Summary
Overview
Work History
Education
Skills
Certification
Languages
Websites
Affiliations
Timeline
Generic

Surakshith Pulusani

Hyderabad

Summary

Accomplished SAP Security/IAM Architect with extensive experience at McKesson, specializing in enhancing security architecture across ERP and cloud applications. Proven expertise in identity management and architectural design has led to significant improvements in compliance management and operational efficiency. Strong interpersonal skills foster effective stakeholder relationships, while adept technical troubleshooting has streamlined audit processes and mitigated risks. Recognized for collaborative project execution, consistently driving initiatives to successful completion.

Overview

16
16
years of professional experience
1
1
Certification

Work History

SAP Security / IAM Architect

Mckesson
Dallas
02.2018 - Current
  • Responsible for Designing and Maintaining the Security Architecture for SAP ERP landscape, IAM applications like Saviynt/SailPoint, Workday, GRC, Cloud apps like Ariba/Concur to manage Centralized provisioning, De-provisioning, Transfers, Terminations, SOD Conflicts & Automated User access Reviews
  • Drive Strategy, Design, Implementation and Roll out Discussions for McKesson ERP and cloud applications
  • Actively working on aligning McKesson landscape with Audit controls, resolve and streamline integration issues between AWS Azure, Saviynt IAM, SailPoint, GRC, SAP & Other ERP systems
  • Currently Strategizing & Implementing solutions to extend Provisioning, Risk analysis & UAR’s to cloud apps/platforms like Ariba, Concur, Fieldglass etc
  • Continuously evaluating the security architecture for better automation opportunities to reduce redundancy, human intervention and improve efficiency and accuracy of results
  • Few examples are Automated scripts to fetch monthly audit data through LTI Scripts, automated Transport management process, Automated monitoring of Risks through Process Control etc
  • Hands On experience in GRC 12 AC On Prem with Upgrades, Patches and Day-2-Day Support and Maintenance
  • Well versed in supporting ARA, ARM, EAM & BRM modules of Access Control in GRC 12 & Cloud IAG
  • Hands on Experience in Managing and handling security across ECC, HR, CRM, BPC, BOBJ, GRC, BI/BW, HANA, Solman, SAC cloud app, Cloud IAG, SAVIYNT IDM applications & FIORI Apps
  • Closely worked with the Directors and SME’s in identifying the road map for Reporting, forecasting and Analytics using BPC, HANA, Tableu & SAC Apps
  • Designed and developed Security roles for a partial rollout/brown field implementation of S/4 HANA following SAP ACTIVATE methodology for MMS and Pharma BUs of McKesson
  • Working closely with the Business to understand and design the FIORI/ Mobile apps with a combination of catalogs & groups defining a simplified FIORI Launchpad to End users
  • Act as a liaison between McKesson & Audit to make sure McKesson SAP Systems are well complied and stream-lined without any Audit Deficiencies
  • Documented SOP’s on all the processes involved in SAP security GRC and IAG integration space

SAP GRC & Security Architect

COSTCO
Seattle
04.2017 - 12.2017
  • Lead several architectural sessions with Client and SAP to incorporate Cloud IAG into COSTCO SAP landscape to be able to better integrate GRC with Onprem SAP, Non-SAP and Cloud applications to manage the user life cycle
  • Designed role-based security for FIORI apps leveraging catalogs/groups on S/4 Hana roles, incorporated required OData services in the Gateway roles
  • Configured Cloud IAG to be able to integrate with JDE, Ariba & Success Factors and extend the GRC AC Functionality
  • Driven the GRC 10 to 10.1 Upgrade plan, strategy, and timelines
  • Worked hands on with GRC 10.1 enhancements and its related configurations
  • Implemented GRC 10.1 SP 19 which includes the Integration of Success Factors with GRC to run cross application SOD and User provisioning
  • Well Versed in fixing the bugs & Issues which arise from the GRC 10.1 upgrade
  • Worked Parallely on CPM (Canada Payroll and Management) project in designing and implementing security for ECC, BI/BW, HCM, BOBJ, HANA & Solman systems
  • Worked on implementing structural authorizations in BI/BW for CPM reporting from the scratch and handled BOBJ security using CMC console

