SUMMARY:

• Over 10 + years of experience SAP Security Implementation and Upgrade experience for various industries Beverages, Pharma and Automobile in SAP R/3/ Confidential modules (FI, CO, SD, MM, PP, PM, WM), MDG, PLM, HR, Confidential modules ( Confidential 7.X, BPC 7.0/7.3, Confidential 4.0), EWM, GTS, SCM, CRM, and Governance Risk and remediation Tools GRC10.
• Involved in one complete SAP Confidential, one Confidential, and oneSCM project lifecycles from Design phase to Post - implementation phase.
• Involved in three complete SAP R/3 4.7 to Confidential 6.0 and twoBW 3.5 to BI 7.0 upgrade project lifecycles from Design phase to Post-implementation phase.
• Involved in Complete SAP GRC 10 implementation project lifecycles from Design phase to Post-implementation phase with ARA, ARM, BRM and EAM modules.
• Involved in complete SAP Confidential 4.0 ( Confidential ) implementation project lifecycles from Design phase to Post-implementation phase.
• Involved in Complete SAP Confidential 3.2 implementation project lifecycles from Design phase to Post-implementation phase.
• Involved in complete BPC 7.0 implementation project lifecycles from Design phase to Post-implementation phase for Confidential project
• Involved in BPC 7.0 to BPC 7.5 upgrade project lifecycles from Design phase to Post-implementation phase for Confidential project
• Involved in complete NetWeaver Basis security implementation and configured UME.
• Involved in complete SAP Solution Manager Confidential and Incident Management implementation project lifecycles from Design phase to Post-implementation phase.
• Involved in complete SAP CUA implementation project lifecycles from Design phase to Post-implementation phase.
• Strong experience in SAP OSS Administration
• Designed and configured security in Confidential 4.0 Central Management console, Business Explorer, Info View and LCM
• Broad understanding of the various Confidential components including Business Objects Enterprise Administration, BO client tools Crystal, WebI, XCelsius, WEBI, Desk Top Intelligence, and Business Explorer
• Integrate Confidential with SAP Confidential entitlement systems.
• Designed and configured security in Confidential 3.2 Central Management console, Central Repository and Local Repository
• Import backend security roles with users assigned as BO groups into Confidential
• Establish folders structure of CRM and SCM in Confidential 4.0
• Experience with SSO between share point portal to Confidential and Confidential and Confidential ( Confidential 4.0)
• Experience with SSO between CRM WEB UI and Confidential Portal and Confidential ( Confidential 3.1)
• Maintain and enforce consistent security policies and procedures
• Performed SAP Security related task such as Security Audits, SOX (Sarbanes Oxley) Compliance.
• Strong experience in SOX tools GRC 10.0/5.3, and BizRights (Approva)
• Developed and Documented Security Policies and Procedures, User Provisioning, Role Provisioning, Role maintenance using profile generator, Security Redesign Strategy in various new implementations and upgrade projects.
• In-depth knowledge SAP R/3 4.7 Enterprise security environment and functionality and Authorization security upgrade implementation experience from 4.7 to Confidential 6.0
• Extensive experience with Confidential Security Role Remediation during upgrade from 4.7 to Confidential 6.0
• Extensive experience with Confidential Security Role Remediation during upgrade Confidential 6.0 to EHP5
• Strong experience in SCM security role design in DP, SNP and PPDS modules
• Set-up and maintained R/3 Central User Administration and Single Sign-On (including LDAP connectivity).
• Integrated and Synchronized SAP User Master data with LDAP/AD user fields attribute data by configuring LDAP sync job
• Scheduled LDAP sync job to run every 3 hrs to update SAP User Master data with LDAP/AD User Data
• Scheduled automated jobs to find any failure of SAP Security audit controls
• Performed analysis of SU53 and SU56 user analysis as well as setting up and analyzing user traces with ST01.
• Prepared written documentation, oral presentations, classroom instruction (including development of lesson plans), and general knowledge transfer.

TECHNICAL SKILLS:

SAP: SAP ECC6.0, SAP R/3 Enterprise 4.7, and SAP R/3 4.7, SAP Confidential 3.5, BI 7.0/7.02/7.3 , SAP SCM 7.0, and SAP GRC 10

SAP TOOLS: Confidential, ECATT, SU01, PFCG, CUA and LSMW

SOX TOOLS: SAP GRC10.

SAP BO Client Tools: Crystal Reports, WEBI, XCelsius Dashboards, Desktop Intelligence and Business Explorer

SAP Confidential: SAP Confidential 3.1, SAP Confidential 4.0

DATABASE: Oracle 11.2..0.2/10.0.2.0 , 9i, MS Access

OPERATING SYSTEMS: AIX 6.1/5.3.X with P590 Processors, Solaris 10/8/ 7, HP-UX 11A, and MS Windows XP/2000/NT with 8X AMD 64 Processors

CHANGE/PROBLEM MANAGEMENT: Service Now, Remedy, MKS, MANAGE NOW and SAP Confidential and Incident Management

LANGUAGES: ABAP, SQL, PL/SQL

TESTING TOOLS: HP/Mercury Quality Center V10/9, Test Director 8.0, Load Runner 7.8

PROFESSIONAL EXPERIENCE:

SAP Security GRC Administrator

Confidential, Hercules, CA

Responsibilities:

