Martina CD

SAP SECURITY & GRC CONSULTANT

Mobile: +91-8884722201 E-mail: martina.devadas@gmail.com

PROFESSIONAL PREFACE

 SAP Security and GRC Consultant with extensive knowledge and a total experience of 4.2 Years in various
Security related Implementation and GRC Support Projects.
 Knowledge and Experience with SAP Security GRC 10.0 administration and also have experience working on
SAP Applications - APO, BW, BI, XI, SRM 4.0, SRM 5.0 and Charm(SolMan)
 Experience in Application Support Role creation, modification & maintaining organization levels based on
business requirements using Profile Generator (single roles, master / derived roles, composite roles).
Involved in Role design, configuration, testing, and deployment methodology within SAP application
architecture.
 Extensively worked on Access risk analysis, SOD conflicts, Mitigation controls and emergency access
management and involved in performing Risk and Control Management
 Worked on SAP legacy 4.6C version and performed Role creation, Role modification, Transportation of roles
from Development system to production.
 Experience in maintaining authorization objects, organization fields and preparation of SAM.
 Provided timely and extended support to critical security issues in all business areas
 Ability to communicate security and risk-related concepts to both non-technical and technical audience.
 Excellent communication and follow-up skills in gathering requirements from functional teams and data
owners for role development.
 Provided recommendations on implementing SAP GRC related business processes.
 Involved in discussions and testing pertaining to technical design of SAP GRC Process.
 Flexibility and ability to adapt with new technologies.

EDUCATIONAL QUALIFICATION

M.Sc. (Industrial Psychology) Pursuing Annamalai University, Chidambaram, India

B.Sc. (Computer Science) 2012 Bishop Cotton Women's Christian College, Bengaluru, India
Pre-University 2009 Bishop Cotton Women's Christian College, Bengaluru, India
SSLC 2007 St Teresa's High School, Bengaluru, India

PROFESSIONAL EXPERIENCE

Company : Schneider Electric India Ltd

Role : Senior Analyst
Duration : July 2012 – Sep 2016
About the Company: Schneider Electric is a European multinational corporation that specializes in electricity
distribution, automation management and produces installation components for energy management.
Martina CD
SAP SECURITY & GRC CONSULTANT

Mobile: +91-8884722201 E-mail: martina.devadas@gmail.com

Role and Responsibilities:

 Role Administration: creation/deletion and modification of single roles as per business requirements.
 User Administration: User IDs create/delete, update, lock/unlock & password reset.
 Troubleshooting user access through authorization error analysis (SU53) and System Trace (ST01). Missing
authorizations can be found with this analysis functions.
 OSS connections, Market place ids, developer keys and objects keys were all handled through SAP support portal.
 Created additional roles for new plants as part of roll out activity. Extensive knowledge and good understanding
on role concept over creating new roles for Go-Live activities
 Support activities in SAP GRC Access Control 10.0 such as New user creation, Multiple user creation and change
in role assignment through Access Control Management
 Have a very good functional knowledge of four Access control components - GRC-SAC-ARA (Access Risk Analysis),
GRC-SAC-ARQ (Access Request), GRC-SAC-BRM (Business Role Management), GRC-SAC-EAM (Emergency Access
Management) – Creating Firefighter ID, Maintaining Firefighter ID Owner and Controller, Assigning Firefighter ID
to the user, Generating report.
 Performing region wise monthly User level SoD Risk Analysis and submitting the same to respective country leads
and generating KPI reports.
 Performed remediation and mitigation against various risks associated with roles and users. ARA has Simulation
features to allow you to assess the impact of potential remediation activities on the reported conflicts prior to
making the actual change.
 As per the process of remediation activities, creation of Mitigation control ids and assigning the same to users as
well as roles. Creation of Owners, Approver´s and Monitors and assigning to Mitigation controls. Updating of
controls and approvers as per the requirement.
 Actively participated in multiple Project Go-Live activities
 Performed Audit activity for SEA Project for 2 years with external Auditors from E & Y.
 Supported - Monthly Reports, Year End process support performing Locking user, unlocking users, monthly
maintenance activities

PERSONAL DETAILS

Date of Birth : 29th Oct 1991

Nationality : Indian
Gender : Female
Marital Status : Single
Present Address : No 25/1, 6th Cross, 2nd Main, Ranganathapura, Magadi Main Road, Bengaluru, India