Professional Documents
Culture Documents
Arun Badam: SAP Security & GRC Consultant
Arun Badam: SAP Security & GRC Consultant
Arun Badam: SAP Security & GRC Consultant
Mobile : 8328013807
Email :arunbadam2607@gmail.com
https://www.linkedin.com/in/arun-badam-b48136158
Have 2+ Years of experience in SAP Security R/3 / ECC 6.0 and GRC 10.1 and ICS audit. This includes
Client Interaction and working with different teams (functional, ABAP & Basis) with various support
activities. Extensive experience in SAP Security Administration, Authorization& GRC Access Control
10.1.
TECHNICAL SKILLS:
▪ User administration involving creating users, modifying users, copying users, deleting users,
assigning roles & profiles using SU01, Mass User Maintenances with the help of SU10.
▪ Day to day User management, role management and transport management activities.
▪ Used CUA to maintain users (Creation, deletion, locking etc.)
▪ Monitoring the critical transaction codes and ensures that they are assigned to the concerned
users only.
▪ Good working knowledge on Tables like AGR*, USR* to provide the solutions based on the client
requests.
▪ Extensively used SU53, ST01 & SUIM to assign missing authorizations to the users.
▪ Worked on role administration, modification in roles based on requirement
▪ Expertise in restricting Reports access for a user by using S_DEVELOP & S_PROGRAM.
▪ Creating and maintaining User groups with SUGR for easy user administration.
▪ Involved in YEC(Year end) and MEC(Month end) activities.
▪ Connection and disconnection of SAP system from GRC including testing the whole scenario.
▪ Analysing the SOD Conflicts at User level and Role level by using Access Risk Analysis (GRC 10.1).
▪ Determine and report if any risks will be introduced by simulating the addition of transactions,
Role, or Profile to a User ID by using GRC ARA.
▪ Mitigation and remediation of users and roles for SOX using User/Role Analysis in ARA.
▪ Producing SOD Analytical Reports (both Summary and Detail) against Users, User Groups, Roles and
Profiles using ARA.
▪ FF governance, Role Upload, ORU/ User group creation and mapping, Functional area creation etc.
in GRC.
▪ Scheduling Ad-hoc jobs in GRC for user and role sync, critical action/ critical permission, etc.
▪ Providing Emergency access to functional, technical & audit team members using EAM.
▪ Creating Firefighter IDs and assigning the Firefighter IDs to Owners and Controllers.
▪ Having knowledge on troubleshooting issues related to GRC request by analysing the root cause via
t-code SLG1.
▪ Worked on aligning important security parameter Changes, default users, default SAP_ALL &
SAP_NEW profiles.
▪ Working on Audit Issues created by External Auditors.
▪ Involved in Audit Interviews with External Auditors.
▪ Operational Monitoring of various controls.
▪ Worked on an activity to maintain illegal passwords in table USR40 to have the system stable
(prevent system for Bruce – Force attacks).
▪ SOD Checks – Monitored users having High & Critical access – Took action to mitigate & remediate
users to keep the SAP system secured.
▪ Monitored Firefighter Usage Controls
▪ Monitored usage & logging of critical tables & client opening for direct changes.
▪ Monitored users having critical, limited allowed access to important actions & permissions.
▪ Critical SAP Support Issues.
▪ Risk Analysis of Users having SOD Conflicts.
Work Experience
Project details:
Designation : SAP GRC Consultant
Client : E.ON
Duration : Jan 2020 – present
Project details:
Designation : SAP Security & GRC Consultant
Client : Philips
Duration : Aug 2018 – Dec 2019
Educational Qualifications
Personal Skills
Personal Information