PROFESSIONAL SUMMARY:

• 9+ years of Extensive experience as a SAP Security Architect & GRC Access Control Consultant in multiple SAP Implementations & Upgrades in fields ranging from High Tech, Health Care, Manufacturing and Media.
• Designed complete SAP Security Strategy and Project Plans for SAP Implementations and Upgrades including multiple ECC 6.0 implementations & Upgrades.
• SAP GRC Access Control - Expertise with all versions and components - Risk Analysis & Remediation (RAR/Compliance Calibrator), Compliant User Provisioning (CUP/Access Enforcer), SuperUser Privilege Mgmt. (SPM/ Firefighter) and Enterprise Role Mgmt. (ERM/Role Expert) on versions 3.x, 4.x, 5.1, 5.2, 5.3, GRC 10.0.
• Experienced with various SAP release versions including ECC 5.0 and ECC6.0 EHP(1-4) in various modules - HR,FI/CO,SD,MM,PP,BI/BW,CRM,SRM,XI, PI,APO
• Experienced in SAP HCM Security with sound knowledge of Structural Authorizations, PERNR-POS-ORG relationships, Contextual Solution, Indexing, tables including T77*, HRP*, PA*. Get Profile BAdi etc.
• SAP BW/BI Security - Implementations & Upgrades - BW 3.x to 7.30. Analysis Authorizations, Integrations with Enterprise Portal, Business Objects. BW-HR integration - structural authorization extraction with a custom solution for Contextual Structural Authorization scenario.
• Enterprise Portal Security - User Admin, System Admin, Content Admin and integration with R/3 and BI/BW, iView creation, content transports. Worked with LDAP, multiple LDAPs, AD for User Authentication. UME - User, Role creation & maintenance.
• Implemented Security at Program, Report, Table & User Exit level.
• Experience with Internal Controls, Audit Remediation and SOX compliance issues - identification, Security Re-design, remediation & methodology for Detective and Preventative Controls.
• Experienced in all phases of SAP implementations: Blueprint, Installation, Configuration, Implementation, Go-Live and Post Go-Live Support.
• Assisted in BI/BW data modeling, Object activation & development, user requirement analysis, go-live testing, end user training and support.
• Experience with Security Audits, SOX Section 404 compliance and Audit Information System. Used SAP audit transactions and configured audit and reporting through SM18, SM19 & SM20
• Experience with Central User Administration (CUA), Solution Manager, RI/XI, EP, Business Objects, Crystal Reports.
• Profile Generator (pfcg): designed, developed, tested and implemented SAP Security Roles, Profiles, and Authorizations & Value Roles for all the modules FI-CO, HR, SD, MM, PP, CRM, SRM, SCM and SAP BW\BI.
• Extensive knowledge of SAP Security concepts, User Maintenance, Tracing and Trouble shooting, User tables and SUIM reports.
• Detail knowledge of SAP Data Warehousing, transactions, authorization objects, and tables (AGR*, USR*, RSUSR*, RSEC*).
• Worked with Transports Management Systems (STMS, SE09, SE10 and SCC1).
• Experience in simulation, data cleansing & migration through eCATT & LSMW.
• Documenting Security Procedures & Training the end users & security personal.
• Excellent interpersonal and communication skills to interact with technical, management level personnel and customers.

PROFESSIONAL EXPERIENCE:

Confidential, Los Angeles, CA

SAP Security & GRC Consultant

Environment: SAP GRC 10.1 Access Control (ARA, EAM, ARM, BRM), SAP ECC 6.0, Enterprise Portal, SRM, SUS, BW 7.4, BPC.

Responsibilities:

• Business blueprint document for Access Risk Analysis & Role Remediation
• Landscape Strategy including plan for transports & dual maintenance during remediation
• Validate deployment for GRC components in GRC box & plug-in system
• Connectors - Physical, logical & cross-system
• BC Set Activation
• Business meeting with stakeholders for customized rule-set
• Review of customized rule-set (SoD Matrices)
• Role design for GRC box - GRC Admin, ID Owners, ID Controllers etc.
• Decentralized EAM; SPRO Settings in plug-in systems & Role design for FF ID, end-user, owner & controller etc.
• Post-installation & base-line configuration validation
• Redesign of Functional team roles
• Remediate critical risks identified by external audit.

