SUMMARY:

• Experienced SAP professional with strong background in the design, development, implementation and maintenance of SAP Security and Authorization Solutions in SAP R/3, ECC, HR, CRM, BI, SRM, SCM, WAS, GRC, and Solman.
• Expertise in Role, Position and Structural - based Security, Business Role, Analysis authorization and Netweaver portal.
• Extensive experience in ESS / MSS, Double Verification principle (4eye principle), Direct & Indirect Role Assignment, Org, Position and Context solution, Time management. Payroll, PD / Structural Profile, User Administration, HR tables and Infotypes, User Index.
• Expert in developing and creating Master/Derived, and Single/Composite role concept
• Strong experience in installation and configuration of GRC (Governance, Risk and Compliance) and creating and uploading the rules, functions and risks
• Expert in creating Fire Fighter roles, ID, Owner and controller.
• Expert in creating and configuring CRM Business role with PFCG Role
• Expert in creating users, roles, role assignment and user and role mapping in NetWeaver portal
• Extensive experience in analyzing the existing security set up and elimination the SoD risk
• Expert in securing system and data through customization of role maintenance, tables, authorization groups, authorization objects, transaction codes and programs
• Experience in SAP Security upgrade,
• Expert in central User Administration (CUA) and creating RFC
• Expert in system tracing and trouble shooting
• Work exposure to Information System Audit (Internal and External), SAP License Audit and System Measurement and Optimization including Security Constraints.
• Determined team player with positive work attitude and good communication skills.

TECHNICAL SKILLS:

SAP: - 4.6C, 4.7E, ECC5.0, ECC6.0 EHP5, SRM, CRM, SCM, BW/BI, WAS, Solman, Business Objects

Portal: - NetWeaver Portal Security and user management

SAP Security Tools: - VIRSA 3.0, 4.0, GRC5.2, 5.3, PFCG (Profile Generator), RSEADMIN, Centrify Direct audit SUIM, Structural Profile, RHUSERRELATIONS, SU01, CUA

Technical: - LSMW, eCATT, Service Manager, HP OpenView, Lotus Notes, Peregrine, Remedy, Transport management, OSS-Support Packs, OSS ID,CATS,SSO, Knowledge of ABAP,SAP Basis Admin and 24x7 support, Centrify Direct audit, SRM Mobility, Play Book, Reverse Logistics.

Modules: - FI, CO, SD, MM, HCM, BW/BI 7.0, WMSAP Security life cycles - 4 R/3, 3 HR (HCM), 2 GRC, 1 CRM7.0

Other Systems: - IS-Utility 2005, BOBJ, ME, MII

Number of Years: - 10+ SAP Security Analyst & Administrator (Senior, Lead)

WORK EXPERIENCE:

Confidential

SAP Security administrator

Responsibilities:

• Conducted meetings with business and functional to review the existing security policy
• Engaged to function as an SAP Security expert to perform comprehensive analysis of service industry client’s existing security solution
• Analyzed the existing roles and users for SoD and advised to mitigate / remove the risk
• Analyzed and redesigned the security roles in ECC, HCM, CRM, SRM, SCM, BI, FI, CO, SD, MM, and other modules according to business requirement
• Collected business requirement to create the new roles in ECC, HCM, SRM, CRM, SCM and other modules
• Implemented and configured CRM7.0 security concept with standard security (PFCG).
• Created UAT test plan for users in testing environment before go live
• Implemented ESS, MSS roles for employees and managers and also for time administrators
• Provided production support to world wide users to resolve the SAP security issues in ECC, SRM,SCM, CRM, BI, and HCM
• Analyzed the existing security roles and advised to restrict the security tables as per business requirement
• Designed security architecture for FI, CO, SD, MM & HCM modules with new user role matrix for SoD to be matched accurately with business needs
• Managed the creation, disabling, and monitoring of SAP User accounts and ensured that appropriate policies and procedures were followed to support timely and accurately provisioning of SAP user access.
• Configured and implemented GRC RAR and Firefighter and created users and roles
• Created users, roles and role groups in Netweaver portal for ECC, Solman, SRM, CRM, ME,MII, SCM, GRC, BW/BI
• Used GRC (RAR) to run simulation and SoD report for new users and roles
• Created Fire Fighter roles and FF ID’s for different modules and users
• Provided 24/7 production support to resolve the access issues to world wide users
• Implemented Centrify Direct audit for compliance reporting at UNIX (OS Level)

Confidential, OH

Sr. SAP security ADMINISTRATOR

Responsibilities:

• Conducted meetings with business and functional analyst and collected requirement to create new roles
• Configured Transport management system for all new development
• Created new role matrix for FI, CO, SD, MM and HR modules and created roles
• Created new users and assigned roles
• Created UAT document for positive and negative testing
• Provided offshore sport to resolve authorization issues
• Provided security training to the basis and security staff.