• Designed and implemented Technical Security Strategy from design phase to post implementation phase for the Confidential 6.0, EWM 7.0, GTS 7.0, Confidential 7.3, SCM 7.0 and GRC 10 implementation projects
• Designed and build Confidential roles in Confidential deployment 1 and deployment 2
• Strong in user and role based SOD analysis in GRC 10 ARA.
• Strong experience in all GRC 10.0 modules ARA, ARM, EAM, and BRM
• Designed and build Confidential roles in Confidential deployment 1 and deployment 2
• Designed and build SCM roles for DP, SNP and PPDS modules in D1 and D2
• Designed and build Confidential roles in Confidential system for SCM project in D2
• Resolved production support issues in GRC 10.0 in ARM and EAM.
• Worked with basis team and configured SSO between Confidential and between Confidential and Confidential and BO client tools to Confidential
• Establish SCM folder structure in Confidential for all 3 modules DP, SNP and PPDS
• Resolve security issues if any when the power users check in Confidential reports in SCM folders from BO Client tools to Confidential
• Resolve SSO issues between Confidential and Confidential
• Resolve authorization issues for SCM and Confidential users
• Resolve authorizations issues of BO users by turning on trace with RSRTRACE and other trace analysis tools
• Mass creation of end users in Confidential, SCM and Confidential systems with eCATT scripts
• Setting up users (adding and modifying users), setting up teams(adding and modifying teams, assigning team leaders) in BPC 7.5
• Define task profiles and member access profiles in BPC 7.5
• Assign task rights (Appset, define security, offline access etc)to different task profiles (sys admin, primary admin and secondary admin)
• Assign task profiles and member access profiles to teams in non restrictive environment and users in restrictive environment
• Designed and build roles for Sol Man Confidential project
• Designed and build roles for Sol Man Incident Management project
• Production support and resolve security issues for all SAP Confidential, Confidential, SCM, Sol Man, Confidential, Confidential and Vertex systems

SAP Security GRC SME

Confidential, Dayton, Ohio

Responsibilities:

• Designed and implemented Technical Security Strategy from design phase to post implementation phase of BI 7.0 implementation for Confidential project
• Designed and build security roles for Confidential project team in non production environment
• Designed and build end user roles for Confidential end users in NA, and Europe
• Designed and implemented Technical Security Strategy from design phase to post implementation phase for the BPC implementation project BPC 7.0 for Confidential team
• Setting up users (adding and modifying users), setting up teams(adding and modifying teams, assigning team leaders) in BPC 7.0
• Define task profiles and member access profiles in BPC 7.0
• Assign task rights (Appset, define security, offline access etc) to different task profiles (sys admin, primary admin and secondary admin)
• Assign task profiles and member access profiles to teams in non restrictive environment and users in restrictive environment
• Designed and configured security in Confidential 3.2 Central Management console, Central Repository and Local Repository
• Designed and implemented Technical Security for SAP Solution Manager Incident Management implementation project lifecycles from Design phase to Post-implementation phase
• Designed and build service desk application creator, approver and processor roles
• Production support and resolve security issues for all SAP Confidential, and Confidential systems
• OSS Administration activities S id creation, create dev keys and object keys
• Dealt service connection open request for SAP and checkout id requests

SAP Security Administrator

Confidential, Louisville, KY

Responsibilities:

• Designed and Implemented Technical Security Strategy for Confidential upgrade from 3.0 to 3.5
• Defined and Implemented Security Operating Procedures and Processes in Confidential Security
• Identified various Confidential security related issues and recommended for the Confidential Security Redesign
• Taken car of security related issues through SU24 and SU25 while upgrading Confidential from 3.0 to 3.5 in Dev, QA and Production
• Recommended implementation of info object level Confidential security
• Created Confidential Reporting authorizations using RSSM transaction
• Recommended securing Confidential queries over Info Providers like Info Cubes, ODS objects, Info Sets Info Spokes and Info Objects
• SAP User Management and Auditing for Sarbanes-Oxley (SOX) compliance requirements and Remediation of SAP security Roles for segregation of duties conflicts by analyzing in VRAT tool
• Assist users with performance and security issues.
• Create Customized (Z roles) roles and Customized (Z T Codes) T codes and transport these to production using remedy change management
• Maintaining authorization objects through SU24 for transaction codes instead of manually inserting authorization objects and followed the Best Security Practices
• SOD analysis done before assigning any roles to the users with VRAT simulation
• SOD analysis done before assigning any T codes to the roles with VRAT simulation
• Generated monthly audit reports with VRMT
• Document mitigated users and mitigated roles with conflict SOD group ids with mitigating reference number in VRAT
• Document new customized roles, new customized T codes in VRMT
• Solve day to day User issues with Remedy Helpdesk and Remedy Change Management
• Working in collaboration with application managers to clean up the security Roles to eliminate segregation of duties conflicts
• Perform transports through Remedy Change Management.
• Create and modify roles according to BPO (Business Process Owners) requirements.
• Perform traces to troubleshoot authorizations.
• Develop security test plans and procedures.
• Develop Confidential scripts to create and update user profiles.
• Create and modify roles and create custom user menus for Workplace.
• Setting up the ALE Environment for Central User Administration: setting up an ALE user, naming logical systems, assigning logical systems to clients, defining target system for RFC calls, generating partner profiles in the central and client systems, distributing and assigning the Central User Administration distribution model, Migrating existing users to the central system, defining field attributes for user maintenance, Modelling with the global user manager, distributing data in the global user manager