Summary
Overview
Work History
Education
Skills
Certification
Disclaimer
Platformsworked
Timeline
Generic
Vinod Kumar Dadi

Vinod Kumar Dadi

Hyderabad

Summary

8.3 years of experience in Information security, ITGC controls, SOX testing, Identity and Access Management and related functions such as IT audits. Good knowledge in conducting HPA/Non HPA user Access reviews and implementing mitigation plans for gaps. Worked extensively on SAP application as security and Basis consultant. Looking forward for a challenging and competitive work atmosphere leading to a professional experience where my skills, talents and abilities will be utilized to the fullest for mutual benefit.

Overview

8
8
years of professional experience
1
1
Certification

Work History

Senior Engineer

Callaway Digitech
07.2022 - Current
  • Reviewing and testing for segregation of duties (SOD) and accessing control in application to ensure compliance with SOX
  • Performing review and testing IT controls such as incident management, change management, segregation of duties & data integrity
  • Conducting and assisting in post audits to determine if corrective action has been taken
  • Performed testing for various in-scope SAP Applications like SAP ECC and SAP GRC
  • Focus areas include ITGC testing, evaluating controls across different SAP Systems in areas like User Termination, User Creation, SOD (Segregation of Duties), Access Reviews, Privilege access, Change Management, Job scheduling, and Backup Operations
  • Coordinating with IT and Business Management on issues remediation, process and control improvements
  • Conducted walkthroughs with control owners, documented audit findings and executed control testing’s
  • Performed audit of User Access Reviews & Password configurations
  • Examined the effectiveness of controls by testing the selected samples for a period based on different testing strategies

Senior Analyst

TCS
07.2021 - 05.2022
  • Performing data analysis and researching within the SAP systems and interpret data to strategically support business needs
  • Reassessing the controls and deficiencies and retesting all the identified key controls within SOX guidelines
  • Performing SAP audits and conducting pre and post SAP implementation reviews
  • Assessing IT control elements to mitigate IT risks regarding the confidentiality, integrity, and the availability of business information
  • Assisted in preparing the audit scopes, report findings, and presented recommendations for improving data integrity and operations
  • Performed testing of IS controls for validating the design and operating effectiveness, and ensured availability, accuracy, and security
  • Performed IT general controls testing related to logical access and change management
  • Performed internal audit for Access reviews for Highly privileged user accounts (HPA) and Non-highly privileged user accounts (non-HPA) for applications
  • Provisioning / De-provisioning access for the users in Active directory groups
  • All internal control standards are maintained, including the timely implementation of internal & external audit points together with any issues raised by external regulators
  • Performing routine audits (quarterly, semi-annual and annual audit) of company internal controls to mitigate risk
  • Performed risk-based audits of IT general controls (access control, change management, and IT operations) and application controls
  • Performed business process testing of controls around access provisioning, user security and segregation of duties in the SAP and GRC systems

Senior Associate Consultant

Infosys
04.2018 - 07.2021
  • Working on Sox audit project for organization as an Internal auditor
  • Working as SOC1 and SOC2 Reports
  • Working on Testing general Controls
  • Performed Sox compliance Audit and have assisted IT Support audits for Global Clients
  • Identification of risks by testing the controls (ITGC), performing gap analysis, administration of the execution team
  • Performed internal audit for Access reviews for Highly privileged user accounts (HPA) and Non-highly privileged user accounts (non-HPA) for both applications and databases
  • Identifying and testing on SAP application
  • Performed Quarterly HPA, Semi-annual HPA, User creations, User Terminations, User access Reviews, Password configurations
  • Manage remediation of un-identified/un-authorized access deficiencies, mitigate risks with the help of Application teams
  • Support, audit and client engagements coordinate the collection, review and submission of Information Security deliverables and coordinate the remediation of audit concerns
  • Mentoring and guiding team members on the overall process
  • Gathering requirement from client and assigning work to team member
  • Testing and Implementing ITGC controls and Application controls
  • Maintain and update processes SOP and procedures to support the team
  • Perform other duties as may be assigned by management
  • Execute daily, weekly checks to ensure access is terminated for exited users
  • Attending walk-throughs for ITGC and Access reviews
  • Documenting work papers
  • Worked as third-Party risk assessment to different Vendors and suppliers

Associate Professional

Infosys
07.2016 - 03.2018
  • Roles Upgrade
  • Analysis of the existing Z - authorization objects to be replaced
  • Creation of Analysis Authorizations and addition of the same in all Biz and IT roles
  • Unit testing with business
  • Production support for Go-Live
  • Participate in the creation & execution of the GRC Test Plan
  • Creation of new roles
  • Creation of PFCG Roles and testing the same with Functional Consultants during Unit Testing
  • Mass User Creations for Performance Testing
  • Regression testing with business
  • Creation of custom auth object and using the same for controlling auth in CRM UI
  • Mapping of PFCG role with the Business role

Education

M.Tech -

JNTU Hyderabad
01.2016

Skills

  • Recognized for efficiently handling the GRC IAM (Identity Access Management) independently as playing a lead role
  • Got appreciations directly from clients during the status calls in solving compliance control issues which were critical to the business
  • Worked in IAM toolkit testing process
  • Recognized for Spot Award in last Quarter
  • Got appreciations from Manager for managing the TASKS and team in his absence

Certification

CISA – Certified Information Systems Auditor

Disclaimer

I hereby declare that all the above-mentioned details are true and correct to the best of my knowledge.

Platformsworked

  • SAP
  • MS Excel
  • MS Word
  • MS PowerPoint

Timeline

Senior Engineer

Callaway Digitech
07.2022 - Current

Senior Analyst

TCS
07.2021 - 05.2022

Senior Associate Consultant

Infosys
04.2018 - 07.2021

Associate Professional

Infosys
07.2016 - 03.2018

M.Tech -

JNTU Hyderabad

Similar Profiles

  • Kajal Shaw

    Kajal ShawKajal Shaw

    Accounts Payable Specialist at Callaway DigiTechAccounts Payable Specialist at Callaway DigiTech

    View Profile
  • Braulio Daniel Villanueva

    Braulio Daniel VillanuevaBraulio Daniel Villanueva

    Shipping and Receiving Manager at Digitech Dental RestorationsShipping and Receiving Manager at Digitech Dental Restorations

    View Profile
  • Chetan Manjunath

    Chetan ManjunathChetan Manjunath

    Engineering Manager at Surya Digitech Pvt LtdEngineering Manager at Surya Digitech Pvt Ltd

    View Profile
Vinod Kumar Dadi