Karunakar Reddy Sadanagiri

Having 10 + years of IT experience that involves complete Software Development Life cycle from analysis, design, coding, testing & implementation of software applications as SAP Security,Hana Security and GRC Consultant. Strong Experience in understating Segregation of duties and Audit compliance standards. Strong experience with multiple SAP security lifecycles (Analysis, Conception and Implementation Quality Assurance & Tests and Cutover). Excellent knowledge in Central User Administration, SOD, SAP Governance, Risk and Compliance. Configured RFC Connection between the systems in a Landscape. Proficient with MS Word, Excel and PowerPoint. Have excellent communications skills and strong interpersonal skills, ability to interact with end-users, managers and technical personnel. Hardworking, enthusiastic, Self-starter, result-oriented team player with an ability to manage multiple tasks simultaneously in both Onsite and Offshore projects.

• ASSIGNMENT 1: Client: Sanofi (Spain) Duration: Dec 2025 to Till Date. Role: Consultant Work Location: Remote Environment: SAP Security GRC 10.1 &12,S4 Hana, SAP BTP,SAP IAG,SAP IDM,Hana security 6.0, Hana DB, Solman ITSM Incident Manager Created functional specifications and Technical Documents with the offshore team as per the client requirement. Under Risk Analysis (Risk Identification, Remediation, and Mitigation) performed user & role analysis to identify Existing SOD Violations. Managed entire Sanofi UAM Access required for Procurement/Finance teams Involved in Maintenance of Business roles/single/composite roles Troubleshooting any authorization issues SU53/Stauthtrace. Involved in Fire fighter configurations Excellent knowledge of SOX, ISO 27001, Audit issues and SOD issues. Experience in using ARM to configure the workflow for user access review and user Sod review. Handling Incident Management with Servicenow
• ASSIGNMENT 2: Client: CVS Caremark (US) Duration: Nov 2022 to Till Date. Role: Production Support Work Location: TCS Hyderabad Environment: SAP GRC 10.1 &12,S4 Hana, SAP BTP,SAP IAG,SAP IDM,SAP BI/BW, Hana security 6.0, Hana DB, Solman ITSM Incident Manager Created functional specifications and Technical Documents with the offshore team as per the client requirement. Integrated ECC, LDAP system with GRC, Created RFC's and configured required SPRO settings. Involved in Hana security (SSo, Kerberos, Authentication and Authorization process) Role creation/modification/Deletion followed with the ITSM process and moved the roles from Dev/Uat/Prod. Involved in Migration from SAP GRC 10 to 12 Version and created custom changes using SU25. Creation of custom T-Codes and defining sensitivity analysis. Updating rule set analysis. Configured required SPRO settings. Monitored Sync jobs and trouble shoot the issues. Under Risk Analysis (Risk Identification, Remediation, and Mitigation) performed user & role analysis to identify Existing SOD Violations. Risk Analysis for Hana, Fiori Apps. Performed remediation and mitigation against various risks. Experience in creating and assigning FFID's to users who need to perform tasks in emergency situations. Configured Workflow, actions and rules. Troubleshooting any authorization issues SU53/Stauthtrace. Excellent knowledge of SOX, ISO 27001, GDPRAudit issues and SOD issues. Experience in using ARM to configure the workflow for user access review and user Sod review. Handling Incident Management, Requests and Change Management.
• ASSIGNMENT 3: Client: Syneos Health care Duration: March 2020 to Aug 2022 Role: Support. Work Location: M&S Consulting Pvt Ltd Environment: SAP GRC 10.1 &12, ECC 6.0, Hana DB, Service now Incident Manager. Description: Syneos Health (formerly InVentiv Health Incorporated and INC Research) is a American multinational contract research organization based in Morrisville, North Carolina. The company specializes in helping companies with late-stage clinical trials. INC Research acquired inVentiv Health, the parent company of a subsidiary, Syneos, and the resulting company was named Syneos Health They are using SAP GRC for governance, risk, Sox Compliance and Audit for their business operations. Roles & Responsibilities: Created functional specifications and Technical Documents with the offshore team as per the client requirement. Under Risk Analysis (Risk Identification, Remediation, and Mitigation) performed user & role analysis to identify Existing SOD Violations. Performed remediation and mitigation against various risks. Experience in creating and assigning FFID's to users who need to perform tasks in emergency situations. Configured Workflow, actions and rules. Excellent knowledge of SOX, Audit issues and SOD issues. Experience in using ARM to configure the workflow for user access review and user Sod review. Handling Incident Management, Requests and Change Management. Troubleshooting and analyzing the root cause of any issue. 24/7 Production support. Involved in Minor enhancements.
• ASSIGNMENT 4: Client: BP (British Petrolium),UK Duration: Jan 2017 to Mar 2020. Role: SAP Security/GRC Consultant Work Location: HP Environment: SAP GRC 10, ECC 6.0, service now Incident Manager Roles & Responsibilities: Handling Incident Management, Requests and Change Management. Troubleshooting and analyzing the root cause of any issue. Role Creation/Modification using Profile Generator (PFCG). Expertise in resolving Authorization issues by analyzing Authorization Checks. Configured and Implemented GRC Access Control Suite 10.1 Integrated ECC system with GRC, Created RFC's and configured required SPRO settings. Monitored Sync jobs and trouble shoot the issues. GRC implementation, Automation with GRC ARA, EAM, BRM and ARM. Performed Mass Roles import activity using BRM. Under Risk Analysis (Risk Identification, Remediation, and Mitigation) performed user & role analysis to identify Existing SOD Violations.
• ASSIGNMENT 5: Client: Ooredoo Duration: Apr 2015 to Dec 2017 Role: Responsible for minor enhancement and support activity Environment: OIM 9.1.0, OID, OVD, OAM 10.1.0.4,OIA,EBS 11g,Points, Java, JDK, WindowsNT,Weblogic 10.3,Oracle HTTP server. Description: Ooredoo QSC is Qatari multinational telecommunications company headquartered in Doha, Qatar. Ooredoo provides mobile, wireless, wire line, and content services with market share in domestic and international telecommunication markets, and in business and residential markets Roles & Responsibilities: Involved in Setting up of Development environment which includes OIM installation, adapter configuration for AD. Created functional specifications and Technical Documents with the offshore team as per the client requirement. User Provisioning / Groups and Organization Level Provisioning on SUN LDAP and AD with Exchange from OIM, Initial reconciliation done from Trusted Resource of EBS. Developed Complex Approval & Provisioning Workflows. Defined IT resources to establish a connection between OIM and target applications. Designed roles, rules, GUI, workflow routes involving enable-disable user, and audit report, delegation. Customized OIM for the custom branding for end USER and Administrative screen. Added custom attributes for both reconciliation and provisioning. Created password policies in AD,OID, Customized the AD and SUN LDAP User Form on the basis of Roles like Full-time and Contractor enable and Disable Feature of the Windows Component. Configured adapters in Oracle Virtual Directory to communicate with Active Directory. Developed Entity, Prepopulate, Process task adapters to support the work flows. Configured SSO for EBS and Agilent employee portal applications. Installing Oracle Virtual Directory and Oracle Access Manager with Active Directory as configuration and policy stores and User store as Oracle Virtual Directory. Knowledge transfer to team members provided ongoing security related support for all security milestones during different phases. 24/7 Production support Troubleshooting and analyzing the root cause of any issue.