Client: Merck India - Healthcare, Life Science
Technologies: SAP R/3 and GRC 12.0
Project Synopsis:
Merck was incorporated in India as E. Merck India Private Limited, starting out as a
pharmaceutical company and growing to become a science and technology business spanning all
the sectors of Healthcare, Life Science and Performance Materials.
Roles and Responsibilities:
* Extensively used tables like AGR_USERS, AGR_TCODES, AGR_AGRS, and AGR_DEFINE etc.
* Day to day technical support and resolution of Security issues.
* Maintain various role matrices for roles, authorization objects to keep track of the
modifications made the roles.
* Extensively used SU53 and STAUTHTRACE for analyzing the authorization errors.
* Creating single, composite, and derived roles, Assigning roles to users.
* Modifying the existing role based on the requirement.
* Creating users and locking & unlocking the users, password resetting users, Validity date
extension.
* Performed Transportation of newly created roles/ modified roles.
* Authorization checks using transaction SU24 and maintained check indicators for
Transaction codes as per business requirements.
* Responsible for attending the complaint calls, trouble shooting and daily problem solving
* Under Risk Analysis and Remediation, performed User & Role analysis to identify existing
SOD violations Risk
* Using ARA produced Analytical Reports on User, User Groups, Roles and Profiles. Analysis
reports provide real-time data and Management reports retain an offline history of SOD
status.
* Defined Role owners & approvers.
* Defined User access approvers.
* Defined Risk Owners.
* Defined Mitigation monitors and approvers