PROFESSIONAL SUMMARY:

• 17+ years of overall IT Experience and proven professional expertise in SAP application, communication & infrastructure security,
• 12+ years of experience on SAP 3.1 - ECC 6.0 and SAP HR releases. Area of focus is in SAP security, SAP security landscape upgrades, SAP system monitoring, troubleshooting system performance related issues (SAP Basis), and technical change management (SAP Transport Management System).
• Experienced with multiple SAP security lifecycles (Analysis & Conception, Implementation, Quality Assurance & Tests and Cutover)
• Experienced in SAP Systems - S/4 HANA, FIORI, ECC 6(Core Modules), SAP GRC 10.1, BI/BW 4.0 (Analysis Authorization), HCM (Structural Authorization), Portal, CRM 6.0/7.0, SCM (APO), PI/PO, BPC
• Experienced in supporting/leading internal/external audit teams in various processes, reports, controls & risks
• Worked on multiple integration projects between SAP and non SAP lines of business.
• Implementation, Upgrade & Production Support of several SAP systems involving multiple modules, from system design stage to a "Go Live" and production support stage
• Proven experience in ability to adapt quickly and work in teams, a can-do ability to take charge when necessary and drive the work to completion
• Excellent communication skills, strong analytical and reporting skills, personal organization and interpersonal skills
• Versed in SAP HANA, SAP NetWeaver, AS Java administration, Enterprise Portal security administration, GRC Access Control 10.1, and SAP Solution Manager.

WORK EXPERIENCE:

Confidential, Nashville, TN

Senior SAP Security/GRC Admin

Responsibilities:

• Supported upgrade and configuration of Confidential, role maintenance, and firefighter for North America SAP systems (Symsoft Usage Analyzer, Risk Analyzer, Emergency Access Manager, Workflow, Transport Manager)
• Documented Confidential to-be process for North America
• Responsible for day-to-day support of all North America SAP ECC 6, S/4 HANA & SAP FIORI user/role management issues
• Documented and configured SAP System audit policies and controls
• Responsible for internal/external audit remediation and compliance

Confidential, Nashville, TN

Senior SAP Security/GRC Admin

Responsibilities:

• Supported upgrade and configuration of SAP GRC 10.1 user provisioning, role maintenance
• Administered SAP GRC BRM for Confidential
• Documented SAP GRC 10.1 to-be process for North & Confidential
• Responsible for day-to-day support of all Confidential SAP ECC 6 & GRC user/role/eam management issues
• Documented and configured SAP System audit policies and controls
• Responsible for internal/external audit remediation and compliance

Confidential, Short Hill, NJ

Sr. Associate / Enterprise Solutions

Responsibilities:

• Identified and Documented Confidential & Application controls (Test of Design & Test of Effectiveness) leveraging evidence provided by client in the areas of: Basis, Security, GRC, and Change Management.
• Inspected relevant audit controls:
• Programs and Data Controls (authorization and segregation of duties review)
• Program Change Controls (program changes are authorized, tested, migrated properly, developer/migration segregation of duties review)
• Program Development Controls (new system/conversions are authorized, tested, migrated properly)
• Computer Changes Control (production batch job authorization review and batch job processing review, system backups review, dba/os authorization review)
• Financial relevant Application Controls (journal entries, balance sheet, etc)
• Conducted audit findings review meetings with business process owners
• Conducted audit closing meetings with executive level staff and business process owners
• SAP security parameter configuration review
• SAP GRC configuration, production support, and ruleset updates
• Conducted IT developer / migration controls review
• Documented data flows for financial relevant SAP interfaces and SAP batch jobs
• Conducted Segregation of Duties review
• Reviewed and provided observations and recommendations on the Company-provided project approach that was being applied to certify containment and appropriate remediation in line with legal and regulatory requirements.
• Provided observation of security incident analysis and SAP application and system analysis.
• Conducted Security Review that included the capability to execute sensitive transactions, capability to view sensitive data and review for known security leaks
• Confirmed Merck COMET program is following Merck SDLC (protocols, summaries, approve testing)
• Confirmed Merck internal application controls are SOX compliant
• Confirmed Data Privacy and Information Security is in compliance with Merck standards
• Confirmed Document management compliance with Merck records retention policies and procedures
• Provided Production support (audit coordination, Fire Fighter approvals, Segregation of Duties approvals, change management quality approvals, regulatory investigations)
• Finalized the overall OMP+ Authorization design
• Mappped OMP+ application profiles to DSM Corporate standard roles
• Documented Role descriptions for roles: Lab Scheduler, IT Key User, and Business Key User
• Updated Segregation of Duties (SoD) matrix
• Documented differences between the conflicts in the OMP+ application SoD matrix and the Corporate SoD matrix (based on the mapping).
• Updated and completed configuration controls (incl. business rule requirements), authorization controls (based on design), reporting (high-level reporting requirements for OMP) procedural controls (input for the process flows & work instructions).

