SUMMARY:

• Enterprise Security Architect, Manager, IAM Program with over 16 years of extensive experience in Identity and Access Management (IAM), Enterprise Security Architecture, Information Security Risk Management, Threat Risk Assessment (TRA), Business Analysis, Business Intelligence and SAP Application technology projects.
• Experience includes IT consulting experience, multi - vendor multi-year large scale multi-tier technology projects involving software development and maintenance of business applications; Ontario Public Service experience, Identity Management and Access Control; IT outsourcing, project co-ordination and offshore and onshore mixed development, delivery and implementation;
• Expertise in leading Enterprise IAM Programs/Projects as well as analysis, design and architecture of Custom Identity LifeCycle Security solutions. 7 Full-cycle IAM Projects.
• Strong business acumen and ability to deliver Security cost/benefit analyses and create business cases bringing strong understanding of good governance practices for Information Security
• IAM SME with hands-on experience in development of IAM Strategy: current state IAM Capabilities, Target State, Gap Analysis; IAM Road Map, IAM Program/Project Management
• IAM Security Policy, Standards and Guidelines development and enforcement
• Sound knowledge of corporate government, ministry, cluster standards; IAM Best Practices, SOX, PCI DSS, GDPR Compliance; extensive experience in the areas of Identity Management, Application Access Control, Segregation of Duty ( Confidential ), Internal Audit; Security Risk Management Framework, TRA (Threat Risk Assessment); Enterprise Security Architecture
• Self-directed, motivated top-performer, leader, strategist; strong analytical and problem solving skills,
• Excellent presentation, conflict resolution, communication skills

TECHNICAL SKILLS:

Platforms: Windows 2008/Vista/2003/XP/2000/NT, DOS, Mac OS

RDBMS: Oracle, DB2, MS SQL Server

Project Management Tools: Microsoft Project, Excel, PowerPoint, Visio, Word

ERP: SAP ECC 6.0 on UNIX/Oracle, SAP Solution manager 7.1, SAP NW Enterprise Portal, SAP BW 7.3, SAP Business Objects 4.0; Microsoft Dynamics EX

Programming Languages: ABAP/4, SQL, JavaScript, Java, HTML

Frameworks and Standards: CMMI, TOGAF, SABSA, Security Risk Management, HTRA, ERM, Confidential 27001/02, COBIT5, NIST

Security and Audit: SAP GRC, SAP RBAC, SOX, Confidential, PCI DSS, GDPRIdentity and Access management: Access Provisioning, Enrollment, Authentication, Authorization, RBAC, DAC Models, SAP SSO (x.509 cert),Privileged Access Management (PAM), Directory Services, LDAP, PKI, CIAM, Federation, SAML, OAuth, OpenID, MFA, Risk-Based Authentication, IDaaS

PROFESSIONAL EXPERIENCE:

Confidential

Enterprise Security Architect, Manager

Responsibilities:

• Managed IAM Assessment project utilizing CMM framework. Identified maturity state of current Confidential FMS IAM Capabilities, identified target state; conducted gap analysis.
• Managed subsequent IAM program projects which include: Business case Development for IAM vendor solution Implementation; raised cross-enterprise IAM awareness, gained senior management buy-in; developed IAM Program PKIs, conducted IAM vendor fit analysis among the following Confidential
• conducted feasibility analysis on the adoption of Microsoft Azure Cloud Services for IAM - IDaaS (Identity as a Service); managed procurement of CyberArk PAM Solution; managed relationship with key Confidential 
• Transformed organization Security Function from low-level technical function to a more mature efficient and cost-effective discipline:
• Adopted and enforced Security Risk Management framework - Risk Management approach to the security of information systems
• Led development of Confidential FMS Enterprise Architecture Security Principles
• Conducted TRA (Threat Risk Assessment) managing consulting resources utilizing PM and SME expertise in the areas of PCI DSS scope, HTRA framework. Project identified and remediated issues resulting in seamless PCI DSS Audit
• Assessed alignment of new projects and business initiatives with Confidential Strategic Business Objectives, Security Standards, Target State Security Architecture
• Collaborated internally and externally by establishing and maintaining key vendor relationships driving future state IAM security landscape and investment strategies of Confidential

Environment: Confidential FMS (Fare Management System), Role-Based Access Control (RBAC), Security Risk management, Active directory, Microsoft Azure Cloud IDaaS (Identity as a Service); CyberArk PAM; TRA; HTRA (Harmonized Threat and Risk Assessment), Enterprise Security Architecture, CMM, Project Management

Confidential

Corporate Project Leader, Manager

Responsibilities:

• Directed and managed project team of security analysts responsible for design and development of Security Access Control in Solution Manager systems. Couched security team members
• Managed team of internal and external ( Confidential ) consultants responsible for design and implementation of Access Control Matrix in SAP Business Objects system, Security Role matrix in Enterprise Portal; design and implementation of Security Role Matrix for SAP PBF solution in Business Warehouse System;
• Excelled in leading a team of Security Analysts providing support, incident response in the areas of Identity Management, User Access Provisioning, Access Control and System Audit in complex system landscape environment. s include:
• Reduced by 45% turn-around time for corporate user on-boarding by streamlining corporate user-on-boarding process; implemented strategy around Cross Application Business roles in multisystem environment reducing security administration costs by 75%
• Conducted Security Awareness Camp Confidential ns to sensitize associates to security requirements
• Implemented process of security review of systems to identify External Audit risks; produced and enforced system specific policy around SAP Security Patch day

Environment: Project Management, SAP ECC 6.0. SAP Role-Based Access Control, Identity Management, Systems Audit, Confidential, SAP Solution Manager application, SAP Enterprise Portal (ESS) Employee Self-Service, SAP BW/BI, SAP Business Objects, LDAP, Active Directory

Confidential

Project Team Lead

Responsibilities:

• Facilitated presentations and external meetings with business users, stakeholders and vendors
• Accepted project manager’s responsibilities managing team of analysts and developers responsible for design and development of custom Authorization Objects in custom ABAP Programs; RICEF Objects analysis and migration to the integrated environment
• Supervised and led re-design of the old Confidential -Canada SAP Security Roles to meet Confidential Position-Based Roles Security Requirement; took numerous initiatives to ensure closure of critical project gaps to meet project dead-lines: improvement of transport process, improvement of communication in a highly spread geographical environment
• Due to numerous initiatives and outstanding performance received senior management recognition and financial reward upon successful go-live

Environment: Project Management, SAP ERP Integration project, SD, MM, WM, QM, ASAP Methodology, ABAP, (RBAC) Role-Based Access Control Model, Microsoft Project

Confidential

Security Lead

Responsibilities:

• Provided support in the areas of Access Control, Incident Response: analyze d authorization assignments as well as segregation of duty conflicts ( Confidential ) utilizing program code debugging and system t race tools; developed new Security Business Roles; handled HR structural authorizations; developed Custom Authorization Objects; built Authorization checks in program code
• Implemented system audit controls utilizing SAP Audit reporting tools
• Effectively communicated security and risk-related concepts to non-technical and technical audiences
• Dramatically improved performance of Freights Payable (FP) application saving significant funds to Confidential -Canada business operations; received employee recognition for outstanding contribution
• Implemented several operational enhancements and innovative/creative support improvements to reduce support costs by 25%
• Employed and spread adherence to the best software testing practice that led to 95% of re-work elimination; received “exceeded expectations” level and financial recognition at the annual performance review

Environment: SAP ERP, Governance, Risk and Compliance (GRC), RBAC - Role-Based Access Control (RBAC), )SOX Compliance, Confidential, Access Control, Audit, SD, MM, WM, PM; Microsoft Project

Confidential

Off-shore Project team lead

Responsibilities:

• Directed and managed remote project team of 8 software developers responsible for development of Business Application Programming Interfaces (BAPI) for the Asset Hub Application
• Provided specialized technical expertise in the areas of SAP Information Security, Identity Management, Access Control and Secure Application Development.
• Produced Application Security Architecture Guidelines; enforced adherence to secure coding standards
• Designed application Security Access Control Matrix; Led access control matrix implementation team of 4 on-shore developers;

Environment: SAP security, Asset Hub Application development project; Information Security, Role-based Access Control Model, Java, WebSphere AS, SAP Enterprise Portal, PM, MM, HR

Confidential

SAP Consultant

Responsibilities:

• Performed analysis and study in the area of SAP Security Authorization Concept, Sarbanes Oxley Act (SOX).
• Facilitated JAD session and Lunch & Learn events
• As a part of Confidential 9000 and CMM task force, conducted routine Confidential 9000 Internal Audits (project and process audits) on 4 projects and participated in the company-wide pre-assessment audits
• Provided SAP technical support in the areas of PP, MM, SD, FI/CO during SAP ERP software upgrade projects at 3 Confidential clients; duties included modification of custom ABAP applications and interfaces, implementation of Online Service System (OSS) correction notes to ensure compatibility with new software release

Environment: SAP ERP application upgrade projects, Business Process Management, Business Process Modeling, MM, PP, SD, FI/CO, SAP Security Access Control, Internal Audit