SUMMARY:

• Over 7 years experience in strategic planning, implementation and systems security integrations, SAP Application Security, along with SOX compliance expertise.
• Well experienced with end to end Security concepts & GRC implementations that includes Analysis, Implementation/Upgrade, UAT, Cutover and Production Support.
• Design and implementation of Policies/Procedures and Change Management in adherence to Governance.
• Complete life cycle understanding of Security Incident Management, Risk Assessment and Vulnerability Assessment.
• Hands on experience with GRC upgrades from 5.3 to 10.X, & 10.0 to 10.1
• Configured and implemented all modules in GRC Access Control, Process Control 10.0 & 10.1.
• Extensive experience in SAP Security Administration - ECC 6.0, R/3, BI 7.x/3.5, HR, CRM, SRM, PI, Portal and Solution Manager Modules.
• Excellent communication skills, strong analytical and reporting skills, personal organization and interpersonal skills.

PROFESSIONAL EXPERIENCE:

Confidential, TX

SAP Security & GRC 10.1 Consultant

• Led the effort for SAP Security Role Redesign and designed the Security Architecture for the Finance, Merchandising, Buyers, Internal Audit and DC’s in the Organization.
• Identified improvements to address the Audit Deficiencies and SOX compliance by comprehensively analyzing the Current SAP Security setup and provided recommendations for the same.
• Gathered business requirements from each Org unit and provided a customized Rule Set which included custom Risks/Functions to suit the specific business needs.
• Pulled the Usage Reports using GRC via Success Factors and strategized the role-redesign for all the users.
• Helped the Business in understanding the importance of incorporating a Remediation Process and Mitigating control in GRC AC.
• Worked closely with the Internal Audit team at the time of assigning mitigating controls to the roles.
• Helped the internal Audit in understanding the importance of Single Conflicting T-codes and how it can be remediated/mitigated per SAP note.
• Educated the Business users on the importance of testing that was re-designed for security roles in order to comply with Audit requirements.
• Extensively engaged in troubleshooting/supporting of security role issues during the time of Hyper Care Period.
• Resolved a few of the existing Fire Fighter issues by working with SAP and implementing their recommended SAP notes.
• Worked on the MSMP Workflow Configuration, BRF+ and Function Modules for custom Workflow development.
• Established the automated SAP GRC 10.1 User Access review process.
• Met with Various Business Role Owners and educated them on the UAR approval process and its importance.
• Played instrumental role in onboarding SAP PC implementation at Confidential by educating key stakeholders such as the internal controls team and IT Director on the benefits of Process Control.
• Created a Prototype of SAP Process Control configuration to act as a ‘hub’ to provide audit trails and issue remediation management.
• Configured Process Control to ensure SOX testers are able to perform and document key controls activities and allow SOX control owners to sign off on key control activities.
• Extensively involved in the usage of MDUG tool for Data Migration in GRC Process Control.

Confidential, TX

SAP Security & GRC 10.0 Consultant

• Designed Security architecture for various teams including HR, PPM, SOLMAN, BW, MII, CRM, SCM, & EP
• Delivered the accompanying Security SOP and the guidelines document while acting as the single source for SAP Security SLAs and escalation procedures information.
• Identified areas needing immediate attention in the SAP Security and implemented process improvements for the same.
• Solely Driven the GRC 10.0 migration from GRC 5.3 for modules including Access Risk Analysis (ARA), Emergency Access Management (EAM), Business Role Management (BRM) & Access Risk Management (ARM)
• Extensively worked on configuring a customized rule set in GRC (Access Risk Analysis) catering to the business needs.
• Extensively involved in the Configuration of Automated User Provisioning workflows through Business Rule Framework (BRF+).
• Identified & uploaded role owners, approvers, mitigating controls & Fire Fighter ID owners.
• Implemented the Standard SAP workflow paths for New User/ Change User & Terminate User requests in Access Enforcer module.
• Designed the Security Architecture for the Manufacturing integration and intelligence (MII System) and presented how all the Roles can be transported to 200+ Plant Systems across the sites
• Identified and Designed the Non Production Security Roles for the MII System for the Project team
• Designed and implemented the SSO Configuration with SAML 2.0 and also the LDAP Connectivity.

