SUMMARY:

• I am a SAP Security Architect with over all Twenty years of IT experience. I have more than Seventeen years of extensive hands - on SAP Security experience in SAP ECC, BW, SRM, CRM, PO/PI, BOBJ BI, BPC, HANA, Solution Manager and EP implementations.
• From past 6 years have been working with Confidential as a SAP Security Manager. Successfully managed and led SAP security & GRC implementations at various clients.
• Configured GRC AC at various clients.
• Configured ARA (Access Risk Analysis), EAM (Emergency Access Management), BRM (Business Role Management), ARM (Access Request Management) and customized rule set as per client requirements.
• Designed security of ECC (HR, FI/CO, MM, WM, SD and PS), BW/ BOBJ BI, BPC, SCM - APO, PO, Solution Manager, SRM, and CRM systems.
• Worked on various SOX projects, resolved SOD and Critical access violations. Mitigating risk and applied controls where applicable.
• Have very good understanding of EP security. I have worked with folder permissions, pcd permissions and Java roles. Also has very good understanding of Single Sign On.
• I have gone through multiple full life cycle implementing of security in all SAP systems. Also implemented SAP upgrade project in all SAP systems
• I implemented SAP IDM, CUA, HR based security, structural authorization and BW Security at different clients.
• I also have experience in designing and implementing security for BPC and BOBJ BI systems. Also have good understanding of HANA security.
• Also have experience in Web Server, Active Director, Meta Directories such as LDAP and D Confidential base technologies, such as Oracle.
• Experience in Analysis, design, implementation and integration of iplanet Directory Server 4.x, iplanet Web Server 4.x and Meta Directory 1.0.
• I have developed security policies and procedures, created templates and forms for SAP Security teams.

SKILLS:

SAP ERP: ECC 5.0 & ECC 6.0

SAP Business Suite: SRM 4.0, SRM 5.0, EBP 6.0, PI 7.0, CRM 7.0 & GRC 10.1.

Data Warehouse: SAP BI 7.0, BOBJ BI & BPC

RDBMS: Oracle 9i/8i/8.0/7.3, DB2/400 V4R4 & HANA

OS: HP-UX 10.0/11.0, OS/400 V4R4, Sun Solaris & Windows

Applications: LDAP, Netscape Directory Server 4.x, iplanet Web Server (Netscape Enterprise Server 4.1) and iplanet Meta Directory 1.0.

Email: Microsoft Exchange & Lotus Notes

Languages: C/C++, SQL, PL/SQL & RPG/400

PROFESSIONAL WORK EXPERIENCE:

Confidential

SAP Security Manager/Team Lead

Responsibilities:

• Built SAP Security Strategy, GRC strategy and Testing strategy document for Smithfield
• Responsible for designing and implementing security for RTR, P2P, OTC, PTP, MD and TM
• Responsible for design and implementation of GRC AC and Business analytics (BOBJ BI, BPC and HANA suite).
• Responsible for maintenance of Security and GRC project plans.
• Completed Unit testing, Integration testing and UAT of all security roles and GRC development

Environment: ECC on Hana, GRC 10.0, BW, TM, BOBJ BI, BPC, PO, and Fiori

Confidential

SAP Security Manager/Team Lead

Responsibilities:

• Helping Confidential IT team to implement SAP security standard practices and to fix the current design issues and to stabilize GRC AC 10 system.
• Providing assistance to redesign where applicable to suit Confidential requirements. Helping Identify and evaluate business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement.
• Implementing and configuring Security Weaver to use the tool for SAP Licensing and compliance
• Coordinating implementation of SalePoint IDM solution and helping with integration of SalesPoint and GRC system

Environment: ECC 6.0, SRM 7.0, GRC 10.0, BW, BOBJ BI, PI, SalePoint & EP

Confidential

SAP Security Manager/Team Lead

Responsibilities:

• Worked as overall SAP Security lead for two projects (Foundation and Extension) at UN. I was responsible for security development, testing, deployment of PILOT and subsequent releases (Release 1 and Release 2 Release 3) in ECC (FI/CO (AP, AR, GL…..), SD, RE, GM, PM, MM, WM & PP), SRM, BW, BOBJ BI, EP, IdM and GRC.
• I successfully implemented security for PILOT, Release 1, Release 2 and Release 3 for all peace keeping and political missions
• Implemented GRC 10 (Access Risk Analysis, Emergency Access Management) for risk analysis, remediate & FireFighter use.
• I was efficiently leading the team of 2-5 onshore resources and 4-5 offshore IDC team members at different phases of the project.
• I built SAP security skills of implementation partner and client resources. We successfully completed all deliverables on time with good quality.
• We also implemented SAP IdM for business roles management and user provisioning for both production and non-prod environments.