Confidential, Florham Park, NJ

SAP Technical Consultant

Responsibilities:

• Upgraded Client PIC 3.1H SAP security landscape to ECC 6.0.
• Analyzed Impact of SAP ECC 6.0 to current PIC SAP Security Model: List of roles impacted with new security authorization objects from ECC 6.0.
• Developed a Plan to Address SAP ECC 6.0 Security upgrade impact: Approach to remediate impacted security roles during the development phase, including leveraging existing roles to recreate new security roles and user IDs.
• Created Plan to Test Security Approach to perform unit testing and integration testing of security functionality in ECC 6.0.
• Developed high level security roles and user IDs that allowed project team access to the upgraded Sandbox/Dev environments.
• Leveraged Office Associate Cranberry tool to Develop, code, test all necessary rules, reports and functionality to accurately load assigned Data Conversion Objects within the BOA Cranberry tool.
• Participated in all SAP data loads for integration or mock testing relating to objects and provide necessary load result documentation
• Completed/addressed open defects, issues, questions which would impede or limit the development of the SAP data object
• Responsible for SAP TMS change management space as well as SAP user administration.
• Monitored SAP landscape issues
• Executed Client/System copy post steps
• Maintained/Updated SiRs/Documentation on SAP Solution Manager
• Provided Taxware application support
• Troubleshot SAP printer issues
• Created/Troubleshot RFC issues
• Managed SAP batch job requests (created/deleted/troubleshot)
• Troubleshot SAP e-mail issues (transaction code: scot)
• Administrated SAP user provisioning via CUA (central user admin)
• Managed SAP batch job requests (created/deleted/troubleshot)
• Worked with international delivery center to provide client with off/near shore benefits
• Determined SAP composite roles or job functions to assign to SAP user based on requested SAP transaction codes and job responsibility
• Analyzed authorization failures using SU53's submitted by SAP client end-users
• Worked with clients SAP Basis team and client end-users to resolve SAP security issues down to value level for authorization objects
• Assisted in SAP security planning, including removal of job functions from SAP user id's per job function and owner requests (SOX compliance)
• Wrote test scripts and tested them out for the validation of the Supplier Relationship Management Enterprise Buyer Professional system
• Logged and troubleshot SIR's upon completion
• Configured approval and spending limits for end users
• Helped review training material for EBP end users

Confidential, Franklin Lakes, NJ

SAP Production Support Team lead

Responsibilities:

• Performed troubleshooting of SAP navigational issues and performance issues in APO 3.0A (Advanced Planning Optimizer), BW 2.0B(Business Warehouse - Business Explorer and Analyzer), SAP R/3 4.0B Modules FI/CO/PP/PM/MM/IM/WM/SD, SAP Security and Basis issues - all through SAP 4.6 GUI & SAP 6.2 GUI
• Performed troubleshooting of 15 - 20 calls per day
• Used Peregrine Service Center Ticketing System 5.0 for call documentation, escalation and resolution - exported Ticket Status Report to MS Excel 2000 for SLA (Service Level Agreement) reporting purposes
• Troubleshot SAP Business Warehouse End User Toolsets
• Level 1 & 2 support of BD SAP system
• Help Desk Mentor - trained team of 3 Help Desk Analysts on troubleshooting SAP, using ACD system, and documenting/resolving issues
• Worked with Basis and Security Teams to provide users with quick turnaround and resolution
• Conducted phone screen interviews for vacant positions within Enterprise SAP Support team
• Wrote weekly status reports to manager for monthly reporting purposes

Confidential, Omaha, NE

SAP Help Desk Analyst / production support

Responsibilities:

• Trained and supported a team of 35 analysts on Remote Feature Activation (RFA) application for Confidential Definity systems and IP600 software
• Troubleshot FET (feature extraction tool) and LIT (license installation tool) issues on Confidential switches
• Troubleshot internal client and help desk problems via e-mail and/or phone calls daily
• Logged all issues in HP Openview ticket system database for audit tracking purposes
• Supported 35,000 users worldwide on SAP 4.6 HR Module
• Provided technical support for Confidential proprietary applications for 35,000 users Worldwide including XMS, Web Req, Business Partners, RFA R10, Merlin Configurator, Confidential Direct
• Administered user account administration of SAP H2P, I2P, B1P, B2P, F2P, K2P boxes
• Troubleshot Internet Explorer 6 configuration issues on clients desktop/laptops running Windows Operating Systems
• Troubleshot RFA R10 license issues for Central and South America countries
• Translated important documentation from English to Spanish

Confidential, New Brunswick, NJ

SAP Security Account Administrator / production support

Responsibilities:

• Created, modified and deleted SAP 3.1 accounts of 38,000 users for upgrade to SAP 4.6
• Troubleshot client and help desk problems via e-mail and/or phone calls
• Created Windows NT 4.0 and Novell NetWare 5.0 user accounts
• Created and administered GRAS, Metaframe, VPN and Netscape e-mail accounts
• Created and managed active directory rights and access to shared areas on the LAN/WAN within Novell
• Worked as part of a team of 18 people on the SAP MM, FI/CO modules and its E-commerce applications like Easy Req and IBM T&E
• Provided help to 18,000 clients with problems related to Financial Shared Services
• Assisted employees world-wide with SAP R/3.1, Manugistics, Demand and Supply Chain Management problems
• Troubleshot printer problems using Dazel in a Unix environment
• Assisted remote sales force with laptop issues
• Tested and installed applications to remote users
• Working knowledge of Lotus Notes, CC:Mail, Novell, Windows NT and IBM Expert Advisor, BMC Remedy, DataFlow ticket system, RAF (Request Access Form), and Tivoli Management Software