We provide IT Staff Augmentation Services!

Sap Security/ Grc Analyst Resume

Phoenix, AZ

PROFESSIONAL SUMMARY:

  • 11+ Years of extensive experience as an ERP consultant
  • Exceptional communication & interpersonal skills
  • Experience with R/3 releases versions:
  • ECC5.0 & ECC6.0 various modules like MM, PP, SD, FI, CO, familiarity of BI, BOBJ, BPC and CRM
  • Skilled in using CUA, HANA Studio (User Mgmt.), Oracle IDM (User provisioning)
  • Expert user administration through the use of SU01, SU10
  • Expert in role development using profile generator (PFCG)
  • Extensive experience with best practices using SU24
  • Experienced and strong with Security audits, SOX Section 404 compliance
  • Assisted in running reports in of SAP GRC Component Compliance Calibrator
  • Worked closely with functional consultants for evaluation of requirements and defining, developing and testing the roles.

TECHNICAL SKILLS:

  • mySAP ERP ECC 6.0
  • ECC 5.0
  • SAP R/3 4.7, 4.6C, 4.6A/B, 4.0B
  • SAP Netweaver 2004s
  • SAP Enterprise Portal 7.0, 6.0, 5.0
  • CRM
  • BI 7.0
  • HANA Studio
  • Solution Manager
  • Virsa Compliance Calibrator
  • Approva BizRights. GRC 10.1.

PROFESSIONAL EXPERIENCE:

SAP Security/ GRC Analyst

Confidential

Responsibilities:

  • Designing, building, and supporting SAP roles and user administration
  • Collaborate with business process owners and other project teams to configure and manage SAP profiles and roles to meet the business needs
  • Align SAP security profile authorizations with Sarbanes/Oxley controls to ensure compliance with Segregation of Duties (SOD) while providing the minimum access required meeting business needs
  • Manage user administration utilizing SU01 and SU10 (mass changes) in creating, copying, deleting, locking, unlocking users and provisioning roles.
  • Utilize SE16 and SUIM to retrieve various data.
  • Utilize SU24 to enable / disable security checks.
  • Generate transports for security to move profiles and roles to the proper clients
  • User creation and assignment of roles
  • Analyzing SU53/ST01 reports

SAP Security/GRC Analyst

Confidential, Phoenix, AZ

Responsibilities:

  • Managing business profiles through GRC by running simulations and analyzing open risks.
  • Granting FireFighter access by ensuring ‘owner/control’ are assigned to a FF ID.
  • Ensured all SOD violations are resolved through either: mitigation, remediation or identifying a false positive.
  • Extensively using RAR tool to ensure end - users’ access not violating SODs.
  • Troubleshooting Role-based authorizations by using SU53/ST01 in a timely manner.
  • Creating and managing profiles in PFCG and supporting UAT testing.
  • Extensively using SCC1 to ‘copy client’ profiles to support test modifications.
  • Used STMS to transport profiles from DEV to QUA system for testing purposes.
  • Assisting with password resets and account lock/unlock.
  • Providing SAP developer/object keys access through SAP Marketplace.
  • Granting analytic privileges to end-users in SAP HANA studio.
  • Utilizing RS2HANA GEN to expose objects in Native HANA.
  • Used stored procedure for the assignment of repository privileges in HANA studio.
  • Used SM59 and SPRO to create RFC plug-ins with GRC backend system.

SAP Security Analyst/ Project lead

Confidential, Moline, IL

Responsibilities:

  • Extensively used ARA to simulate and analyzed open risks.
  • Ensured all SOD violations were resolved through either: mitigation, remediation or identifying a false positive.
  • Assisted GRC team with the create/adjust rule set to meet the needs of the business.
  • Utilized Mitigation tab to update existing mitigating controls and create new mitigating.
  • Supported daily-production issues and ensure that the tickets are under SLA
  • Managed all authorizations escalations and provided tier 3 support to WIPRO off-shore team
  • Extensively used SUIM to process reports for the business
  • Utilized SU01 to reset passwords, assign roles, and create/maintain/copy users
  • Used PFCG to create single, composite, master and derived roles
  • Troubleshot backend role failures using ST01
  • Developed FSCM (Financial Supply Chain Management) roles for all the units and assisted in the entire implementation cycle
  • Led all Security tasks in the migration project from 4.6C to 6.0.
  • Blueprint, architecture, development, integration testing, UAT, and Go-live
  • Ran LSMW for the mass profiles and password assignments to the end-users
  • Monitored iDocs via SCUL
  • Assigned backed profiles for HR users in SAP and grouped the users for ESS and MSS access.
  • Created analysis authorizations through the use of RSECADMIN
  • Assigned previously created authorizations to roles through S RS AUTH
  • Modified roles in BW through PFCG (S RS COMP)
  • Traced failing authorizations for BI users through RSECADMIN
  • Created mass end-users and added to ‘Groups’ in UME/SAP IDM portal.
  • Assigned privileges to the roles and granted the roles to the users
  • Restricted the access on the role and object levels.
  • Activated/Deactivated users
  • Managed the users by locking/unlocking the access, reset passwords
  • Direct access to individual users to SAP HANA database.