SAP Security / GRC Lead

ULTA BEAUTY
Chicago
01.2016 - 03.2017
  • Involved and Driven Business Discussions to understand and gather the Client’s needs on their current GRC 10.1 Suite implementation
  • Architected and laid out project plan for GRC AC 10.1 implementation and set up controls at various stages of the Project to monitor and guide the implementation process
  • Configured Custom Rule Sets as per company needs
  • Migrated Firefighter data from legacy systems to GRC SPM component and involved in complete configuration
  • Worked on the MSMP Workflow Configuration, BRF+ and HR Triggers for custom Workflow development in Access Control
  • Configured SSO 3.0 for SAP and other systems using SNC and Logon ticket methodology
  • Acted as a liaison between the Security team and the Business to transform the business needs to Security Technical Requirements
  • Extensively Involved in the ECC, CRM, SCM, Solman, SAC, BI & BOBJ Security clean-up & Redesign Projects
  • Integrated IDM with GRC 10.1 for running risk Analysis for any New/change user requests
  • Involved in S/4 Security Training for in-depth knowledge
  • Worked on providing a roadmap to transition current SAP landscape to S/4 systems
  • Delivered detailed documentation on GRC configuration, training material for end users & operating procedures manuals for Security related work

Security & GRC Trainer/Consultant

ORNL
Tennessee
09.2015 - 12.2015
  • Discussed with ORNL’s Security Team on their compliance strategy and the ways to exhaust the GRC Functionality to fit in their SOX requirements
  • Analyzed ORNL’s GRC 10.1 Access Control Implementation in Test Environment’s and Evaluated the gaps in the Configuration Set up
  • Configured the GRC 10.1 Access Control modules in other environments catering to the Business Requirements
  • Assisted ORNL’s Security Team in resolving few critical issues on ECC & Single Sign on
  • Trained ORNL’s Security & Business on GRC 10.1 Functionality and Usage
  • Documented the GRC 10.1 Access Control Configuration Steps and handed over to ORNL for future reference

SAP Security / GRC Lead

Walt Disney
Los Angeles
02.2015 - 09.2015
  • Worked with an Onshore/offshore model for supporting multiple projects at Disney
  • Lead the complete Development & Support model for Security administration for ECC 6.0, HR, BI/BW 7.X, Solman, BOBJ, CRM 6.0, SRM 7.0, Enterprise Portal and Audit assistance
  • Extensively worked on tailoring CRM Web UI roles and creating appropriate back end roles as per business needs
  • Extensively Involved in creating and assigning structural authorization data and making org level changes to users
  • Supported ongoing BI/BW 7.04 Security changes and new design requirements
  • Involved in the existing GRC 10.0 Access control & Process Control maintenance & support
  • Led and Driven GRC 10.1 upgrade and integration with IDM systems for centralized user maintenance
  • Configured the Decentralized way of Firefighting as per customer’s interest in the Access Control EAM 10.1
  • Extensively worked on HANA Studio to Create Users, roles & Analytic Privileges and Planned the migration strategy to fit the HANA User/Role database
  • Involved in setting up the Password policies & Authentication services through HANA Studio

SAP Security Consultant

Wells Fargo
San Francisco
03.2014 - 02.2015
  • Defined the Standard procedures for User Management, Role Management, Transport Management and Change Control
  • Implemented Security across heterogeneous environments like ECC, HR, BI/BW, BOBJ, BPC 10, CRM 7.0, SRM, SUS, CLM, PPM, Solman, Net Weaver gateway, CLM & PI for a new Wells Fargo CPG project
  • Implemented CUA for all the clients and resolved day to day CUA issues
  • Integrated SAP systems with IDM 7.2 for centralized User Provisioning for SAP & Non- SAP systems
  • Assigned to BI/BW Security support and ongoing bug fixes for reporting issues
  • Re-Designed and supported the existing Projects by working with the co-existing implementation partners
  • Single handedly driven SRM business role configuration and respective back end security
  • Extensively worked on a BPC prototype solution for assigning teams and data access profiles through back end roles
  • Immediately grasped the Existing Compliance policies for Wells Fargo and designed a custom Compliance/SOD tool for User/Role Analysis
  • Extended the Custom SOD tool across PPM & SRM modules as well
  • Configured the SAML Assertion to enable SSO for the External vendors through Sourcing
  • Extensively involved in defining the Project timelines and Resource Allocation from Security and Basis Standpoint
  • Provided Effective documentation to Business users for Training and testing purposes

