Veena Krishne Gowda
SAP Security and GRC consultant
Bangalore,KA
Summary
Experienced SAP, Security, and GRC professional with over 9 years of hands-on experience managing user roles in ECC and S/4 HANA environments. Proficient in role design, catalog creation, and Fiori group development. Skilled at leading GRC implementation projects and driving role redesign initiatives to support S/4 HANA transition. Committed to improving risk management strategies, ensuring compliance, and optimizing operational processes for efficiency.
Overview
9
9
years of professional experience
2016
2016
years of post-secondary education
1
1
Certification
Work History
Package Specialist
IBM India
09.2022 - Current
- Develop roles in ECC and S/4HANA, including SAP Fiori catalogs and groups for Launchpad access.
- Conducted multiple workshops with key business leads and process owners to gather functional requirements, establish role design, and map user-role assignments for UAT, dry run, and Go-Live across business services.
- Implemented a master and derived authorization role matrix globally using S/4 roles structured around SoD-free business roles, technical roles, and enabler roles.
- Collaborated with business stakeholders to review and refine GRC rule sets based on operational needs and risk compliance.
- Deployed a centralized ARM (Emergency Access Management) workflow strategy to manage elevated access securely and efficiently.
- Provide user support solutions for security-related issues, troubleshoot authorization errors, and configure GRC modules.
- Lead GRC configuration activities, conduct regular user access reviews, and audit documentation.
Consultant
EY GDS
09.2019 - 08.2022
- Designed, built, and tested roles for ECC S/4HANA landscapes, including Fiori Launchpad roles—backend, frontend security using catalogs, and groups.
- Implemented GRC Access Control: conducted access risk analysis, configured workflows (ARQ, EAM, ARA), managed SoD rule sets, and implemented mitigation controls.
- Role redesign initiatives to resolve SoD conflicts, and optimize existing ECC roles ahead of the S/4 migration.
- Coordinated with business process teams to translate requirements into secure role designs.
- Performed mass user operations, maintained role profiles via SU01/SU10, and generated transports for testing and production.
- Conducted periodic user access reviews, and generated audit-ready compliance reports.
Application Developer
IBM India
04.2016 - 09.2019
- Managed user and role administration in ECC and BW landscapes; created and maintained derived, composite, and global roles via PFCG.
- Applied SU24 to adjust check indicators and fine-tune authorization objects; used SU53 and ST01 for troubleshooting missing authorizations.
- Supported SOX compliance audits and executed security controls in coordination with audit teams.
- Documented processes, policies, and technical designs for SAP security procedures and user provisioning.
Education
Bachelor Of Engineering - Information Science
Dayananda Sagar College Of Engineering
BangaloreSkills
SAP Security
undefinedCertification
C_SEC SAP Certified Associate - Security Administrator - March 2025
Timeline
Package Specialist
IBM India
09.2022 - Current
Consultant
EY GDS
09.2019 - 08.2022
Application Developer
IBM India
04.2016 - 09.2019
Bachelor Of Engineering - Information Science
Dayananda Sagar College Of Engineering
Similar Profiles
Rumana SenguptaRumana Sengupta
Senior Technical Consultant at IBM IndiaSenior Technical Consultant at IBM India
Tom ChackoTom Chacko
Customer Relationship Manager at IBM IndiaCustomer Relationship Manager at IBM India
Gangappa BagaliGangappa Bagali
TRIRIGA Application Developer and Tester and CAD Technician at IBM IndiaTRIRIGA Application Developer and Tester and CAD Technician at IBM India
Shargunapandiyan JanaganShargunapandiyan Janagan
Java Full Stack Developer at Cuteweb SolutionsJava Full Stack Developer at Cuteweb Solutions
Madhan A KMadhan A K
Product Security Expert / Security Researcher at Intel CorporationProduct Security Expert / Security Researcher at Intel Corporation