Summary
Overview
Work history
Education
Skills
MAJOR ASSIGNMENTS
TRAININGS
Timeline
Generic
Karunakar Reddy

Karunakar Reddy

Summary

Accomplished IT professional with extensive expertise in SAP Security, GRC 10.1 & 12, and various SAP versions including R/3, ECC 6 & 7, and S4 Hana. Proficient in managing identity and access through SAP Cloud IAM, MIM, and Oracle Identity Manager. Skilled in cloud technologies such as Google Cloud Platform, Azure, AWS, and Terraform. Demonstrates strong capabilities in directory services with MS Active Directory and Oracle Internet Directory. Experienced in application servers like IBM Web Sphere and BEA Weblogic, alongside web technologies including XML and HTML. Adept at database management with SAP Hana and Oracle SQL. Committed to leveraging technical skills to drive innovation and efficiency within dynamic IT environments.

Overview

11
11
years of professional experience

Work history

Consultant

Pixie Services
Spain
2025.12 - 2026.05
  • Working as Consultant in Pixie Services (Spain) From (Dec 2025 to Till Date)

Senior consultant

TCS
Hyderabad
2022.11 - 2025.12
  • Worked as Senior consultant in TCS (Hyderabad) From (Nov 2022-Dec 2025)

GRC Consultant

M&S Consulting Pvt Ltd
Hyderabad
2020.03 - 2022.08
  • Worked as GRC Consultant In M&S Consulting Pvt Ltd (Hyderabad) From (Mar 2020-Aug 2022)

Assistant Consultant

HP
Bangalore
2015.04 - 2020.03
  • Worked as Assistant Consultant in HP (Bangalore) from (Apr 2015 to March 2020)

Education

B.Tech -

JNTU University
India

Skills

  • SAP Skills: SAP Security ,GRC 101 & 12, SAP Versions SAP R/3, ECC 6 & 7,S4 Hana, Fiori
  • LDAP : Active Directory
  • Windows Cloud Technologies: Google Cloud Platform, Azure,Aws,Terraform, Jira
  • Identity Management: SAP Cloud IAM,MIM, Oracle Identity Manager 10/11g, Oracle 10g, 11g IAM, SOA ,CA IDM, Cyber Ark
  • SSO: SiteMinder, Ping Federation
  • Directory Servers: MS Active Directory 2003, Exchange Server, Sun One Directory Server, Oracle Internet Directory, Oracle virtual Directory
  • Web Servers: Sun One Web Server, OHS Web Server
  • Application Servers: IBM Web Sphere 5X, JBoss402, BEA Weblogic 9X, Oracle Application server 10g
  • Languages: C,C, SQL, PL/SQL, Java, J2EE
  • Web Technologies: XML,HTML
  • Protocols: FTP, LDAP, HTTP
  • Operating Systems: Windows 2003 Server, UNIX, Linux
  • Databases: SAP Hana,Oracle,SQL
  • LDAP: Active Directory