Confidential, ON

SAP security Analyst

Responsibilities:

• Managed enterprise core SAP systems and provided production support to worldwide users.
• Developed a matrix of Roles to Transactions and People to Roles that could be used for user assignment and to mitigate Segregation of Duties (SoD).
• Designed the roles as per functional and business requirement and uploaded in the SAP System
• Made system audit-ready, coordinated with BPR team in removing sensitive system profiles and increased security by 25 - 30%, reducing inappropriate access to almost zero.
• Saved organization thousands of dollars on SAP licensure by maintaining accurate user statistics.
• Conducted meetings with business users, functional staff and business analyst to facilitate the HR, Finance, MM and SD security requirement /specification gathering process for role based / position based security and structural authorization (structural profile).
• Arranged meetings to collect the requirement for HR security roles to implement double verification principle (4 eye principle), ESS and MSS roles.
• Created and implemented context-sensitive roles for restricting managers to access HR Master Data from other organizational units.
• Monitored the Service Desk ticketing system for SAP Security requests and ensured that all requests were promptly and accurately handled.
• Managed the creation, disabling, and monitoring of SAP User accounts and ensured that appropriate policies and procedures were followed to support timely and accurately provisioning of SAP user access.
• Installed, configured GRC and uploaded the SAP and customized rule set for FI, HR, SD, MM, Procure to pay and basis components.
• Conducted meetings to create the new rule matrix and controlling of SoD and mitigation
• Reviewed the roles those were impacting SOA to remove the SoD and applied sound security architecture for SAP environment.
• Identified and removed all unwanted and inactive roles from all SAP systems.
• Created and redesigned BI roles for report authorization.
• Provided production support in BW/ BI to resolve the user issues
• Worked closely with BI developers to help creating infoobjects, data source, infocubes and designing queries and reports.
• Worked very closely with internal and external auditors to remove all the audit observations.
• Created User Acceptance Test Plan (UAT) documents for users to test the new created and/or updated role.
• Created and implemented a TSO document to comply SOX requirements.
• Created dialog custom transactions and report (SE93), authorization objects (SU21) and authorization groups (SE54) for tables and views.
• Performed SAP License Administration analysis, implementation, and submission to SAP
• Created portal roles and assigned to users and user groups.
• Worked within the user provisioning process to assign end users the appropriate roles and access levels.

Confidential

SAP Security Analyst

Responsibilities:

• Conducted meetings with business users and functional consultants, (SD, MM, FI, CO, WM, IP, PP, AR, AP), to gather requirements for creating new matrix for generic, derive and composite roles for users and positions.
• Worked very closely with GRC consultant and functional staff in installation and configuration of FI, SD, MM component
• Designed and implemented role and positions based (indirect role assignment) security.
• Collaborated with other team members and business representatives to ensure that security settings met the requirements of the business and aligned with the defined controls and standards.
• Customized and maintained authorization objects for TCODES using SU24.
• Transported the roles from development to quality box for testing and production.
• Involved in meeting with internal and external auditors to resolve the SAP security issues
• Created custom authorization object (SU21) and TCODES (SE93).
• Implemented BI security (RSECADMIN) with analysis authorization.
• Worked very closely with BW/BI developer and helped to create infoobjects, infoarea, infoproviders, and infocubes and also helped data modeling and mapping for characteristics, attributes and fact tables.
• Resolved after GO-LIVE issues including but not limited to authorizations, user access, password issues and locking/unlocking users.
• Resolved SOD and auditing issues, and mitigation of conflicting TCODES and objects.
• Worked and maintained weekly and quarterly security reports with virsa firefighter.
• Responded to requests and prepare SAP security reports based on management and department needs.
• Worked on Peregrine service center (ticketing tool) for troubleshooting regarding user request with different kind of SAP security modules.
• Configured and maintained CUA.

Confidential

SAP Basis and Security administrator

Responsibilities:

• Conducted meetings with business and functional staff (SD, MM, FI/CO, PU, WM, IP) to gather requirements for generic, derived and composite roles to implement the role- based security.
• Created a matrix, designed and implemented Role-based security.
• Created and maintained roles (PFCG), users (SU01, SU10), User groups (SUGR).
• Created CATT scripts for setting up bulk hires (new users).
• Involved in SAP Security viz. Sarbanes-Oxley (SOX) compliance Segregation of Duties, and weekly reporting using virsa firefighter.
• Consolidated & reduced scope of Authorization checks using transaction SU24 and maintained check indicators for Transaction codes.
• Coordinated in completing SAP security audit requirements checklist.
• Performed transport management, change management with security documents, user testing and integration.
• Educated & provided training to SAP security staff of company.
• Managed roles and profiles on Info Objects and Info Cubes.
• Troubleshot authorization problems using ST01, and SU53.
• Worked on peregrine service center (ticketing tool) to resolve all the security issues.
• Configured post installation parameters and Imported and maintained all system profiles.

Confidential

SAP Basis administrator/ Security Consultant

Responsibilities:

• Configured parameter settings in Instance profile, configured background jobs.
• Setup R/3 security including Central user administration and role-based security using R/3 profile generator (PFCG).
• Created profiles, roles, composite roles with profile generator.
• Participated in Tablespace Management with BR*Tools (BRSPACE) and SAPDBA.
• Implemented Role-based security administration, including design, testing and documentation.
• Created standards and developed procedures and documentation for new infrastructure processes.
• Interacted with functional, internal/external auditors, management and user community regarding development of SAP roles, and Authorizations.
• Consolidated & reduced scope of Authorization checks using transaction SU24 and maintained check indicators for Transaction codes.
• Coordinated in completing SAP security audit requirements checklist.
• Tested and implemented security recommendations given by SAP audit team.
• Troubleshot authorization problems using ST01, and SU53.