Confidential, WA

SAP Security Support & GRC 10.1 Consultant

• Helped in creating Project Plan (MPP) for SAP system authorization, Compliance & Governance & Production support including individual task allocation, dependencies & outlook integration
• Rebuild of all Security Roles, breaking out Critical Financial Transactions and putting them into their own role as part of Sarbanes-Oxley Compliance.
• Configured & Supported EAM, Automated User provisioning, ARA & Role Management in GRC 10.1 Access Control
• Worked on the MSMP Workflow Configuration, BRF+ and Function Modules for custom Workflow development
• Created a Custom Rule Set with Org rules activated which can be tailored to Multiple Org units
• Configured CUA for a centralized User maintenance across the development systems
• Developed Security across multiple modules like ECC, GRC, GTS, BI and BPC for new Org units
• Completing a number of templates for documentation purposes including: As is Role Matrix, Business Function Group Matrix, Business Process SME Questionnaire, As Is and to Be Presentation for Workshops, To Be Process and T-code Grouping, Role Functional Specifications, and Test Plans.
• Created roles for Managers and administrators in Solman for Solution Monitoring Review logs in CUA using SCUL.
• Developed and Maintained Member access profile & task profile for new user.
• Project involved in implementation of SAP SCM APO application and integrating with core SAP R/3 and Mainframe MPS planning systems.
• Working with development and functional team reconfiguring the design by removing unnecessary dimension like Segment, Region and Project from OPEX application and accordingly to comply the changes in Reporting, security, logics etc.

Confidential, TX

SAP Security & GRC Analyst & Support

• Worked with Business Process Owners in creating a strategy in implementing CRM 7.0 security.
• Created and maintained Business Partners in the CRM system.
• Defined Business roles and implemented position based security assigning users to configured positions using PPOMA CRM.
• Good knowledge of user interface configuration in WEB UI
• Created business roles along with role config, transaction launcher, BI reports in CRM 7.0
• Well versed with contents of CRMC UI NBLINKS- work centers, work center link groups, logical links
• Supported implementation of Access Control, Super user Privilege Management, Risk Analysis and Remediation.
• Involved in post implementation activities- GRC upgrade to 5.3, Disaster Recovery
• Provided training and documentation to the audit and Global access provisioning team in Access Enforcer.
• Provided reports to the internal and external auditors and created custom audit roles based on audit needs.
• Worked with the various Business stakeholders in identifying risks, mitigation controls and approval workflows in consideration with current processes.
• Mentored the PMO and audit teams in viewing and analyzing reports.
• Involved in security upgrade of BW 3.5 to BI 7.
• Evaluated various implementation approaches including using RSEC MIGRATE, Automatic Generation and manually creating new authorization objects.
• Used RSECADMIN extensively to develop authorizations based on the characteristics and hierarchies identified during analysis.
• Formulated complex mapping documents to establish relationships between the InfoObjects, Analysis Authorizations and their respective roles.
• Used the Analysis tab of RSECADMIN extensively to simulate users running queries in BEX and used the Error logs to determine missing authorizations.
• Manually assigned Analysis Authorizations to users in RSECADMIN as well as in PFCG roles to ensure a lean user assignment approach that eliminates redundancies.
• User provisioning into the BOBJ clients (BI launch pad & CMC) & Xcelsius, Dataservices

Confidential, IL

SAP Security &Basis Support

• Performed printer setup more than 50 printers in production systems.
• Trouble shooting spool and fax issues in day to day maintenance for Go Live project.
• Performed local client copy, remote client copy and System Refresh.
• Performed RFC connections between SAP systems & third party tools.
• Support to the user’s based upon the ticket system and priority of tickets.
• RFC administration (ABAP, HTTP &TCP/IP Connections).
• SSO with Security Assertion Markup Language (SAML) implementation.
• Adding systems in SAP router & performed maintenance activities like start & stop SAP routers.
• Coordinated and Supported Go-Live for ECC, SCM, SRM and Solman Environments.
• Setup STMS and transported change request among DEV, QAS and PRD systems.
• Maintained current Transport Management System (STMS) and moving transport requests on weekends and after business hours.
• Implemented OSS notes and Corrections.
• OSS Remote Connection and Message opening and Working with SAP Support.
• Maintained and monitored back round scheduled jobs.
• Helped the team in Change Management for complete SAP Security Implementation.
• Was involved in implementation of SOX Controls and SAP Security Audit logs.
• Designing and supporting SAP security process for Web services.
• Was involved in implementation of Trusted RFC for SAP CUA Architecture.