SUMMARY:

• 11+ years of experience as SAP Security Consultant.
• Worked on various development & support projects with extensive knowledge in SAP ECC, HR, BW, MDM, MDG, CLM and GRC Security.
• Defined Security strategies during Business blueprint phase and worked with functional, technical teams and business analyst to create Role Design matrix as per job responsibilities defined for users.
• Expertise in preparing Security plan, timelines and effort estimates for Security development work
• Worked with Igate Technologies (now known as Confidential ) for client Confidential . at Philadelphia, PA for one year for HR Redesign project and for another client Confidential & Confidential . at Princeton, NJ for one and half year as Technical Lead for Security redesign project.
• Currently working with Confidential for Client Confidential at Findlay, Ohio as Technical lead for development as well as support projects.
• Ability to manage and work with various teams located across time zones
• Extensive experience of GRC 5.3 and GRC 10.1 (EAM & ARA)
• Good knowledge of Security audits, SOX Section 404 compliance
• Expertise in creation of eCATT scripts
• Extensive experience with best practices using SU24
• Excellent team leader with ability to perform individually and guide team members for critical issues with good interpersonal relations and strong communication skills

TECHNICAL SKILLS:

ERP Tools: SAP R/3 4.6C, ECC 6.0, HR, BW, CRM 7.0, GTS, PLM, GDW, SCM, SRM, MDG, MDM, SNP, MDM console, BPC, BOBJ

Tools: GRC 5.3, GRC 10.1, New Scale Request Center, Mercury Quality Center, MAXIMO Start Center (Requesting tool from IBM), Service NOW, Approva - bizrights, Remedy, PPM, CLM

PROFESSIONAL EXPERIENCE:

Confidential

Technical Lead

Tools: SAP ECC, BW, MDM, MG, SRM, SNP, BPC, MDM Console, CLM, SUN IDM, Oracle IDM

• Working as Team lead to analyze the issues and resolve them in timely manner.
• Experience in Design, Developing, Testing and Implementing SAP Security Roles for various landscapes using the SAP Authorization Concept using Profile Generator tool (PFCG).
• Full trouble shooting support for the user authorization failures in all SAP applications and resolving the Security issues and support in integration testing of Roles/Profiles.
• Good knowledge of SU24 for maintenance of authorization objects in transaction base.
• Creation and Modification of User Master Records, Test IDs for Projects and End Users.
• Creating eCATT scripts to automate lengthy tasks like Mass Role change, Mass user creation, password reset, updating organization values etc…
• Handling the addition of custom transactions into SAP roles
• Analyzing authorization issues using SU53 Reports and ST01
• Handling critical authorization related issues, identifying and prototyping solutions with closed coordination with functional team & Business Leads to speed up resolution.
• Working with IDM team to set up Enterprise and Functional roles for newly created SAP roles in Oracle IDM
• Using GRC ARA for Risk analysis at User and Role level, Creation and modification of Risk ids, Function ids, Rule set generation and transportation
• Using GRC EAM for FFID configuration and maintenance
• Creation of new Risks, Function ids, updating GRC Ruleset
• Analyzing and Resolving SOX Audit issues
• Extensive knowledge of CLM Security concept
• Good knowledge of BPC and MDM console security
• Extensive knowledge of BW security - Creation and Modification of Analysis authorizations, Authorization trace using RSECADMIN
• Extensively using SCC1 to ‘copy client’ profiles to support test modifications.
• Mentoring team members for process changes and to resolve critical issues
• Creating documents for process changes and critical issues.
• Worked as Key resource during Implementation and planning of project.
• Gathered business requirements by working with Project teams, Business analysts and Functional teams for design of new roles
• Designed and implemented Technical roles in respective SAP systems based on new functionalities
• Analyzed and resolved authorization issues during Integration testing and UAT
• Provided technical support during Go-live and after Go-live of project and analyzed & resolved the issues with appropriate approvals,
• Worked with IDM team to set up newly developed roles in Oracle IDM.
• Prepared design documents for each project and shared with team for future reference.
• Gathered business requirements by closely working with CLM functional and business users.
• Designed and implemented Security profiles, groups, Roles in CLM system to restrict access as per their workflow setup
• Created additional security elements to restrict access as per business requirement