Environment: ECC 6.0, SRM 7.0, GRC 10.0, BW, BOBJ BI, PI, SAP IdM & EP

Confidential

SAP Security Lead, Seattle, WA

Responsibilities:

• Designing and Implementing security for Confidential project for and loyalty programs at Confidential
• Implementing CUA to centralize user administration in all SAP non-prod systems
• Worked with Confidential team on GRC 10.0 implementation estimation and project plan
• Worked with IDM team on single-sign on implementation for both Cosmos and Confidential project at Confidential
• Guided Cosmos project team for HR and FI implementation. Implemented position based security for both the projects

Environment: ECC 6.0. CRM 7.0, EP 7.0, GRC 10.0 and BW 7.0

Confidential

SAP Security Manager/Lead, Plano, TX

Responsibilities:

• Designed and implemented security for Products, Direct and Indirect customers in CRM and ECC systems for Confidential project
• Completed designing of two projects Capstone & Confidential for Confidential .
• Completed design and implemented security for non-prod systems at Confidential

Environment: ECC 6.0. CRM 7.0 & BW 7.0

Confidential

SAP Security Manager/Lead, Oak Brook, IL

Responsibilities:

• Successfully designed and implemented security for Confidential.
• I led a team of 9 members which included four consultants and five IDC resources.
• Set up sustainment team and coordinated knowledge transfer from project team to sustainment team.
• Built and managed team of 9-11 team members which include both onshore and offshore team members
• Designed and implemented security for TPM, TFM and TCM in CRM system.
• Designed and implemented portal group structure for Enterprise portal
• Helped my team member to Designed, configured and implemented GRC RAR, CUP, ERM and SPM modules
• Designed and implemented security for Demand Planning and Planning and Scheduling in SCM
• Prepared Blueprint, Naming convention document and security design for non all prod systems
• Helped team member in designing and implementing of security for BPC, BOBJ BI and BW system.
• Helped implementation of ECC security for all modules (FI, RQT, Market & Sell, Supply Chain, Project System & Procurement)

Environment: ECC 6.0. CRM 7.0, SCM 7.0, EP 7.0, GRC 5.3, BW 7.0, BOBJ BI 4.0 and BPC 7.5

Confidential

SAP Security Architect, Springfield, IL

Responsibilities:

• Configured CUA to centralize user administration.
• Used transactions like SCUA, SCUM, SCUG and SCUL extensively.
• Prepared SAP Security Strategic Plan for Confidential Corporation.
• Designed security for FI/CO, MM, SD and WM in ECC and created roles using Automatic Profile Generator Confidential .
• Designed security for online store for B2B and B2C and resolved authorization issues.
• Designed role based audit model and created audit roles for Confidential .
• Designed BI security and created roles for developers and reporting users. Extensively used RSECADMIN to create BI Analysis authorizations and to troubleshoot issues.
• Designed Solution Manager security and created technical user roles and workcenter roles.
• Created eCATT scripts for mass test ID creation and password reset.
• Prepared presentation with technical details for IT team & High level presentation for executives.
• Completed AS-IS analysis and identified the gaps, proposed a plan to resolve the issue and completed the resource estimates. Identified the process to rectify the problems.
• Configured Compliance User Provisioning (CUP), Enterprise Role Management (ERM), Risk Analysis and Remediation (RAR) and Super Privilege Management (SPM) of GRC 5.3 as per client’s requirement.
• Worked closely with internal and external auditors in defining RAR rules and mitigating controls.
• Created SPM IDs, roles based on functional areas and assigned owners and monitors to these IDs. ting
• Resolved Critical access violations and online store authorization issues.
• Prepared a Security plan for development, Basis Security and production support and emergency roles and implemented it.
• Created process documents and identified role owners and risky transaction approvers.

