EXPERIENCE SUMMARY:

• 12 years SAP Security experience which includes the support and implementation.
• Worked on the security and controls implementation involving all major releases of SAP including ECC 5.0/6.0, VIRSA/GRC Release 5.3, 10.0 and 10.1
• Worked with clients during pre and post implementation of SAP in identifying and designing control points and preparing work documents in readiness for external audit assessments.
• Good experience in SAP R/3 Security Administration(4.7b, ECC5.0 and 6.0) with in - depth knowledge in designing and implementing SAP Security solutions, that includes Strategy, Role Definition, Design, Development, Testing, Transportation and Production Support.
• Worked on SU24 transaction making changes to proposal values and maintaining object and their values as per the requirements.
• Worked on CUA for User creation, Role assignments, locking and unlocking of users.
• Configured and Implemented GRC Access Control Suite 10.0.
• Administered and configured Access control SAP VIRSA/GRC 10.0 for the client and implemented SOD conflicts administration strategies and remediation.
• Proficient in GRC tools - EAM, ARA.
• GRC implementation, automation, upgrade experience with GRC RAR, CUP, ERM, SPM and integration with SAP GRC.
• Experience in creating and assigning FF ID’s, extracting FF logs.
• Strong capability in using CUP to use the workflow functionality to ensure a comprehensive and compliant change management process for risk control and maintenance.
• Experience in using CUP to configure workflow for User Access Review and User SoD Review.
• Setting up role creation methodology, condition group and role approvers using ERM.
• Documentation in various security processes, procedures, auditing, knowledge transfer and an active team player.
• Independently managed the assigned project/engagement with minimal oversight/guidance from the manager.
• Strong communication skills with the ability to communicate to all levels of the business.
• Excellent interpersonal and team working skills, combined with good decision making capabilities and the ability to multi-task.

TECHNICAL SKILLS:

Domain: SAP R/3 4.7, ECC6.0,NWBC,BI,HCM,APO,SRM,Portal&, Solution Manager7.1, SAP Net Weaver AS ABAP 7.0 (GRC),VIRSA,GRC5.3 and GRC10.X Access Control.

Programming Languages: C, C++

Operating System / ERP Version: WIN NT/2000/2003

Tools: / DB / Packages / Framework / ERP Components: Afrax,CSI SOD Report toll,Trackit,ITARS,ITSM,Solution Assets Library and IRISH.

Hardware Platforms: Intel Series

WORK EXPERIENCE:

Confidential, New Jersey

Responsibilities:

• Gathering requirement and implement the same.
• Tickets distribution to team.
• Identifing gaps and fulfill the requirement.
• Extract audit related reports.
• Effectively working on change management tasks.
• Update the project deliverables to manage up to date.
• CUA configuration for newly created systems.
• Monitirign on cutover plans duiring Disconnecting and reconnecting CUA system.
• Role modifications based on Security upgrade steps.
• T-Code assignments based on proper approvals from the business.
• Password resetting and reactivation of Users.
• Analyze and fix the missing authorizations.
• Transporting the Role changes modification with Rev-Trac.
• Working on GRC workflow tasts for user creation.
• Eliminate risk and compliance via GRC tool.
• Working with the team and business process owners to create Fire fighter ID (FFID) controllers, administrators and Owners.

Technology & Tools: SAP ECC 6.0 Enhancement Pack 8. GRC 10.1. Remedy Ticketing tool.

Confidential

Responsibilities:

• Identify and document discussed business requirements gathered through design sessions conducted with CICP GRC stakeholders for ARA, EAM, ARM and BRM.
• Describe the process design for meeting the identified requirements.
• Document the design decisions, which will serve as the basis for system configuration and testing.
• Sod risk matrix and Critical access developed through discussions with management and business process owners.
• Document discussed on D Confidential source for User Details.
• Troubleshoot issues pertaining to configured ARA,ARM,EAM
• Evaluate any support notes (OSS) for application enhancements or fixes issued by SAP
• Work with basis teams to ensure timely archiving of SoD results table to ensure performance is not affected.
• Activate the application in client
• Activate the required ICF services for AC.
• Activate the required BC-Sets for AC.
• Activate Common workflow.
• Maintain the global configuration settings and AC parameters
• Maintain connectors and connection types for ECC, SRM, Portal
• Assign the actions to a connector group
• Maintain Connection Setting (AUTH,PROV,ROLMG,SUPMG)
• Rule set configuration and Mitigation control ids Preparation.
• Background jobs are scheduled in GRC to keep the user, roles, and profile d Confidential in sync with backend SAP systems.
• Identify and document discussed critical roles and profiles that will be excluded from risk analysis.
• Creation and Maintenance FF ids for ECC, SRM.
• Mapping FF owners and controls &Reason codes in NWBC.
• Resolving EAM configuration related issues.
• Maintain user provisioning configuration setting in IMG (i.e. Maintain Number Range Intervels,Maintain End user Personalization,Provisining settings, Password self-service, Activate end user logon)
• Effectively using BRF+ and MSMP for standard work flow configuration for User creation, User change, FF Assignment, FF Log review etc.