Confidential

Technical Lead

Tools: SAP R/3, ECC, PLM, SCM, GDW

• Managed team of 5 members and worked on prioritizing tasks and prototyping solutions for quicker resolution.
• Experience in Design, Developing, Testing and Implementing SAP Security Roles for various landscapes using the SAP Authorization Concept using Profile Generator tool (PFCG).
• Expertise in SAP GDW to analyze and resolve critical authorization issues.
• Full trouble shooting support for the user authorization failures in all SAP applications and resolving the Security issues and support in integration testing of Roles/Profiles.
• Extensive knowledge of SU24
• Creation and Modification of User Master Records, Test IDs for Projects and End Users.
• Creating eCATT scripts to automate lengthy tasks like Mass Role change, Mass user creation, password reset, updating organization values etc…
• Handling the addition of custom transactions into SAP roles
• Good knowledge of SU53 and ST01 for analyzing authorization issues
• Expertise in analysis and resolution of BOBJ security
• Checking for Segregation of Duties (SOD) issues and mitigating using Approva system.
• Analyzing and Resolving SOX Audit issues
• Preparing Monthly status report with coordination from Onsite and offshore team that need to be presented to Client.
• Creating documents for process changes and critical issues for future reference
• Worked as Key resource during Implementation and planning of project.
• Gathered business requirements by working with Project team for Project planning and updating design of Roles,
• Created technical roles for new plants
• Analyzed and resolved authorization issues during Integration testing and UAT
• Worked at client location during Go-live and after Go-live of project and analyzed & resolved the issues with appropriate approvals,
• Worked on the cleanup activities such as analyzing new Redesign roles for user, updating user’s authorization with new roles and removing old roles from user accounts
• Worked with BTSO Team to analyze and mitigate SOD violations in Approva system.
• Worked as key resource at onsite for Implementation, planning and execution of project.
• Worked with Project and Support/delivery team for initial requirement gathering of IT & Business roles
• Designed IT & Business Support roles to meet business requirements while reducing SOD issues
• Created new roles for IT Team considering special requirements during Hyper care support for various development projects.
• Worked with Business/Role owners to redesign Business roles as per requirement gathered from Business and Project team and also to recertify user access in Production environments.
• Mitigated SOD violations for newly created composite roles and existing technical roles with help of BTSO team.

Confidential,Philadelphia, PA

Production Support

Tools: SAP R/3 ECC 6.0, GEMS (HR), BW, CRM, LSO, GTS, APO

• Performing PFUD activity on daily basis to check if authorization profiles are generated for all roles and user comparison is done for all the roles etc… in all systems (R/3,BW,CRM,LSO,GEMS,SCM)
• Creating eCATT scripts to automate lengthy tasks like Mass Role change, Mass user creation, password reset, updating organization values etc…
• Experience in Design, Developing, Testing and Implementing SAP Security Roles and Authorizations for various landscapes using the SAP Authorization Concept using Profile Generator tool (PFCG).
• Full trouble shooting support for the user authorization failures in all SAP applications and resolving the Security issues and support in integration testing of Roles/Profiles.
• Good experience of SU24 for maintenance of authorization objects in transaction base.
• Creation and modification of user master Records, Test IDs for Projects and end users.
• Resolving tickets created in Request Center Requests (RCR) and ISM MAXIMO by the different customers.
• Weekly Activities (Separation of inactive users from SAP, HR New/Change hires activity)
• Month end activities (Analysis for expired role assignments, inactive users and clean up based on process)
• Managing queues of ticketing tools such as GRC Access Enforcer, Request Center, MAXIMO and assigning same to team members based on their seniority and complexity of issues.
• Handling addition of custom transactions into SAP roles
• Providing temporary Access, Emergency Access and Configuration Id’s based on request.
• Creating transport requests for various Roles and table entries maintained as per Project requirement
• Using SU53 Reports and ST01 to analyze authorization issues
• Handling Critical Authorization related issues with closed coordination with functional team & Business Leads
• Mentoring team members and organizing training within the team member to upscale the performance.
• Worked as GRC administrator for Access Enforcer which includes cancelling request, Changing/assigning approvers, uploading new roles/Positions, creating new functional areas etc… in the GRC Access Enforcer.
• Worked on GRC VIRSA Access Enforcer for role authorization and User Creation.
• Checking for Segregation of Duties (SOD) issues using Compliance Calibrator
• Worked on Plant analysis requests to add new plant and its associated codes such as Sales ORG, Company code, TPP, Shipping point, Cost center hierarchies etc in appropriate roles in SAP system.
• Working to mitigate SOX Audit issues.
• Completed various projects such as China Payroll Project, Stock Admin Project, HR Security & Redesign Project, E-Recruiting Project, R3 Upgrade Project, BI Upgrade Project, BI Realignment Project, GTS Project, OMEX Project.
• Worked as Key resource during Implementation and planning of project. Conducted meetings with Project team for Project planning and updating design of Roles,
• Worked with ABAP and Functional teams for identifying the key areas for restricting user access via transaction, object level or PD profile level
• Created new single roles and composite roles as per new business requirement.
• Worked with Functional team and Testers to test authorization for newly created roles,
• Analyzed and resolved authorization issues during Integration testing and UAT,
• Provided support during the Go-live and after Go-live of project and analyzed & resolved the issues with appropriate approvals,
• Worked on the cleanup activities such as analyzing new Redesign roles for user, updating user’s authorization with new roles and removing old roles from user accounts, created new Functional areas in Access Enforcer and assigned appropriate Approvers to Roles & Positions.
• Scheduled training for Role approvers regarding the process to approve AE requests.
• Prepared documents related to authorization of HR Redesign Project for future references.
• Won dream team award for Confidential & Dwight project.
• Received appreciation and certificate from GTS Project team for working as key resource and resolving authorization issues in time intensive deadlines.
• Received appreciation from DOW client for successfully completing HR Redesign project which helped to reduce authorization issues to greater extent.
• Received appreciation from MPC client for learning new modules and successfully completing various projects, providing insight of authorization concept and reducing audit issues