SUMMARY:

• Over 15+ years of IT Industry experience and 12+ years’ experience in SAP Security, Data Security and Authorization Concepts with strong techno - functional background. I have been involved in SAP R/3 Security/GRC Administration and has extensive experience in implementing SAP Security for various modules such as HR, FM, SD, FI, GL, CO, MM etc. On various R/3/ECC versions including NetWeaver, ECC 6.0 and ECC 5.0, mySAP ERP 2005, ESS, MSS, SAP BW 3.0B, 3.5, BI 7.0, EBP 3.0, SRM 5.0, CRM, Confidential, Solution Manager, XI, PI, SEM, SCM, APO, MDM, Solution Manager, Enterprise Portal, Virsa 2.0, GRC 10.1, BizRights, Hana Security, Fiori Security and 3 rd party tools Right Angle, IMOS and VaR CenterSAP Security Skills
• Experience includes analysis, development, and maintenance of SAP Security in SAP R/3 (4.6 & 4.7) ECC 5.0, ECC 6.0, Netweaver, SAP BW ( 3.0B, 3.5), BI (7.0), MySAP ERP 2005 (HR), SRM, APO, CRM, xMII and Enterprise Portals.
• Experienced in full cycle security implementation for modules such as HR, FI, MM, PP, QM, and SD.
• Implemented ARA and EAM on GRC 10.1
• Lead more than 70+ projects from requirement gathering, analysing the requirements, building the roles, testing the roles and deploying the users for Go-Lives, TCO & BCO
• Experienced extensively in using Automatic Profile Generator (PFCG) in creating and modifying Single Roles, Composite roles and Derived roles
• Worked thoroughly with Segregation of Duties (SOD) matrix.
• Experience in analysing and processing, SOD and SOX issues.
• Transported Single, Composite and Derived Roles manually and using SCC1 and SE09/SE10
• Extensive knowledge of using CATT Scripts, ECATT Scripts and Mass User administration.
• Performed User Master Reconciliation using (PFUD and SUPC).
• Experienced extensively in User Information System (SUIM)
• Experience in Troubleshoot roles using SU53, ST01 and ST03.
• Hands of experience on maintaining Profile Parameters using RZ10, RZ11, RSPFPAR
• Experience in creating and Authorization Groups for securing Tables & Programs using SE54 and RSCSAUTH.
• Extensive Knowledge HANA Security and Fiori Security
• Strong knowledge of Security related tables and reports/programs
• Experience in Security Upgrade including upgrade to Enterprise R/3 4.7 and ECC 6.0 - SU25
• Experience in implementing security in BW (3.0B, 3.1C, 3.5) and BI (7.0, 7.5) including info object level security
• Experience in acting as liaison between HR, IT, SAP project teams, BASIS administration and Auditors
• Acted as Liaise with Audit department to establish and review critical and sensitive authorizations, implemented improvements to meet audit requirements.
• Strong documentation and training skills and enabling knowledge transfer.

TECHNICAL SKILLS:

ERP Skills: SAP R/3 3.1H, 4.0B, 4.5B, 4.6C, 4.7, ECC 5.0, ECC 6.0, SAP BW 3.0B, 3.1C, 3.5, BI 7.0, EBP 3.0, ERP 2005, CRM, SRM, SCM/APO and MDM

Database: SQL Server 2000, Sybase, Oracle 8i Enterprise Edition

Programming: C, C++, JAVA, PASCAL, VB, ABAP/4

Scripting Languages: Java Script, VB Script

Platforms: UNIX, Windows NT, 2000/Pro

PROFESSIONAL EXPERIENCE:

Confidential, GA

Sr. SAP Security Consultant

Responsibilities:

• Implemented ARA and EAM on the Iberian system after the merger coke Europe
• Used Workflow for approval process and log review processing’s
• Updated Custom rules to the Global rule set
• Extract reports periodically and send for Internal Auditors for review
• Cleared close to 100k high/medium violations in the newly merged Iberian system to pass the Audit review
• Worked extensively on Bizright’s tools to reduce the violations and also updated rule sets accordingly
• Worked with IDM team to migrate 25.000 users from RBSR (Legacy System SRDB) to SAP IDM system.
• Involved in xMII system upgrades for 18 plants successfully
• Configured LDAP connection between xMII systems and AD in order to avoid setup users manually in local UME’s
• Exported the role from old xMII system and imported the roles to upgraded new xMII system
• Assigned and validated the role assignment to users to reflect “as is” to old xMII system
• Lead multiple release projects(50+) on ECC, ECC(PM), BI, EWM, xMII and APO systems
• Worked with SME’s to gather the requirements & analyze the requirements
• Worked on SAP role built to complaint with standard and architecture of CCR
• Involved in Cycle 1, 2 & 3 testing phases to perform TUT/FUT/UAT
• Worked with Test leads and SME’s to fix the defects in HP-QC
• Actively involved in cutover activities during Go-Live and support after project GO-Live
• Worked with Project Leads, SME’s, Business Leads in mapping the Job/task based role to users and coordinated with IDM team to setup the job/task roles in IDM for user deployment
• Worked with Audit team to provide Bizrights reports
• Extensively supported and helped analyzing the production issues and resolved them

Confidential, GA

Sr. SAP Security Consultant

Responsibilities:

• Worked with PWC IDM migration team to move 60.000 users from RBSR (Legacy System) to SAP IDM system.
• Attending requirement-gathering session along with PWC and build SAP roles according to position. Developed new job roles in ECC, HR and SRM systems.
• Worked extensively with PWC & Internal audit team to reduce the violations
• Worked extensively with users to resolve the defects after migration to IDM.
• Extensively used BizRights to access the SOD violations and followed as per the CCR policies.
• Worked on multiple release projects(20+) on ECC, BI, CRM, HR, APO and SRM
• Worked extensively on implementing new SAP CRM 7 system. Created roles using report CRM UI ROLE PREPARE from the business role. Tuned the role as per the business requirement. Mapped the Business role to the corresponding PFCG role.
• Worked with Project Managers, Business users to gather the requirements
• Analyzed the requirements and designed the SAP roles to complaint with standard and architecture of CCR.
• Performed UAT in Development system and moved to quality system for FUT
• Resolved the defect raised in FUT and UAT
• Actively involved in CUTOVER activities and support after project GO-Live
• Actively supported Production support issues and SAP role changes as well

Confidential, GA

Sr. SAP Security Consultant

Responsibilities:

• Analyzed the existing roles and created new roles for the new company code in SAP ECC, HR, CRM, SRM, BI systems
• Worked extensively with PWC audit team to reduce the violations from 140k to 10k
• Extensively modified and created the roles as per the PWC audit requirements
• Extensively used Approva BizRights for performing internal reviews and risk assessment
• Ran What-If analysis for user violations and analyzed the report and found the root cause analysis for the violations
• Excluded the violations for the users with the help of Governance team
• Extensively worked with Internal Auditors, Governance team and Rule book owners for reducing the violations

Confidential, Durham, NC

Sr. SAP Security Consultant

Responsibilities:

• Analyzed the existing BW security setup and proposed pre-upgrade steps
• Used Manual Migration (not RSEC MIGRATION) for upgrading BW 3.5 to BI 7.0
• Analyzed the existing roles and proposed new roles for resolving the flaws in the existing roles.
• Build new roles as per the divesture requirements
• Analyzed and discussed with Business Analysts and turned off authorization relevant for unnecessary infoObjects
• Involved in testing of the roles along with BI Team
• Identified root cause of the BI authorization issues using “Analysis” Tab under RSECADMIN Tcode
• Identified all the roles with Queries and Infoproviders making use of RSRREPDIR, AGR HIERT tables
• Unit testing, user acceptance testing was performed on the upgraded roles using “Execute as” button under RSECADMIN
• Monitoring, Auditing and troubleshooting on the user access related issues were performed using “Generation logs” and Execute as” button under RSECADMIN T-code

