PRAMOD PATIL

• Administering SAP GRC Access Control (10.1 & 12.0) modules - Access Request Management (ARM), Emergency Access Management (EAM/FFID), Risk Analysis & Remediation (ARA)
• GRC Rulebook Maintenance – full ownership of risk/function mapping, new TCode updates, and SoD coverage refinement.
• BRF+ Workflow Maintenance – updated workflows for role approval matrix and approver delegation.
• User Administration – creation, modification, transfers, and revocation through GRC and SU01, ensuring clean access.
• Role Management – creation of Master, Derived, Single, and Composite Roles based on business functions and segregation.
• Authorization Maintenance – handled object-level updates, value adjustments, and integration with business process changes.
• SoD Analysis – proactively performed risk analysis before granting access, eliminated critical conflicts from user requests.
• FFID Lifecycle Management – creation, assignment, quarterly reviews, controller mapping, and audit signoffs from CIO.
• Mass Role Updates – experience with PFCGMASSVAL for large-scale role changes and authorizations update.
• Mitigation Controls Configuration – created and maintained strategy-based mitigations for unavoidable conflicts.
• Background Job Scheduling in GRC – including risk sync jobs, repository sync, user sync, and analysis reporting.
• GRC Reports Handling – extracted and analysed usage reports, TCode history, FFID logs, and audit evidence.
• Tightened Debug/Access Controls – monitored debug access and elevated authorization changes through proper governance.
• License Optimization Support – familiar with USMM_OLD and supported license reviews/audits.
• S-User ID Creation – managed OSS Users, SAP Router access, and support connection activities.
• Business Support: - daily resolution of access and role-related issues within SLA timelines.
• Cross-Module Support – extended security and access advisory across COE functions, portals, and SAP/non-SAP systems.
• Provided secure access, guidance to approvers on risk-prone Access.
• SSO tiles and launchpads: - ensuring that users had quick, secure, and role-based access to relevant applications.
• Administered user access provisioning across multiple platforms through a centralized approach.
• SAP Ariba: Created Display and Transactional IDs, assigned relevant roles, and linked access to SSO tiles.
• Salesforce (SFDC) & CRM Portal: Managed full user lifecycle – ID creation, role assignments, transfers, and access clean-up.
• E-Audit, Dealer & Vendor Portals (BTP): Created and locked IDs for employees and customers, managed access mapping based on roles and business needs.
• EasyDMS, FieldAssist: Provisioned secure access through integrated SSO experience.
• Managed IDP (Identity Provider) and IAS (Identity Authentication Services) to streamline application access across cloud environments.
• Maintained and assigned application roles in SAP BTP Cockpit, ensuring users had appropriate and secure access across various cloud applications.
• Provided end-to-end access support and troubleshooting for all platforms connected via SSO—eliminating fragmented role maintenance.
• Ensured SSO compliance and business continuity, particularly during rollouts, onboarding, and application changes.
• Delivered training and documentation for SSO access usage and helped business users adopt new authentication workflows seamlessly.
• Primary SPOC for ITGC (Internal/External Audits) and IFC (Internal Financial Controls) audits covering all SAP Modules (SD, FICO, PPQM, MM, Security, GRC Access Control, and BASIS compliance areas).
• Handled end-to-end audit activities including evidence gathering, FFID lifecycle management, GRC logs, user access certification, and remediation planning.
• Successfully closed multiple audit points with zero major findings, contributing to improved compliance and ITGC scorecards year after year.
• Ensured timely Quarterly FFID Review, log validation, and controller sign-off with detailed reporting to CIO and Internal Audit teams.
• Conducted User Access Review (UAR) across the enterprise, eliminating cross-functional violations and unused roles.
• Provided risk-based guidance to approvers during role/TCode approvals, helping them avoid approving high-risk transactions.
• Regularly supported external audit teams with required access logs, mitigation controls, audit walkthroughs, and response justifications.
• Maintained and continuously updated the GRC Rulebook, ensuring that each new or custom-developed TCode was mapped correctly to avoid false-negative SoD analysis.
• Partnered with Internal Audit Head (IAH) to improve risk coverage in GRC Function definitions, further supporting fraud prevention and control enforcement.
• Authored and standardized over 15+ practical SOPs for business-critical processes related to SAP ID Lifecycle, FFID Usage, SAP Support Connection, Role Creation, Access Risk Mapping, and Change Request Approvals.
• Developed SOPs in a user-friendly, training-manual format, helping new IT/business users understand and follow process discipline without additional training.
• Acted as the single-point coordinator for all BASIS operations and AMS Partner consultants.
• Performed SAP profile parameter maintenance using RZ10/RZ11, memory optimization, and system performance tuning.
• Managed RFC configurations and troubleshooting, ensuring seamless integration between SAP systems.
• Oversaw Transport Management System (TMS) – created, moved, and monitored transport requests across landscapes.
• Configured email functionality (SCOT), handled job scheduling, and monitored background activities.
• Conducted system health checks, analysed slow performance issues, and resolved locked or long-running sessions.
• Executed lock entry checks, monitored failed updates, ABAP dumps, spool issues, and system logs.
• Managed Cloud Connector and Subaccount setup, enabling secure connectivity between SAP BTP and on-prem systems.
• Performed client opening/closing (SCC4), system modifiability (SE06), and table updates via SM30/SE16N.
• Managed transaction-level locking/unlocking (SM01_CUS) and authorization updates in HANA Studio.
• Created and supported queries through SQVI for COE teams and consultants.
• Generated workload analysis reports using ST03N and shared performance metrics with key stakeholders.
• Led and coordinated Disaster Recovery Drill (DR Drill) with successful CPI/API integration validations.
• Monitored SOST to ensure business-critical communications and outputs were not blocked or delayed.

