Pragati Sachan

Professionally trained and extensive hands-on experience

1. General SAP Security

2. GRC AC 12.0

3. Fiori security

4 . GRC PC.

Responsible for GRC training systems:

• Configuring GRC components shared settings and Access control specific settings.
• Risk analysis activities: Building Rule set, testing, remediate risks, mitigate risks, creating rules using BRF+ environment and performing risk analysis
• Building and maintaining MSMP workflows
• Business Role Management BRM: Configuring Role management, create single, composite roles and business roles
• Emergency access Management EAM: FFID, assign owner and controller to FFID, maintain reason codes, execute firefighting sessions and monitoring emergency access
• Managed project timelines effectively, ensuring all scheduled deliverables were completed accurately and within stipulated timeframes.

• Extensively used SU53 and SUIM to assign the missing authorizations to the users. Tracing missing authorizations objects using SU53 and recommended appropriate roles for the end users.
• Comprehensive use of Profile Generator to generate roles and assign roles to end users.
• Not completely end to end but have been part of implementation of GRC ACcess control Suite 10.0
• GRC implementation; automation;upgrade experience with GRC ARA , ARM, EAM, BRM and SAP CUA integration with SAP GRC.
• Excellent knowledge of SOX, Audit issues and segregation of Duties ( SoD) issues .
• Under Risk Analysis and Remediation , performed User & Role Analysis to identify existing Sod violations Risk.
• Using ARA produced Analytical Reports on User, User Groups, Roles and Profiles .
• Performed remediation and mitigation against various risks associated with roles and users.
• ARA has simulation features to allow you to assess the impact of potentials remediation activities on the reported conflicts prior to making the actual change.
• Experience in creating and assigning FF ID's and extracting Fire Fighter logs.
• Configured HR trigger provisioning and scheduled background jobs .
• Using SCUL t-code to check the status of distribution of changes to child systems.
  monitoring the list of users having SAP_ALL and SAP_NEW profiles and performing
  cleanup.
• Involved in Minor/major changes activity (Role deletion/role description changes /adding
  single role to composite roles)
• Portal Security: Performed user administration activities such as creating user ids,
  copying user ids, assigning roles, assigning groups etc.
• Successfactor Access
• Collaborated with cross-functional teams to drive process improvements resulting in optimized resource utilization and cost savings.
• Managed project timelines effectively, ensuring all scheduled deliverables were completed accurately and within stipulated timeframes.
• Enhanced GRC program effectiveness by conducting comprehensive risk assessments and recommending mitigation strategies.
• Developed training materials to educate employees on best practices for maintaining compliance with applicable regulations.