Confidential, Houston, TX

Sr. SAP HR Security Consultant

Responsibilities:

• Reviewed the current authorization processes and system setup
• Gathered requirements from the functional people on Time writer and Time approval.(CATS/ESS/MSS)
• Created communication Info type (0105) for all the Users in SAP and linked to respected SAP User Ids.
• Created the roles for Time Writer (Time Input) and Time Approval.
• Unit Testing the created roles in the Development box
• Developed ECATT scripts for performing mass activities like assigning communication Info type (0105) and role assignments
• Extensively used HR authorization objects P ORGIN and P PERNR.
• Restricted Data Entry Profile in transaction CAT2 using Dummy(virtual) Info type (0316)
• Transported roles to Quality assurance system and created test users for Integration testing and UAT testing.
• Security was implemented using Structural authorization, evaluation path and profile generator
• Created structural profiles using functional modules and assigned profiles to positions
• Deployed security by using Structural authorization in tandem with HR standard Roles

Confidential, Dallas, TX

Sr SAP Security Consultant

Responsibilities:

• Worked on ECC/BI/SCM/PI Implementation
• Used SAP templates for data gathering and buildup of Role Matrices for SD, MM, QM and FI modules.
• Worked on the creation of Single and Derived roles for SD, MM, QM and FI modules.
• Worked extensively on restriction of Tables and Programs, grouping them into Auth groups and creating custom Transaction codes.
• Transported roles to Quality assurance system and created test users for Integration testing and UAT testing.
• Maintained and Modified Authorization Object using SU24 to meet the Business requirements
• Assisted basis team in configuring SSO between AD and ECC systems.
• Implemented BI security at the Info Area, Info Cube, Info Object and query level based upon different requirements.
• Created reporting authorization objects for the info Object level security on BI system using transaction RSECADMIN
• Worked closely with SCM functional team in gathering the requirements.
• Created roles for Demand Planning (DP), Supply Network Planning (SNP) modules and Available to Promise (ATP) modules.
• Created and restricted roles on planning areas, planning books and data views depending upon requirement.
• Worked closely with the Confidential functional team for gathering requirement.
• Extensively worked on SU24 as Confidential transaction codes do not have default authorization objects in SU24.
• Created roles for letter of credit, legal controls, administrator etc .
• Created roles in PI as per the requirements.
• Troubleshooting the issues through SU53 and ST01 and resolved the issues.

Confidential, San Antonio, TX

SAP Security Consultant

Responsibilities:

• Upgraded HR from 4.6 to 2005 and analyzed the differences between the objects in both the versions.
• Upgraded the roles from 4.6 to ERP 2005
• Used SUIM to compare the roles and made sync with older version.
• Maintained and modified authorization object using SU24.
• Transported roles to Quality assurance system and created test users for Integration testing and UAT testing.
• Upgraded Portal from NWDI 6 to NWDI 7 and Created Basis, Security and Developer roles from SAP delivered roles in Portal landscape.
• Setup security permissions in portal landscape.
• Setting permissions to roles and groups associated to roles.
• Setup Security permissions on the security zones.
• Setup Security permissions for KM (Knowledge Management).
• Upgraded IS-OIL from 4.6 to ECC 6.0 and regenerated roles in ECC 6.0 as a part of upgrade and analyzed the new objects and the difference between the previous version and current version objects.
• Dual maintenance of roles is taken care.
• Used SAP VIRSA/GRC Compliance Calibrator 4.0 tool for effectively managing segregation of duties for users and roles. Also maintained role matrix (GLOBAL and MATRIX1), conflicting transactions and critical authorizations.
• Setup security settings and roles for IMOS, Right angle and VaR Center tools.

Confidential

ERP Techno-Functional Consultant

Responsibilities:

• Worked as BW functional requirements and Created custom characteristics and key figures info objects as per the requirements
• Created Infocubes, ODS and queries as per the requirements
• Extensively used BEx Analyzer
• Created Process chains and monitored jobs and supported
• Production support issues for BW are monitored and resolved as per SLA’s