IT Audit & Security Consultant

KPMG
San Francisco
09.2013 - 02.2014
  • Developed the Security blueprint and involved in the role development strategy for ECC, CRM, BI/BW 7.X, BOBJ, BPC, SRM, CLM & Enterprise Portal 7.0
  • Involved in the Evaluation & Redesign of existing User Provisioning and User access approval process
  • Lead External Audits for multiple client sites by reviewing as per SOX Compliance act and other KPMG Controls related to ISO, FDA and ITGC
  • Worked Extensively in restructuring the company’s IT risk and control policies to align with the Audit controls
  • Visited Multiple Client Sites to Audit and gather evidence on Multiple Controls based on the tools they have been using & Physical evaluation of Data center sites & other security controls
  • Extensively worked on auditing & documenting the ITGC controls and Entire IT Audit Controls as per KPMG Policies
  • Involved in signing off the External Audit controls with the required evidence for multiple clients
  • Delivered extensive documentation, training material, operating procedures manuals

SAP Security/GRC/HANA Consultant

Varian Medical
Palo Alto
04.2013 - 08.2013
  • Involved in the development of Security across multiple modules like ECC, CRM, BI/BW, BPC, NFE & Enterprise Portal
  • Involved in the configuration of Emergency Access Management, Automated User provisioning, Access Risk Analysis modules in GRC 10 Access Control
  • Extensively worked on CUA model for a centralized User maintenance across multiple systems
  • Worked on the MSMP Workflow Configuration, BRF+ and Function Modules for custom Workflow development in Access Control
  • Created a Custom Rule Set in RAR with Org rules activated which can be tailored to Multiple Org units
  • Integrated GRC 10.0 with BPC through a separate path with automatic backend assignment and a manual stage for front-end data access profile and team assignments
  • Upgraded NWBC 3.0 to 4.0 and was in the frontline in resolving the NWBC compatibility issues with the back end
  • Involved in initial stages of implementing HANA during the Customer Ramp up
  • Hand-On Experience on working with the HANA Studio creating User & Role Authorizations
  • Worked with SAP closely in defining the Analytic & System Privilege’s in HANA Studio

SAP Security/ GRC Architect

SDGE
San Diego
05.2012 - 03.2013
  • Architected & implemented security roadmap for ECC 6.0, CRM 7.0, SCM (APO), SRM, BPC, MDM, GTS & EP
  • Configured and Supported IDM 7.2 suite including SOD checks, mitigations and user provisioning as well
  • Defined the Business Roles by importing the technical roles from the target systems to the Identity Center of IDM
  • Involved in setting up the Password management of the IDM system with SAP and Non-SAP systems
  • Single Handedly Driven the complete CRM Security Implementation
  • Redesigned the Existing Authorization Structure in BI/BOBJ 7.0/4.0 for granular & Efficient reporting
  • Upgraded GRC 5.3 to 10.0 Systems & Configured GRC 10.0 AC modules Access Risk Analysis, Emergency Access Management & Automated User Provisioning

SAP Security & GRC Consultant

Century Link
Kansas
08.2011 - 04.2012
  • Played a vital role in the QUEST acquisition project in redesigning the security structure
  • Analyzed the current SAP security Setup and provided recommendations for improvement to address audit deficiencies & SOX compliance
  • Re-designed security roles restricting access to sensitive transactions and objects and to create uniformity in the role design for ECC, CRM, SRM, MDM, SCM, GTS, BPC, BI 3.5/7.0, BOBJ 4.0, and Enterprise Portal 7.0
  • Implemented HR security using Evaluation paths, structural authorizations, and Profile Generator
  • Configured CUA to handle multiple systems and integrated with LDAP
  • Analyzed the SOD conflicts for the new and existing changes in roles through Compliance Calibrator in VIRSA and assigned Mitigating controls
  • Laid out high level project plan for GRC 10 upgrade from VIRSA
  • Configured SSO (SNC & SAML) for ABAP & JAVA Application Server
  • Acted as Liaison with internal & external Audit teams to establish and review various SAP instances & implement improvements & risk remediation to meet audit requirements in SOX, ISO & ITGC
  • Created Standard Operating Procedures for User Access management, Role Management and Transport management