SAP Security Administrator

Confidential, King of Prussia, PA

Responsibilities:

  • Providing production support on day-day basis in ITSM and HPQC ticketing system.
  • Responsible for creating transport through PFCG and SE10.
  • Performing SOD checks for all PRD users with Approva BizRights tool.
  • Converting characteristics Info. Object to Auth. Relevant in BI 7.0 using RSD1.
  • Assigning the Analysis Authorizations access to users using the authorization object S RS AUTH.
  • Performing User master maintenance such as creating new users, assigning roles, deleting users, renaming users, resetting password, Lock/unlock User ID using transaction code SU01

SAP Security Analyst

Confidential, Franklin Lakes, NJ

Responsibilities:

  • Running eCATT scripts to assign roles to new /existing users.
  • Creating SAP roles in the development, test, and training environments using Profile Generator (PFCG).
  • Responsible for creating user IDs based on a standard naming convention, setting up of new users,
  • Modified user accounts, resetting passwords, locking and unlocking user IDs.
  • Performed SOD checks for all PRD users with Compliance Calibrator 4.0/5.3 toolset (RAR).
  • Responsible for War Room support, issue remediation during Cutover simulation with critical resolution times
  • Promoted best practice, leveraging domestic implementation, documentation and procedures
  • Worked with development and business users to identify authorization requirements. Designed and created authorization roles and created custom authorization objects/groups.
  • Use of Active Directory (AD) to add userids-to-groups,
  • Coordinated build and cleanup of test userids prior to rollout,
  • Pre-implementation Production Support for Early Access userids.
  • Supported Go-Live phase from May 5th-May 25th. Systems used are: BI, CRM, ECC, EWM, GTS, PI, SRM, SCM, and Solution Manager.

SAP Security Administrator

Confidential

Responsibilities:

  • Involved in initial design/development/testing phases, testing, and go live of ECC end user security roles
  • Developed templates for requirements gathering and worked with functional teams on master/single role(s) design. Templates: R2TM (Role to transaction mapping) sheet, Authorization Input sheet.
  • Conducted workshops to drive Master/Single role/Derived/Composite role(s) design.
  • Supported unit testing, integration test cycle and coordinated defect resolution.
  • Effectively analyzed trace files and tracked missing authorizations for user’s access problems.
  • Used SAP GRC Access Control v5.3 Risk Analysis and Remediation tool to define SOD violations
  • Analyzed all customer programs and transaction codes for authority checks.
  • Recommended and implemented values for profile parameters for controlling Password rules, logon rules, established monitoring process for inactive user's unsuccessful logons.
  • Communicated with Business Process owners to obtain approvals for Security changes.
  • Worked on SAP Check indicator Defaults and field values, reduced the scope of authorization checks using transaction SU24 and maintained check indicators for transaction codes.
  • Maintained and formulated the procedures for the Role Repository database.
  • Followed the established standards and naming conventions as dictated for the Clients security schema.
  • Analyzed Root Cause of Authorization Problems and fix the missing authorizations.
  • Worked with CUA (SCUL and SCUM), and standards which makes more flexible to work with large number of users to update their roles and profiles across the landscape.
  • Developed use cases (for example, descriptions of the user's interaction with the system), customer scenarios, and/or prototypes (for example, demos) and be heavily involved in testing and troubleshooting the application.

SAP Security Analyst

Confidential, Sunnyvale, CA

Responsibilities:

  • Worked with Profile Generator ( PFCG ) in creating roles, profiles, composite roles, and derived roles.
  • Responsible for day-to-day transport support for moving Roles from one client to another client within the same system using transaction code PFCG, SE10, and SCC1.
  • Developed derived roles for FI by converting certain fields to organizational level fields.
  • Used SeCATT script for mass generation of roles and user assignments.
  • Assisted users with access problems and questions using SUIM , ST01 , and SU53.
  • Performed reconciliation of user master record and roles using PFUD and SUPC.
  • Worked with respective functional heads for SOD tools & security changes based on SOX violations at T-code level & object level.
  • Created over 700 job roles in SD, FI, MM, WM, PP and transporting them to QA and Production.
  • Ran system audits to detect deviations of established procedures, role mapping, and unauthorized changes to the SAP security and report finding to management.
  • Analyzed users and roles through GRC v5.3 RAR tool by running SOD reports in Transaction and Authorization level.
  • Supported BI S RS Auth info. objects in PFCG.
  • Secured SAP* user by changing the parameter in RZ11.

SAP Security Administrator

Confidential, Tualatin, OR

Responsibilities:

  • Created users, maintained User Master Data, established security policies and Procedures.
  • Managed security operations on SAP clients (SAP R/3, and CRM).
  • Ran reports in Virsa Compliance Calibrator from different functional areas to ensure all roles were compliant.
  • Supported Internal security audits in the production system every month.
  • Created Firefighter User, designed and assigned Firefighter roles, Firefighter logs activities, Critical operation Alerts and etc.
  • Worked on SAP Check Indicator Defaults, Field values, and maintained check indicators for Transaction codes using (SU24) for authorization objects.
  • Created & managed the scheduling of batch jobs working with T-Codes SU53 and SUIM for giving user access.

Hire Now