Confidential, San Francisco, CA

SAP Security GRC & Controls Consultant

Environment: SAP ECC 6.0, GRC Access Control (5.3 & 10.0), Enterprise Portal, SRM, CCM, Xi/PI, EWM, BW 7.0 (with HR), SCM, e-Recruit, XMII, Solution Manager/ CHARM.

Responsibilities:

• involved review of 4000+ transactions in use, updating SU24 values according to new design.
• GRC 10 Access Control Upgrade (ARA, EAM & ARM)
• Risk Analysis Reporting for security changes
• Enterprise Portal Admin - Development of roles, groups & user admin.
• Meetings with business & functional teams for new requirement, GRC/compliance review, update security accordingly and migrating new development to Production
• System monitoring & maintenance support.
• Quarterly System refreshes

Confidential, Brisbane, CA

SAP GRC & Controls Consultant

Environment: SAP ECC 6.0, GRC Access Control (5.1, 5.2 & 5.3,10.0)

Responsibilities:

• GRC Access Control Blueprint & Architecture Design
• GRC Access Control Upgrade project plan
• Logical Systems
• Cross-Systems Analysis
• Setting up all Proof-of-concept scenarios

Confidential, Studio City, CA

Environment: SAP ECC 6.0, HCM, BW 3.5/7.0, SAP BPC, EP, SolMan, CUA, NetWeaver, euHreka.

Responsibilities:

• BW HCM Integration
• SAP BW & BPC Security Upgrade
• Structural Authorizations and extraction to BW system
• Design, Testing (HPQC), and Go-Live.
• Upgrade & Migration design: SU25, update SU24 values Analysis Authorizations
• Design, testing & Go-Live (migration of payroll from legacy).

Production Support

Confidential, Monroe, LA

Environment: SAP ECC 6.0, GRC 4.0, BI 7.0, SAP BPC HCM, EP, PS.

Responsibilities:

• Provided SAP Security and Basis planning, implementation, testing, and support for upgrade of R/3 landscape from 4.6C to ECC 6.0
• Responsible for all Security-related aspects of upgrade
• Assisted primary Basis consultant with many technical aspects of upgrade
• 700+ Roles with 40,000+ User base.
• Assisted in BI Security design and HCM integration
• Designed Road-Map for Upgrading to GRC version 10.0

Confidential, San Francisco, CA

Environment: SAP ECC 6.0, GRC 5.3, BI 7.0, SAP BPC, HCM, EP.

Responsibilities:

• Developed plans for Unit testing, Integration testing, End user testing as well as training, and most importantly Documentation of the process. (HP QC)
• Aligned User Provisioning with current method of using Confidential Active Directory DB.
• Secured Super Users e.g. SAP*, DDIC to avoid misuse
• Extensive use of eCatt & LSMW scripts for User and Role administration

Confidential, Oakland, CA

Environment: SAP ECC 6.0/4.7, GRC 5.1 sp2/5.3, BW 3.5/BI 7.0, SAP BPC, CUA, HCM, EP.rization roles. Developed test strategy for testing 100+ workbook roles. Also developed migration strategy for moving 1000+ production users from 3.1 production system to BI 7 production system.

BI Security Lead

Responsibilities:

• Transporting 4500 + roles across landscapes.
• SU25 to Upgrade the roles to new version
• Security Upgrade of 4100+ reporting roles from BW 3.1 to BI 7.
• Reviewed the redundancies, resulting in reduction of number of roles(1400+)
• Test Strategy for testing 100+ workbook roles.
• Extensive use of LSMW and eCATT scripts.
• Migration of 1000+ Production Users from 3.1 Prod to BI 7 Prod Box.
• Migrated the present Supervised Super user provisioning to Firefighter (SAP SUP)
• R/3 Security Development & Production Support.

Confidential, Memphis, TN

Environment: SAP ECC 6.0/4.7, GRC 5.1 sp2/5.3, BW 3.5/BI 7.0 and EP.

Responsibilities:

• Reviewed the HR & R/3 Security set up, and integrated it with BW 3.5 landscape. Reviewed the BI 7.0 technical upgrade and prepared for the security upgrade.
• SAP HR & R/3 Security review and integration to BW landscape.
• BI Security Lead - Upgrade & Consolidation from BW 3.5 to BI 7.0.
• BPC 5.1 SP01 & BPC 7.0
• Business Objects - Connecting the R/3 to BOBJ.
• R/3 Security Development & Production Support.