MAJOR ASSIGNMENTS

ASSIGNMENT 1: Client: Sanofi (Spain) Duration: Dec 2025 to Till Date. Role: Consultant Work Location: Remote Environment: SAP Security GRC 10.1 &12,S4 Hana, SAP BTP,SAP IAG,SAP IDM,Hana security 6.0, Hana DB, Solman ITSM Incident Manager Created functional specifications and Technical Documents with the offshore team as per the client requirement. Under Risk Analysis (Risk Identification, Remediation, and Mitigation) performed user & role analysis to identify Existing SOD Violations. Managed entire Sanofi UAM Access required for Procurement/Finance teams Involved in Maintenance of Business roles/single/composite roles Troubleshooting any authorization issues SU53/Stauthtrace. Involved in Fire fighter configurations Excellent knowledge of SOX, ISO 27001, Audit issues and SOD issues. Experience in using ARM to configure the workflow for user access review and user Sod review. Handling Incident Management with Servicenow, ASSIGNMENT 2: Client: CVS Caremark (US) Duration: Nov 2022 to Till Date. Role: Production Support Work Location: TCS Hyderabad Environment: SAP GRC 10.1 &12,S4 Hana, SAP BTP,SAP IAG,SAP IDM,SAP BI/BW, Hana security 6.0, Hana DB, Solman ITSM Incident Manager Created functional specifications and Technical Documents with the offshore team as per the client requirement. Integrated ECC, LDAP system with GRC, Created RFC's and configured required SPRO settings. Involved in Hana security (SSo, Kerberos, Authentication and Authorization process) Role creation/modification/Deletion followed with the ITSM process and moved the roles from Dev/Uat/Prod. Involved in Migration from SAP GRC 10 to 12 Version and created custom changes using SU25. Creation of custom T-Codes and defining sensitivity analysis. Updating rule set analysis. Configured required SPRO settings. Monitored Sync jobs and trouble shoot the issues. Under Risk Analysis (Risk Identification, Remediation, and Mitigation) performed user & role analysis to identify Existing SOD Violations. Risk Analysis for Hana, Fiori Apps. Performed remediation and mitigation against various risks. Experience in creating and assigning FFID's to users who need to perform tasks in emergency situations. Configured Workflow, actions and rules. Troubleshooting any authorization issues SU53/Stauthtrace. Excellent knowledge of SOX, ISO 27001, GDPRAudit issues and SOD issues. Experience in using ARM to configure the workflow for user access review and user Sod review. Handling Incident Management, Requests and Change Management., ASSIGNMENT 3: Client: Syneos Health care Duration: March 2020 to Aug 2022 Role: Support. Work Location: M&S Consulting Pvt Ltd Environment: SAP GRC 10.1 &12, ECC 6.0, Hana DB, Service now Incident Manager. Description: Syneos Health (formerly InVentiv Health Incorporated and INC Research) is a American multinational contract research organization based in Morrisville, North Carolina. The company specializes in helping companies with late-stage clinical trials. INC Research acquired inVentiv Health, the parent company of a subsidiary, Syneos, and the resulting company was named Syneos Health They are using SAP GRC for governance, risk, Sox Compliance and Audit for their business operations. Roles & Responsibilities: Created functional specifications and Technical Documents with the offshore team as per the client requirement. Under Risk Analysis (Risk Identification, Remediation, and Mitigation) performed user & role analysis to identify Existing SOD Violations. Performed remediation and mitigation against various risks. Experience in creating and assigning FFID's to users who need to perform tasks in emergency situations. Configured Workflow, actions and rules. Excellent knowledge of SOX, Audit issues and SOD issues. Experience in using ARM to configure the workflow for user access review and user Sod review. Handling Incident Management, Requests and Change Management. Troubleshooting and analyzing the root cause of any issue. 24/7 Production support. Involved in Minor enhancements., ASSIGNMENT 4: Client: BP (British Petrolium),UK Duration: Jan 2017 to Mar 2020. Role: SAP Security/GRC Consultant Work Location: HP Environment: SAP GRC 10, ECC 6.0, service now Incident Manager Roles & Responsibilities: Handling Incident Management, Requests and Change Management. Troubleshooting and analyzing the root cause of any issue. Role Creation/Modification using Profile Generator (PFCG). Expertise in resolving Authorization issues by analyzing Authorization Checks. Configured and Implemented GRC Access Control Suite 10.1 Integrated ECC system with GRC, Created RFC's and configured required SPRO settings. Monitored Sync jobs and trouble shoot the issues. GRC implementation, Automation with GRC ARA, EAM, BRM and ARM. Performed Mass Roles import activity using BRM. Under Risk Analysis (Risk Identification, Remediation, and Mitigation) performed user & role analysis to identify Existing SOD Violations., ASSIGNMENT 5: Client: Ooredoo Duration: Apr 2015 to Dec 2017 Role: Responsible for minor enhancement and support activity Environment: OIM 9.1.0, OID, OVD, OAM 10.1.0.4,OIA,EBS 11g,Points, Java, JDK, WindowsNT,Weblogic 10.3,Oracle HTTP server. Description: Ooredoo QSC is Qatari multinational telecommunications company headquartered in Doha, Qatar. Ooredoo provides mobile, wireless, wire line, and content services with market share in domestic and international telecommunication markets, and in business and residential markets Roles & Responsibilities: Involved in Setting up of Development environment which includes OIM installation, adapter configuration for AD. Created functional specifications and Technical Documents with the offshore team as per the client requirement. User Provisioning / Groups and Organization Level Provisioning on SUN LDAP and AD with Exchange from OIM, Initial reconciliation done from Trusted Resource of EBS. Developed Complex Approval & Provisioning Workflows. Defined IT resources to establish a connection between OIM and target applications. Designed roles, rules, GUI, workflow routes involving enable-disable user, and audit report, delegation. Customized OIM for the custom branding for end USER and Administrative screen. Added custom attributes for both reconciliation and provisioning. Created password policies in AD,OID, Customized the AD and SUN LDAP User Form on the basis of Roles like Full-time and Contractor enable and Disable Feature of the Windows Component. Configured adapters in Oracle Virtual Directory to communicate with Active Directory. Developed Entity, Prepopulate, Process task adapters to support the work flows. Configured SSO for EBS and Agilent employee portal applications. Installing Oracle Virtual Directory and Oracle Access Manager with Active Directory as configuration and policy stores and User store as Oracle Virtual Directory. Knowledge transfer to team members provided ongoing security related support for all security milestones during different phases. 24/7 Production support Troubleshooting and analyzing the root cause of any issue.

TRAININGS

SAP GRC 10.1 and 12.

Timeline

Consultant

Pixie Services
2025.12 - 2026.05

Senior consultant

TCS
2022.11 - 2025.12

GRC Consultant

M&S Consulting Pvt Ltd
2020.03 - 2022.08

Assistant Consultant

HP
2015.04 - 2020.03

B.Tech -

JNTU University
Karunakar Reddy