We provide IT Staff Augmentation Services!

Sap Security & Grc Consultant Resume

Glendale, CaliforniA

SUMMARY:

  • A competent professional with 7+ years of experience as a SAP Security Consultant and GRC.
  • Experience in SAP implementation, Roll - outs and Support Projects.
  • Working experience with SAP GRC AC 10, R/3-ECC, BI, SAP HCM, HANA, Enterprise Portals, and CUA systems.
  • Proficient in GRC AC components EAM, ARA, ARM and BRM implementation, support activities.
  • Maintaining SAP security in terms of creating roles and profiles, assigning roles, assigning authorization objects to roles through PFCG.
  • Worked on master role and derived role concept.
  • Experienced in implementing security procedures for user creation and maintenance in client-specific model and Central User Administration (CUA) in SAP R/3(ECC), BW 3.5(BI7.0), SAP HCM, HANA and Enterprise Portals.
  • Experience in GRC Implementation and support with CC, RAR, FF, SPM, CUP, ARA, ARM, EAM, BRM and SAP CUA (Central User Administration) integration with SAP ECC 6.0 with an excellent understanding of Sarbanes-Oxley Act (Section 302 and Section 404).
  • Maintain firefighter owners and controllers and assign to firefighter ids to enable users to perform emergency activities within a controlled and fully audit-able environment.
  • Collecting firefighter logs on weekly/monthly basis and sending to process management team.
  • Extensive knowledge on SOD management process to prevent the system from the risk, identifying problem and to take proper action in order to keep system clean.
  • Defining functions, access risks, mitigation controls as per business requirement.
  • Worked on HCM Security and modification of HR roles.
  • Good knowledge on evaluation path, PD profiles and position based roles.
  • Experience in managing analysis authorizations, finding missing authorization objects for Reporting users and assigning analysis authorization using RSECADMIN.
  • Troubleshooting the user authorization failure in Bex Analyzer and different BI reports.
  • HANA Security - Configured Standard, Technical and Restricted Users. Worked on System, Object, Analytic and Package Privileges. Knowledge in SAP Studio.
  • Strong understanding of all administrative tasks related to HANA Security.
  • Experience in working with various technologies and also involved in their service issues

TECHNICAL SKILLS:

Windows: UNIX, Windows NT 4.0,HP UX, Sun Solaris, Windows2000

RDBMS: Oracle 8i, 9.2/9.4, MS/SQL, DB2

ERP: SAP R/3 ECC 6.0/5.0, ERP 6.0

Lotus Notes, Microsoft: Access, Word, Excel, Power Point, MS Outlook, MS Project, MS Visio

Security Tools: SAP GRC AC 10/, SAP User Management Engine (UME) and CUA, Profile Generator (PFCG), Role and profile creation and modification, User administration.

PROFESSIONAL EXPERIENCE:

Confidential, Glendale, California

SAP SECURITY & GRC CONSULTANT

Responsibilities:

  • Good experience with SAP Security Automation implementation projects for auto provisioning, following Business process and creating users with required set of roles and authorizations through workflow and different approval process.
  • Actively participated in configuration of SAP GRC AC components ARA, EAM, ARM and BRM.
  • Work experience with configuring EAM component in both centralized and De-centralized.
  • Maintain firefighter owners and controllers to firefighter users to enable users to perform emergency activities within a controlled and fully audit-able environment.
  • Collecting firefighter logs on weekly/monthly basis and sending to process management team.
  • Extensive knowledge on SOD management process to prevent the system from the risk, identifying problem and to take proper action in order to keep system clean.
  • Defining functions, access risks, mitigation controls as per business requirement.
  • Good understanding on following remediation and mitigation process for users and roles.
  • Experience with MSMP workflow engine to accommodate various scenarios of approvals and provisioning processes.
  • Working experience with different kind rules, rule types and agent types for configuring various paths/stages.
  • Incorporating emergency firefighter access through MSMP workflow configuration steps.
  • Synchronizing authorizations and repository objects for immediate effect to check SOD.
  • Configuring various parameter settings for EUP and developing customizing roles.
  • Creating custom template Ids for notification settings with different variables.
  • Using BRF+ rules in MSMP configuration steps for various rules to meet Business requirements.

Confidential

SAP SECURITY & GRC CONSULTANT

Responsibilities:

  • Performing user administration duties, with emphasis on creation and modification of users.
  • Updating key deliverable documents such as BRD, FDD, TDD, and Test scripts after a change request.
  • Configuring roles using automatic profile generator (PFCG), modifying and deleting existing roles.
  • Direct assignment of roles to users using PFCG and SU01.
  • Creating User groups and assigning users to groups.
  • Maintenance of mass users using ECATT and SU10
  • Performing post Go-live support by troubleshooting user related issues, leveraging SU53, STO1, SU24, and SE16 transaction codes when appropriate.
  • Performing SOD checks for all PRD users using SAP-GRC Access Risk Analysis toolset
  • Mitigating and remediating roles based upon change requests.
  • Maintenance of Authorization Objects using SU24
  • Working on Remedy ticketing tool and resolving all user incidents
  • Building up report of changes made to T-codes in Production environment on a monthly basis.
  • Working on Remedy ticketing tool and resolving all user incidents
  • Restricting reporting users through S RS COMP and S RS COMP1 authorization objects
  • Created analysis authorizations through RSECADMIN
  • Assigned analysis authorizations to the roles using object S RS AUTH authorization object
  • Troubleshoot authorizations related problems using RSECADMIN

Confidential

RSAP SECURITY CONSULTANT

Responsibilities:

  • Maintained SAP security in terms of creating roles and profiles, assigning roles, assigning authorization objects to roles through PFCG
  • Performed user maintenance tasks, user creation, deletion, lock down, activation, password management tasks utilizing SU01, and SU10
  • Performed Mass comparison of roles via PFUD
  • Single transport and Mass transport of roles through SE10
  • Resolved wide range of SAP incident tickets as per established procedures
  • Analyzed and troubleshoot security issues using SU53, ST01 and SUIM
  • Switching on/off the trace through t-code ST01 for tracing the authorization objects being called for particular t-code.
  • Worked on the enhancement requests.
  • Building up report of changes made to T-codes in Production environment on a monthly basis.Academic SuMMARY
  • Bachelor of TECH in Electronics and Instrumentation Engineering from Jawaharlal Nehru Technological University, Hyderabad, India.
  • Masters in Electrical Engineering from North Western Polytechnic University, California, USA

Hire Now