
· Led team of 3 direct reports from offshore and reported to project SME
· Envisioned global view of security roles outlined at design (global roles naming convention),build (global composite roles in CUA and respective roles in child systems) ensuring efficient global operations & lesser cost security
· Articulated clearly security strategy in walk thru sessions with all teams outlining all project phases and security deliverables
· Ensured compliant operations by planned Segregation of Duties(SOD) reports check in design/build phases with lower security maintenance costs
· Setup Super User Management (FFID) setup for the teams to cover exceptions, approved system technical changes and audit trail
· Security point of contact for focal lead meetings, SOD meetings, cross-functional teams discussions
· Global Network Readiness Resource for SAP security support from Singapore for Asia region for post Go-Live Support
Role Client Name City, State Years worked
Senior SAP Security Consultant Renesas San Jose, CA July 2007-Oct2007
Senior SAP Security Consultant T-Mobile Bellevue, WA Nov 2006-June2007
Global Enterprise Management Solutions (SAP authorized solution provider for SME Industries) worked for below clients 2004-2006
Role Client Name City, State Years worked
SAP Security Consultant Royal Construction Group Boynton Beach, FL July2006-Oct2006
SAP Security Consultant O Hair Shutters Lubbock, TX Feb2006-June2006
SAP Security Consultant Safety Kleen Plano, TX March2005-Jan2006
SAP Security Consultant Nextira One Dallas, TX Nov 2004- Feb 2005
CERTIFICATIONS:
SAP certified in SAP Net weaver Security
SAP certified in ERP Financials dealing with SOX which includes
a. Corporate Governance Overview
b. Auditing with SAP BW and SEM
c. SAP Solution Overview for Auditing and Sarbanes-Oxley Act
SAP HANA Implementation and Modeling
Skills:
GRC S/W: Virsa (4.X), GRC 5.2, GRC 10
GRC 10: Access Risk Analysis (ARA), Access Request Management (ARM), Emergency Access Management (EAM) and Business Role Management (BRM)
SAP: S/4, ECC, CRM, SRM, BI, XI, PI, PO, Solution Manager, Portals
Identity Management: Oracle Identity Manager (OIM), SAP Identity Management (IdM)
Business Process: GRC Process Control, Saviynt, Approva Biz Rights, Laser Focus
IT Audits: SOX (internal & external)
Databases: Oracle, HANA, SQL Server
Others: SQL, MS Office
EDUCATION:
MS in Telecommunications Engineering (Pace University, New York) June, 2003
Associate Member of Institution of Electronics & Telecommunications Engineers Dec, 2000