Environment: SAP NetWeaver 7.0 (2004s), ECC 6.0, BI 7.0, Solution Manager 7.0, OS400, DB400 & EP

Confidential

SAP Security Lead, Folsom, CA

Responsibilities:

• Used SOLMAN for creating Messages, change requests and corrections. Used transaction CRM DNO MONITOR, NOTIF CREATE and SOLAR02 extensively. Documented all approvals in SOLMAN change requests and at project level for project related changes.
• Worked on support pack upgrade of all SAP systems in Confidential Corporation. Ran SU25 in various systems and updated roles accordingly. Adjusted roles and implemented OSS note 888889 and used RSECNOTE.
• Implemented security for MDM xEDM project. Created 13 new roles for Commodity Managers using automatic profile generator ( Confidential ).
• Worked on Live Compare project. Created Live Compare roles and implemented Live Compare project in all Confidential SAP Systems.
• Worked on GTS Master D Confidential Rework and Supplier 2.5 projects in GTS system. Created new roles for system IDs to communicate between systems.
• Implemented security for CE (SAP NetWeaver Composition Environment) project. Created new Java roles and adjusted authorization of some of the roles in producer portal. Also worked on folder permissions.
• Worked on Tax Foundation Review project, created new role and adjusted production support role to include new project functionality.
• Implemented security for B2B and IFS portal projects. Created portal groups and completed portal pcd role assignments.
• Worked on MYB1 project, adding new plants in SAP. Created new plants roles and adjusted authorizations of existing roles to include new plant.
• Upgraded security in BI and CRM from BW 3.5 to BI 7.0 and from CRM 5.1 to CRM 7.0
• Implemented security and created security roles for SAP HCM (Human Capital Management). Implemented structural authorization and position based security in HR. Used transactions like PO13, OOAC, OOAW and OOSP.
• Installed and configured SAP NetWeaver Identity Management (IDM).
• Created eCATT scripts for mass test ID creation, role assignments, password reset and mass position based role assignments.
• Provided On-call coverage, maintained Service market place connection, created OSS IDs and created Remote IDs for OSS notes.
• Resolved SOX SOD (Segregation of Duties) and critical access violations and mitigating the risk where it is applicable by putting monitoring controls.

Environment: SAP NetWeaver 7.0, SAP NetWeaver (2004s), SAP ECC 6.0, SAP ERP HCM, SAP Solution Manager 7.0, SAP NetWeaver IDM 7.1, SAP BI 7.0, SAP PI 7.0, SAP CRM 7.0, SRM 5.0, SAP SCM 5.1, Rialto 6.0, EAM, BizRights 4.0(Approva), LDAP & EP.

Confidential

SAP Security Architect, Dallas, TX

Responsibilities:

• Completed HR Global implementation project in Confidential on ECC 6.0.
• Created Employee Self Service (ESS) and Manager Self Service (MSS) roles. Implemented security for Compensation Management, Performance Management and payroll module and created roles.
• Configured system to implement position based security. Implemented position based security in HR and designed a strategy to implement position based security in all systems.
• Used Organizational Key and PerAdmin fields in HR to implement customer specific restrictions.
• Designed security for E-Recruiting and adjusted roles as per customer requirement.
• Worked on upgrade project from 4.7 to ECC 6.0. Ran SU25 and adjusted all FI and MM roles accordingly and adjusted authorizations.
• Created eCATT scripts for mass test ID creations, password reset and position based role assignments.
• Implemented security for KM and Content Management.
• Worked on defining strategy for BW 3.5 to BI 7.0 upgrade project.
• Configured GRC Compliance CC, Firefighter, Access Enforcer and Role Expert.
• Worked closely with internal and external auditors in defining CC rules and mitigating controls.
• Created FireFighter IDs and roles based on functional areas and configured Owners and Monitors.
• Resolved SOX SOD (Segregation of Duties) and Critical access violations and mitigated the risk where applicable.

Environment: SAP GRC 5.2, SAP NetWeaver 7.0 (2004s), ECC 6.0, Enterprise 4.7, BW 3.5, BI 7.0 & EP

Confidential

SAP Security Architect, Englewood, CO

Responsibilities:

• Gathered security requirements from client and project team members and created a project plan for End-User and functional user security implementation.
• Created design considering current and future scope of developments.
• Creating Derived roles for HR generalist and specialist roles with Org level restrictions.
• Configured extended authorizations (P ORGXX) for additional restrictions because it suits Confidential requirements.
• Worked with defining security for Personnel Administration, Organizational Management, Time Management, Compensation, Recruiting, Payroll and Benefits in HR. Created roles for HR Generalist, Compensation Manager, Payroll Administrator, Payroll Manager, Recruiting Manager, Manager, Benefits Administrator and HR super user.
• Configured system for implementing HR based security and implemented Position based security setup using Org structure for indirect role assignment.
• Created roles for Employee Self Service and Manager Self Service and implementing ESS and MSS authorization in Confidential .
• Working on creating role for FI Accounts Receivable and Accounts Payable and General Ledger End-User and support roles.
• Created reporting roles for both HR & FI End-Users in BI 7.0.

Environment: SAP NetWeaver 7.0 (2004s), ECC 6.0, BI 7.0 & EP