Summary
Overview
Work History
Education
Skills
Timeline
Generic
Ravi Teja Rao

Ravi Teja Rao

HYDERABAD

Summary

SAP Security & GRC Consultant with 4+ years of experience in SAP S/4HANA security, SAP Fiori authorizations, SAP GRC Access Control, and SAP Identity Access Governance (IAG). Experienced in access provisioning, SoD compliance, audit support across implementation and support projects.

Overview

5
5
years of professional experience

Work History

SAP Security & GRC Consultant

Oregono Technologies Pvt Ltd
06.2023 - Current
  • Responsible for day to day technical support and resolution of security issues, trouble shooting R/3 security problems
  • Good Exposure on /UI2/FLPD_CONF (Fiori Launchpad Designer (cross-client) and/UI2/FLPD_CUSTFiori Launchpad Designer (client-specific).
  • Integrated SAP IAG with IAS and IPS to enable centralized identity lifecycle management and secure authentication.
  • User Administration: User creation, change, Lock/Unlock, Reset passwords
  • Resolving authorization issues from the users analyzing the authorization issues using SU53 and ST01 and providing the solutions to the users
  • Creation of new users, deletion, lock/unlock, assignment of roles & analysis of logs
  • Knowledge on HR Security
  • Maintaining single sign on for the business users
  • Expertise in using Profile Generator (PFCG) for Creation of roles (Single, Composite, Derived) as per the SOD matrix by making sure users do not get more authorizations than needed to perform their tasks
  • Users creation, validity extending and add/remove roles and terminating users for contract employees through NWBC
  • Addition, Removal of Transaction Codes, authorizations, authorization objects by modifying existing roles based upon change request & Transportation of roles as per business requirement
  • Role administration like assigning to users based on request
  • Assigning Authorizations to Users and Roles
  • Maintaining security parameters (auto log-out, password length and expiration)
  • Running HR trigger for delegation and for user creation for permanent users
  • Analyzing the missing authorizations through SUIM & analyzing Role, Transaction code, Authorizations, User related queries using SUIM
  • Good Knowledge on how roles and authorizations work with Fiori.
  • Communicating with the business about the risky transactions and the authorization objects while developing the new roles
  • Worked on SAP Could Application SAC, IBP and BTP User adminis
  • Trouble shooting the Fiori Front & S4 HANA Back end servers.
  • Experience of creating security concept in a SAP Fiori environment; knowledge Fiori catalogues and Fiori groups
  • Good Exposure on STAUTHTRACE & ST01to trouble shooting the authorization issues.
  • Trouble shoot the Back end S/4, Front end Fiori authorization issues depending on requests.
  • Supported S/4HANA authorization troubleshooting using SU53, STAUTHTRACE, and Fiori app error analysis.

SAP Security & GRC Consultant

Avantha Technologies
03.2022 - 04.2023
  • Experienced in user creation in Success Factor Cloud through IAS
  • Performed LMS admission role access to users on demand
  • Experienced lock and Unlock and extended user validity, day to day permission level access to users
  • Success Factor Users Firefighter activation in success factor and maintained validity as per the approval
  • Managed and created new users, groups and profiles
  • User Management, User Tracing and Troubleshooting
  • Resolving missing authorization issues by using su53, ST01 and SUIM
  • Worked on Authorization groups
  • Role design, development and assignment (PFCG, SU01)
  • Used Transaction ZPA_GRC_FUTURE_DATE to creation for permanent user through HR triggering
  • Authorization checks using transaction SU24 and maintained check indicators for Transaction codes
  • Locking and unlocking for post and pre PVT activities while winter patching
  • User Administration – User ID creation, modification, termination, password reset, lock/ unlock and checking validity, Providing the critical authorizations as per the requirement and tracing the user activities, Creating user groups as per the requirements
  • Creating Authorization Groups and assigning them to the Authorization Object
  • Worked on Mass user activities using SU10
  • Firefighter creation in sap for production systems
  • Running HR trigger for delegation and for user creation for permanent users
  • Experience in handling the business user’s creation and trouble shooting in portal services
  • Creation and Deletion of users from the central System
  • Identified existing SOD violations under risk analysis and remediation including evaluation of users & roles
  • Supporting GRC Development and Production systems
  • User creation in NWBC using new user account form or access request creation form and change user request form
  • Run Risk analysis on user level and role level
  • Firefighter assignment to FF ID
  • Controller assignment to FF ID
  • Owner Assignment to FF ID
  • Maintain role owners in Access control owners (NWBC)
  • Setup FFIDs
  • Working on high priority tickets and closing them within SLA

SAP Security Consultant

Avantha Technologies
07.2021 - 11.2021
  • Run Risk analysis on user level and role level
  • Maintaining single sign on for the business users
  • Super Users ID’s adding roles and maintaining OSS messages
  • Assigning appropriate roles to the userbase requests and approvals
  • Troubleshooting R/3 security problems by using different scenarios such as system trace and missing authorizations
  • Performed reconciliation of user master record and roles
  • Creating and modifying Single, Composite and Derived roles as per the change request
  • Profile Generation authorization maintenance via SU24
  • Worked with security related tables and reports
  • Extensively worked with SU01, SU10, PFCG, SU53, ST01, SUIM, SU24, SE54 and PFUD Transaction codes
  • Transported the generated roles and profiles using SE09/SE10
  • Performed User and Role level risk analysis to find the existing SOD violations for users and roles using RAR in GRC 5.3 Access control
  • Worked with SAP GRC Super User Privilege Management, Defining owners and controllers to FF ids, Assigning FF ids to FIRE FIGHTERS, Downloading various security reports from RAR and SPM
  • Working experience in administration of Fire Fighter ids, creation and maintenance of Fire Fighter User IDs for critical authorizations, Performed simulation, Remediation and mitigation of risks in RAR

Education

Btech - Computer Science Engineering

Glocal University
01.2021

Skills

  • SAP S/4HANA Security
  • SAP security administration
  • SAP Fiori Security
  • SAP Identity Access Governance (IAG)
  • SAP GRC Access Control (ARM, ARA, BRM, EAM)
  • ECC
  • Security troubleshooting
  • Segregation of Duties (SoD) Analysis & Risk Mitigation
  • Firefighter / Emergency Access Management
  • SAP IAS & IPS Integration
  • SAP BTP Security & Role Collections
  • Audit,
  • User administration
  • GRC Access control

Timeline

SAP Security & GRC Consultant

Oregono Technologies Pvt Ltd
06.2023 - Current

SAP Security & GRC Consultant

Avantha Technologies
03.2022 - 04.2023

SAP Security Consultant

Avantha Technologies
07.2021 - 11.2021

Btech - Computer Science Engineering

Glocal University

Similar Profiles

CREATE PROFILE
Ravi Teja Rao