SAP Security & GRC Consultant

Sigma Aldrich
St Louis
10.2010 - 08.2011
  • Involved in Planning, Implementation & Support of Security administration for multiple Global SAP rollouts for ECC 6.0, APO, SRM, IDM 7.1, BI/BW 7.0/3.5, GTS, CRM 6.0, GRC 5.3, Enterprise Portal and Audit assistance
  • Upgraded BI 3.5 to BI 7.0 and implemented the Analysis Authorization
  • Implementation & support of all GRC 5.3 components including Compliance Calibrator, Access Enforcer, Role Expert & Fire Fighter
  • Performed a detailed risk analysis of all business processes and identified areas in need of controls
  • Configured SSO 2.0 using Logon Tickets methodology for Web Based access (GUI for HTML)
  • BW 3.5 (Legacy) & BI 7.0 support & administration
  • Designed reports for SOX Audit liaisons for tracking SOD Cleanup progress, criticality etc

SAP Security Analyst

Colder Products
MN
08.2009 - 09.2010
  • Developed the Security blueprint and involved in the role development strategy for a worldwide release of ECC 6.0
  • Extensively developed security models for ECC, HR, SCM, GTS, SRM, BI/BW, CRM 5.0 modules
  • Formulated a security development plan defining the roles of the SAP Security team
  • Worked on Assigning authorizations through the Org Structure for HR Model
  • Involved in the Creation of CUA and Controlling User Access through the Golden Client
  • Provided reports to the internal and external auditors and created custom audit roles based on audit needs
  • Involved in the Installation and configuration of VIRSA CC & FF
  • Identified and created mitigation controls, Risk I.D’s for SOD issues based on audit feedback
  • Configured Owners, Controllers and security setup along with various configuration parameters in Firefighter

Education

Bachelor of Engineering -

JNTU
Hyderabad

Skills

  • Enterprise Architectural design
  • Identity Access Management
  • Application security
  • Security development
  • Governance, Risk, & Compliance
  • Cloud security
  • Vulnerability assessment
  • Audit management
  • Technical troubleshooting expertise
  • People Management

Certification

P-ADM-SEC-70 SAP Professional Level Certified in Security, GRC, and IAM Solutions

Languages

English
Full Professional
Hindi
Native/ Bilingual
Telugu
Native/ Bilingual

Affiliations

In-Depth Seeker & reader

Passionate about learning the latest and greatest products of SAP

Learned psychology and human behavior patterns through ancient science

Studied Photography at Berkeley, California

Landscape/Nature Photography

Hiking Accomplishments - Mt Everest Base Camp, Annapurna Base Camp, Kailash­, Norwegian Fjords, Acetanago Volcano, Arenal Volcano, Yosemite.

Timeline

SAP Security / IAM Architect

Mckesson
02.2018 - Current

SAP GRC & Security Architect

COSTCO
04.2017 - 12.2017

SAP Security / GRC Lead

ULTA BEAUTY
01.2016 - 03.2017

Security & GRC Trainer/Consultant

ORNL
09.2015 - 12.2015

SAP Security / GRC Lead

Walt Disney
02.2015 - 09.2015

SAP Security Consultant

Wells Fargo
03.2014 - 02.2015

IT Audit & Security Consultant

KPMG
09.2013 - 02.2014

SAP Security/GRC/HANA Consultant

Varian Medical
04.2013 - 08.2013

SAP Security/ GRC Architect

SDGE
05.2012 - 03.2013

SAP Security & GRC Consultant

Century Link
08.2011 - 04.2012

SAP Security & GRC Consultant

Sigma Aldrich
10.2010 - 08.2011

SAP Security Analyst

Colder Products
08.2009 - 09.2010

Bachelor of Engineering -

JNTU

Similar Profiles

CREATE PROFILE
Surakshith Pulusani