Key Projects & Contributions (SAP GRC / Security / Access Management):

• SAP Demerger & S/4HANA Implementation Support (2015–2017): Led the SAP system demerger between CGL (CG Power) and CGCEL—successfully implemented new plant codes, PO/invoice types, and organization names during a critical 5-day blackout. Appreciated by top leadership including MD, CEO, CFO, CIO & CHRO. Partnered with SAP implementation teams to capture AS-IS business processes across plants, logistics, and sales offices. Delivered SAP S/4HANA training to 36+ CnF users by organizing regional training hubs.
• Critical SOD Risk Elimination Project (2017–2019): Role: Project Owner | Recognition: CEO Pride & Glory Award + 2 Quarterly Top Achiever Awards. Eliminated over 40,000+ critical SOD risks from the SAP landscape without disrupting business operations. Independently drove risk analysis, remediation, rulebook updates, and role cleanup—without any consultant or partner support. Achieved Zero-Critical Risk status in the system, strengthening compliance posture and audit readiness.
• Dealer Portal Implementation on SAP BTP (2017–2019): Role: CTM (User Access & Process Design). Conducted field visits to understand distributor requirements and contributed to requirement gathering and testing. Supported UAT and Go-live as part of the core team. Post-Go-live, customers could place orders and check credit/invoices without sales team intervention—reduced manual dependency significantly.
• SSO & Centralized Access Integration (2019–2020): Role: Project Driver & Access Manager. Led SSO implementation using SAML configuration for over 50 business applications (excluding SAP GUI). Designed, configured, and deployed tiles and access roles for all Non-SAP Applications. Centralized access control across portals, improving security, traceability, and user experience.
• Self-User Maintenance App (2021): Platform: SAP FIORI – BTP | Impact: Reduced Support Dependency. Designed and implemented a Self-Service Portal to allow users to unlock/change their SAP ID passwords independently. Handled complete app lifecycle: process flow, design, training, SOP, and rollout. Reduced dependency on IT and improved ID management efficiency.
• User Access Review (UAR) & UAI Clean-up (2021–2022): Role: Sole Contributor | Savings: INR 35 Lakhs | Award: Qtrly Top Achiever Award. Conducted comprehensive UAR/UAI across SAP systems to align user access with actual job roles. Cleaned up cross-functional authorizations and implemented correct roles with minimal business disruption. Delivered what was originally planned for consulting partners—saved approx. INR 35 Lakhs.
• Custom Z-Authorization Control for Sales Office Segregation (2023): Module: SD – Sales Order Authorization. Initiated and led development of a custom 'Z' object to segregate access to sales orders process based on sales office. Prevented cross-regional price visibility and reinforced data confidentiality and control. Enhanced compliance with regional authority guidelines in the sales process.
• SAP License Optimization & Reallocation (Jun–Oct 2024): Led the SAP license reallocation initiative by analysing TCode usage and transaction behaviour to differentiate between Professional and Productivity users. Successfully transitioned more than 200 SAP IDs from Professional to Productivity licenses without disrupting operations—unlocking significant cost savings and improving license compliance.
• Email-Based Approval for PR/PO & Scheduling Agreements (Mar 2025): Role: Project Driver. Implemented a real-time, email-triggered approval mechanism for PRs, POs, and Scheduling Agreements, enabling managers to approve directly from email (mobile or desktop) without logging into SAP. Reduced approval delays, enhanced procurement efficiency, and significantly improved user experience—highly appreciated by senior management.

• Provided end-to-end IT support for Lighting, Appliances, and Export Division.
• Acted as a liaison between CORP IT and business units, ensuring smooth operations of SAP, email, printing, and network services.
• Handled IT procurement of laptops, desktops, workstations, printers, and servers through competitive vendor negotiation.
• Successfully implemented Canon Centralized Printing Solution across CG locations.
• Led Asset Management, Vendor Management, and Contract Management with Finance team support.
• Took initiative to upgrade hardware (desktops, laptops, printers, and networking equipment).
• Participated in the implementation of AD DS (Active Directory) on Windows Server 2008 R2 across the organization.
• Administered Windows Servers, executed data backups, and managed AMC/FMS contracts.
• Assisted business users by resolving SAP Authorization issues via coordination with CORP IT.
• Facilitated SAP issue resolution across MM (Procurement, GRN, SRN, Master Data), SD (Sales Orders, Invoicing), and FICO (Payments, Asset Creation).
• Handled SAP User Management – ID creation, password resets, locking/unlocking.
• Took ownership of SAP Asset Creation and coordinated approvals with Finance.
• Resolved HR application issues such as Leave and Expense Reimbursement workflows.
• Played a key role in implementing an internal New Product Development (NPD) portal to streamline R&D and material approvals. This online solution eliminated paper-based processes and improved approval traceability. Received Quarterly CG SuperStar Award for this contribution.

• Worked on-site at Crompton Greaves Ltd for 10 years, providing comprehensive IT infrastructure support across multiple locations.
• Managed end-user devices, Windows/Novell servers, printers, and LAN/WAN networks to ensure smooth daily operations.
• Handled system installations, configurations, upgrades, and troubleshooting for desktops, laptops, and printers.
• Took charge of data backup/recovery, user administration, antivirus deployment, and IT asset tracking.
• Maintained and supported email servers, networking switches, and routers, ensuring 24/7 availability.
• Acted as FMS Team Lead, supervising vendor engineers, allocating tasks, and ensuring SLA-based resolution.
• Provided first-level support for SAP, coordinated with CORP-IT to resolve SAP-related issues for end users.
• Recognized for commitment, reliability, and long-standing service continuity at the client location.