SUMMARY:

• Confidential is an innovative, tech savvy and results - oriented IT professional with over 5 years of demonstrated experience in SAP Security, Governance, Risks, and Compliance implementation. He is an accomplished SAP Security and Controls professional with an astute understanding of business process, project operations, systems design, implementation, training and delivery of high quality ERP/SAP security and GRC system solutions in various industry from Manufacturing, Healthcare, Retail, and oil & Gas etc.
• Confidential possesses a strong leadership quality and a proven planning and organizational expertise couple with extraordinary interpersonal skills. He is seeking a technology savvy and robust organization where SAP Security and GRC Specialization are held high and these skills and my exceptional experience will create a powerful and engaging value proposition.
• Experience in Security supporting and maintenance of SAP ECC 6.0, 5.0, 4.7, HANA and R/3 systems with the integration of GRC 10.0 ARA, and EAM
• Expansive knowledge in supporting security, authorization processes, and good understanding of the integration points across various SAP modules(FI,CO,MM,PP,SD,HR and SCM)
• Experience working on end to end business process with specialization in Procure to Pay (SAP PO/ AP/GL), Order to Cash (SAP MM/SD/OM/AR/OTC), Record to Report (SAP GL/FI/CO)
• Extensive knowledge in use of standard administration tools such as profile generator (PFCG) for Authorization Profiles/Role maintenance to either create or troubleshoot (Single/Master, Composite and Derived roles). And User Administration SU01/SU10 (mass/single user creation and maintenance)
• Expansive experience with resolving ticket issues and troubleshooting security authorization problems while adhering to Service Level Agreements (SLA)
• Ability to translate business requirements into functional specifications and system designs.
• Sound knowledge of SOX and SOD requirements in respect to SAP access.
• Excellent team player with great ability to troubleshoots workflow issues and liaise any technical issue to the Basis, SME’s team, and ABAP developers.
• Highly approachable, enthusiastic individual with excellent communication skills. Analytical mind with the ability to think clearly and logically, with good attention to details.
• Sound knowledge of assigning roles to a user and multiple users to role/s.

TECHNICAL SKILLS:

SAP Skills: SAP Security FI, CO, GRC AC 5.3/10.0

SAP Version: SAP R/3 ECC 6.0, 5.0, 4.7, 4.6C

SAP Specialization: SAP R/3 Security, CUA, Authorization, Transport, SOD, and Profile Generator

Operating Systems: Linux, UNIX (Solaris, AIX, HP-UX), Windows Server 2000/2003)

Databases: Oracle 10g, MS SQL Server 2005

Other Tools: FTP, AS2, PHP, VMWARE, QTP, CVS, Remedy ARS, Visio, SharePoint, Primavera, EMR Systems, MS Office, MS Project 2010, Primavera P6, MS Office 2010(Excel, Word, PowerPoint).

PROFESSIONAL EXPERIENCE:

SAP Security Consultant

Confidential

• Implementing SAP Security which includes end to end application security of user and management per the standard need of client, i.e. User creation and troubleshooting by leveraging (SU01 and SU10 for Single and Mass users respectively). Working with profile generator (PFCG) to create Master/Single, Composite, and Derive roles, also troubleshooting the same leveraging (SU53/ST01)
• Assisting end user in creating naming conventions that best suites business process and adhere to SOX and SOD compliance.
• Working as part of remediation team and assisting in elimination of Segregation of Duties (SOD) conflicts.
• Gathered business requirement on the to-be role structure and provided guidance and best practice remediation and mitigation on risks identified.
• Migrated custom roles using transport and/or CAT script to various landscapes/clients per change management and testing guidelines.
• Managed user access provisioning and de-provisioning including troubleshooting user related issues like password reset, account locking and unlocking etc.
• Worked on special assignments to fulfill Audit requirements such as SOD, Password control, Documentation of standards.
• Design Roles based on approved functional and technical design document and worked with SMEs to validate the configurations.
• Assisting business owner in determining training process that best suite end users, planning implementation, and support requirements.
• Developing, maintaining, and controlling the access of the project team in all environments.
• Liaises with ABAP, Basis and SMS’s team to achieve organizational goal.
• Locking and change the validity date for expired users, monitoring and controlling active users.
• Supporting SME and UAT testing team by troubleshooting security related issues using SU53 and/or ST01 as needed. Assigning additional roles to new and existing users after approval. Analyzing missing authorizations base on screenshot sent by users, also optimizing authorization checks by utilizing SU53 and system trace ST01

Lead Epic Security Analyst

Confidential, Toledo, Ohio

• Participated in full cycle implementation of Epic system.
• Assisted in approving and generating all User accounts within Epic EMR system.
• Responsible for building users and roles, designing note templates, and assigning various users to appropriate role with Epic EMR system
• Attended project meetings and suggesting simple effective workflow that will enhance documentations in hyperspace.
• Coordinating resources for adequate and effective support of clients during go live.
• Assisted with pre-conversion readiness by testing Ambulatory, CPOE and ASAP Epic modules for go live readiness.
• Assisted with tones of medical chart abstraction, i.e. transferring data from old system or paper chart in Epic system
• Trained and assisted End users to smoothly navigate with the system.
• Troubleshooting login issues and system glitches, providing assistance in lodged issues ticket beyond navigating problems.
• Contributed to go live evaluations.
• Worked with Compliance Groups on improving SOX Internal Controls.
• Troubleshooting user access through authorization error analysis.
• Ensured accuracy and segregation of duties through comprehensive testing of all profiles and authorizations.
• Expertise in resolving Authorization issues by analyzing Authorization Checks.

Procurement/project Coordinator

Confidential

• Prepared and issued RFQs to vendors.
• Negotiated product assortment, timeline, and business terms with vendors (i.e. margin, markdown, quantity, quality, and delivery.
• Prepared, reviewed and issued Purchase Orders.
• Placed orders, checked shipment, and acquired raw materials/goods.
• Served as liaison between all stakeholders and vendors.
• Established and maintained sound relationships with suppliers
• Assisted in providing adequate researched on supplier to ensure timely delivery and competencies.
• Assisted in developing procurement plan, procurement statement of work and established contractor’s accounts on a global level & negotiated incentives.
• Worked with the project team to identify and approve new supplier/subcontractors and negotiated terms, executed contracts, and implement changes.
• Approved payment and disapproved payment where all necessary agreement hasn’t been met.
• Reconciled purchase orders with deliverables and prepared monthly progress report to ensure spending has been accurately allocated. Closed purchase requisitions for vendors who have been removed from field operations and are no longer doing business with the company.
• Worked within the procurement team to ensure the timely delivery of all required materials/commodities for assigned vendors
• Monitored usage of material stored on site and reported quantities to ensure re-order where required.
• Worked with all stakeholders to define project schedule using primavera P6.
• Responsible for organizing meetings with all stakeholders, circulating minutes, and following up of action items.