RESUME

Pavan Kumar
Email
pavankumark74@gmail.com
SAP Security Consultant
Contact : +91-9985851564
____________________________________________________________________________________

About Myself

Having 3.6 years of overall experience in maintenance of SAP security for various environments
like R/3, BI, HR and Governance Risk and Compliance (GRC).
Experienced in the areas of User administration, Role management, development,
troubleshooting, testing in Security environment.
Currently deployed in sap security Implementation/Support project.

Organizations worked for:

Working with Deloitte, Hyderabad as a Security Consultant since Sep 2015 to till date.
Worked in Wipro, Hyderabad as a Security Consultant since May 2013 to August 2015.
Worked in Global nest technologies, Hyderabad as an Associate consultant since Nov 2012 to
May 2013.

Technical Skill Set:

ERP
Compliance tools

:
:

SAP ECC ,BI,HR

Governance Risk and Compliance 10.1

SAP Knowledge Repository:

Experience includes analysis, development, and maintenance of SAP Security in SAP R/3, ECC
&GRC (Governance Risk and Compliance).
User Administration - Includes user creation, deletion, changing user access for different systems
and environments, Mass user administration.
Experienced extensively in using PFCG in creating and modifying Single Roles, Composite roles and
Derived roles.
Working on role changes as per the business requirement.
Maintenance of Derived roles based on the Organizational Values differentiation.
Roles Transportation.
Making user administration easier by using User Groups.
Maintenance of authorization objects for transactions.
Effectively analyzed trace files and tracked missing authorizations for users access problems.

Expertise in Troubleshoot users access problems.

Proficient knowledge on USR* &AGR* tables.

Experienced extensively in User Information System.

Worked on various ticketing tools.
Creation of authorization groups as per the business requirement.
Defining security policies & procedures for the best of security for the client business.
Creation and maintenance of analysis authorizations.
Troubleshooting BI authorization issues.
Good understanding on BI authorization objects.
Role designing in BI system.

Educational Qualification:

B.Tech from Madina Engineering College, JNTU-A.

SAP Professional Experience

Project #3:
Project Name
Client
Designation
Duration

BASF
BASF
SAP Security & GRC Consultant
Sep 2015 till date.

Client profile:
BASF is the largest chemical producer in the world and is headquartered in Ludwigshafen, Germany. The
BASF Group comprises subsidiaries and joint ventures in more than 80 countries and operates six
integrated production sites and 390 other production sites in Europe, Asia, Australia, America and Africa.
Its headquarters is located in Ludwigshafen am Rheine (Rhineland-Palatinate, Germany). BASF has
customers in over 200 countries and supplies products to a wide variety of industries. Despite its size and
global presence, BASF has received relatively little public attention since abandoning its consumer product
lines in the 1990s.
At the end of 2015, the company employed more than 112,000 people, with over 52,800 in Germany
alone. In 2015, BASF posted sales of 70.4 billion and income from operations before special items of
about 6.7 billion. The company is currently expanding its international activities with a particular focus on
Asia. Between 1990 and 2005, the company invested 5.6 billion in Asia, for example in sites near Nanjing
and Shanghai, China and Mangalore in India.
Support / Implementation:

User Administration activities.

Mass locking and unlocking of users while doing special activities.
Created CATT scripts for user creation and password resets.
Role Administration and ongoing maintenance.
Maintaining authorization objects to custom transactions as per the business requirement.
Configuring SU24 for custom transactions as per the business requirement.
Involved in annual User Access Review.
Performing risk analysis for the roles to validate roles are risk free.
Taking necessary action on identified risk by coordinating with the Security SME from the client end.
Downloading authorization objects & texts from the backend systems.
Troubleshooting authorization issues.
Handling new business requirements and coordinating with functional teams for unit level and
integration level testing.
Mass user administration.
Documenting the procedural guidelines which are relevant to security.
Tracking authorization issues using ticketing tool.
Sending status reports to management on weekly basis.

Responsible for providing support to IT Users and Business users in their day to day issues.

Created and maintained Training user ids.

Ongoing Support and Role Changes.

Scheduling PFCG_TIME_DEPENDENCY.
Effectively analyzed trace files and tracked missed authorizations for users access problems and
inserted missing authorizations manually.
Transporting Security changes from development systems to quality and production servers.
Create, maintain, lock and unlock users and change passwords.
Create and maintain simple roles and derived roles.

Maintain transaction selections and authorization data in roles.

Create and Transport roles and Analysis Authorizations.
Analyzed SU53 error checks during testing and to find missing authorizations and transaction
codes.
Activating Application Component.
Updating Rule set as per the business requirement.
Creation of custom risk ids & functions as per the business needs.
Defining Access Control owners.
Creation of Mitigation controls as per the Organization Risk management strategy.
Designed GRC Roles.
Configuration of EAM Application.
Maintained parameters specific to EAM application.
Creating FF ids, Owners, Controllers as per the defined strategy.

Project #2:
Project Name
Client
Designation
Duration

:
:
:
:

Isuzu engines
Wipro
SAP Security Consultant
May 2013 August 2015

Client profile:
Engines are the heart of Isuzu Motors Limited, an industry leader of over 20 million diesel engines
worldwide. Isuzu products, noted for reliability and durability, have stood the test of time.
Today, home base for the PowerTrain Division of Isuzu Motors America, LLC is Plymouth, Michigan.
Thanks to the hard work and determination of this team, we are proud to offer more than 30
different engine models with power ranges beyond 500 hp, for use in both on- and off-road
applications. And, with a growing network of master distributor locations and over 300 authorized
service dealers in North America, it is easy for any customer to obtain the most advanced, reliable
diesel engines in the world. Just ask our customers. They know they can count on us for much more
than unparalleled engine performance.
Deliverables:
Perform user administration (creating, changing, maintaining, deleting and assigning roles).
Authorization trouble shooting in R/3.
Find out missing Authorizations using SU53 report from the user.
Configuring su24 to follow standards of SAP.
Led the Knowledge Transfer sessions and effectively trained the production support team.
Worked on security tickets and satisfied the client by reducing the ticket volume to a manageable
number.
User Administration - Includes user creation, deletion, changing user access for different systems
and environments, Mass user administration.
Experienced extensively in using PFCG in creating and modifying Single Roles, Composite roles and
Derived roles.
Creation and maintenance of analysis authorizations.
Troubleshooting BI authorization issues.
Good understanding on BI authorization objects.
Role designing in BI system.
Project #1:

Project Name
Designation
Duration
Client profile:

:
:
:

Philip Morris USA

SAP Security Consultant
May 2013 August 2015

Philip Morris & Co., Ltd. was established in 1847 when our namesake opened his first London
tobacco shop and began making tobacco products that royalty and the workingman alike would
enjoy.More than 150 years later, were the leading manufacturer of cigarettes in the United States
(a position weve held since 1983). Headquartered in Richmond, VA, we now produce some of the
most well-known brands in the consumer products industry.
Deliverables:

Position based role assignment and PD profile assignment.

Knowledge on implementing structural authorizations.
Mapping personnel numbers with SAP login id.
Knowledge on HR authorization objects & basic info types.
Troubleshooting HR authorization issues.