Technologe & Tools: SAP ECC 6.0 Enhancement Pack 8. GRC 10.0/10.1

Confidential

Responsibilities:

• Modified existing as well as created User accounts and User Groups.
• Maintained User Master Records and terminating the Users.
• Password resetting and reactivation of Users.
• Created and maintained Derived and Composite Roles.
• Assign authorization groups to Users.
• Analyze and fix the missing authorizations.
• Using Transport Management System for Transporting Roles and T-code changes.
• Worked on portal replacement to Fiori UX.
• Worked with Fiori configurations related to SAP Gateway/Frontend/Backend server components.
• Worked with Fiori Launchpad setup and configurations.
• Comprehensive use of profile generator to generate roles and assign to end users.
• Role modifications based on proper approvals.
• Prepare test user IDs in order to facilitate business/project user testing in non-production environments.
• Created temp roles to fix the issues during UAT in quality system.
• Implemented Structural Authorizations by Evaluation path method in the Org Structure.
• Updated 105 Record using PA30 for subtype 0001.
• Troubleshoot security/authorization related problems using ST01 and SUIM.
• Day to day technical support and resolution of Security issues.
• Performed trouble shooting using SU53 and ST01 to find the missing authorizations during Go-Live phase.
• Worked closely with the ABAP and functional team to identify security requirements and help them guide through the requirement.
• Performing various security housekeeping tasks such as checking if any users have access to SAP ALL and SAP NEW, inspecting.

Technology & Tools: SAP HR Security, Fiori, ECC 6.0

Confidential

Responsibilities:

• User administration & managed user login parameters and password parameters.
• Created and maintained Derived and Composite Roles.
• Working with system profiles and various parameters to ensure the servers are up and running properly.
• Comprehensive use of profile generator to generate roles and assign to end users.
• Find out missing Authorizations using SU53 report from the user.
• Troubleshoot security/authorization related problems using ST01 and SUIM.
• Analyzing missing authorizations based on screen shot sent by the user.
• Day to day technical support and resolution of Security issues.
• Implement standards for Authorization Groups, Authorization objects & Customized Transaction Codes.
• Worked with tables such as AGR TCODES, AGR USERS, and AGR DEFINE etc.
• Performed post Go live activities like Production support, Documentation and Knowledge transfer.

Technology & Tools: ECC 6.0

Confidential

Responsibilities:

• Created and uploaded custom rule set in RAR GRC 5.3.
• Worked with business managers in changing SAP roles and ensuring appropriate work flow in GRC Compliant User Provisioning (CUP).
• Reviewed critical and sensitive authorizations, implementing improvements to meet audit requirements, made suggestion for security policies and standard/best practices.
• Customized Role creation for SOX audit tool SAP GRC RAR for action and permission level SOD violations in roles for various business processes and functions.
• Recommended and created mitigation controls in SAP GRC.
• Configured Fire Fighter to capture audit logs and trigger alert.
• SAP GRC SPM: Assign firefighter Id's to support users in order to resolve provisionally broad issue.
• Worked with the SAP Security team and business process owners to identity Fire fighter ID (FFID) controllers, administrators and Owners and mapped these in SAP GRC 10.0.
• Creating new User accounts and User Groups.
• Maintaining User Master Records and terminating the Users.
• Password resetting and reactivation of Users.
• Assign authorization groups to Users.
• Comprehensive use of profile generator to generate roles and assign to end users.
• Role modifications based on proper approvals.
• Restricted and maintained critical authorization objects such as S TABU DIS, S DEVELOP and S PROGRAM.
• Configured and maintained Central User Administration (CUA).
• Monitored SOD conflicts at user lever and Role level.
• Make use of Role Creation Role Change Request form in order create a new role or make changes to an existing role; Change Request Board approvals mandatory for transports. Simulate the role using GRC before moving the changes to quality environment.
• Interaction with Business Analysts to obtain clarifications about requirements.