We provide IT Staff Augmentation Services!

Sap Security & Grc Consultant Resume

SUMMARY:

  • 8.5 years of experience as SAP Security, HANA & GRC Consultant.
  • Have sound knowledge of R3 and BI security. In R3, I have worked in version 4.6C and ECC 6.0. In BI, I have worked in version BI 7.0. In Solman I have worked in versions 7.1 and 7.2. Have knowledge on HANA Security and basic support activities in HANA environment.
  • Good experience of HR Security and Portal Security.
  • Worked on 4 end to end roll - outs from design phase to post implementation phase.
  • Worked on R3 Security Upgrade from versions 4.6C to ECC 6.0. Also worked on Solman security upgrade from versions 7.1 to 7.2.
  • Experienced in Setting up Central User Administration (CUA) and maintenance.
  • Provided support for the SAP GRC Access Controls applications v5.3 such as Firefighter (VIRSA Tool for assigning Firefighter access) and SAP GRC Access Controls applications v10.0, v10.1 such as Emergency Access Management (EAM), Access Risk Analysis (ARM) & Access Request Management (ARM).
  • Provided support in User & Role administration and creating privileges in SAP HANA Studio.
  • I have knowledge of other components of SAP GRC v10.0 & v10.1 and the various processes/tabs in NWBC.
  • Experience in providing reports (monthly/quarterly) for Audit activities like Log Reports from Virsa Tool, IT User review reports, SAP Standard User password report, Inactive User reports, Security parameters reports, SM20 logs etc.
  • Experience in Audit, SOX Compliance, SOD analysis & Risk analysis and mitigation activities in various SAP landscapes.
  • Performed SAP Security related task and Implemented Security policies and procedures, experienced in SAP Security Maintenance (PFCG), maintained the roles for all the instance (DEV, QAS, PRD and Environments) profiles in development and production systems.
  • Provided support for User Maintenance, Roles/Profile Maintenance using Profile generator.
  • Experience in troubleshooting R/3 Security issues (SU53, ST01), RSECADMIN for BI.
  • Experience in troubleshooting basic HR, Portal and Solman authorization objects errors.
  • Experience in creating & working on Production Support Tickets using Remedy tool and HP Service Manager.
  • Undergone L&K Fastrack for SAP Basis & Security under Confidential . Also attended internal s for SAP BI Security & HR Security.
  • An effective communicator with technical, reasoning and analytical skills.

PROFESSIONAL EXPERTISE:

  • SAP GRC Security
  • GRC 5.3 & 10.0
  • SAP R3 Security
  • VIRSAFirefighter 3.0
  • SAP BI Security
  • SAP 4.X
  • SAP Portal Security
  • ECC5.0 & 6.0
  • SAP HR Security
  • BW 3.X, BW7.0
  • SAP MDM Security
  • Solution Manager
  • SAP Solman Security
  • CRM
  • MDM
  • IDM

EXPERIENCE:

Confidential

SAP Security & GRC Consultant

Responsibilities:

  • I solely handled the Solman security upgrade from version 7.1 to 7.2. This included performing all the SU25 steps, ignoring or accepting the SAP recommendations during these steps as per business decisions, marking all the roles that need to be updated and then manually upgrading all the rolesmarking all the transactions that have changed and then updating associated roles with the new transaction codes, capturing all the roles changes and customer table modifications in transports and moving it to Quality and Production as per timelines.
  • I assisted in security testing when the Solman roles moved to quality and included modifications in the roles as per requirement. I also assisted the IT users from different teams understand the new functionalities of Solman 7.2.
  • I was the POC from security side for the cutover Solman activities like locking of users during downtime, checking the role movement to production and making sure all changes are updateunlocking the users and releasing the system to end users.
  • I also, after upgrade, provided hyper care support, during which there were multiple issues faced by end users, business users and IT users. I attended to all the issues, did necessary role changes and moved changes to production under strict hyper care timelines.
  • As a byproduct of Solman upgrade activities, I also took the initiative of cleaning up of Solman systems as there were many old unused roles present in the system. I also took up the task of creating new set of roles for all the IT Team, based strictly on what exact authorizations they would be needing.
  • I created up to 31 new roles attending to all needs of IT Teams divided hierarchy (role for Architect,
  • Senior/Lead Consultant, Consultant, Associate Consultant etc)
  • During cleanup, I also assisted in developing new set of audit rules for IT Teams, these rules would enable to check the IT roles if they have any access more than what they are expected of.
  • I also did cleanup of roles that had critical s tabu dis, s develop, s dataset etc access.
  • Me and my team handled the configuration of Emergency Access Management system for GRC version 10.1.
  • This included creating FF Owners, Controllers, Firefighters, assigning appropriate roles in target system, creating entries for FF Ids in NWBC, creating reason codes, assigning owners, assigning FF IDs to Firefighters etc.
  • We also did setup of email configuration so that FF owners and controllers can receive necessary emails.
  • We enabled Security Audit in Target systems & created and scheduled FF Log Batch Jobs.

Confidential

Security Consultant

Responsibilities:

  • I have worked on user and role administration in HANA environment. User Creation/Deletion/Modification and User Lock/Unlock based on the standard procedures. Role creation/modification/assignment etc.
  • Worked on creating schema, creating system, package and analytic privileges to restrict authorization.
  • I have been a part of ECC system Upgrade from 4.6C to ECC 6.0, have handled the Post Upgrade Security Steps.
  • My task was to process the SU25 steps and check for the new SAP proposals. Then check with management which SAP proposals they would like to accept and which ignore.
  • Based on this my role was to identify changed roles and transactions, edit and regenerate corresponding authorization profiles, and finally transport the customer tables.
  • I was responsible for Finance area roll out for different countries like Denmark, Spain, Italy, Norway etc. Based on the requirement, creating roles (master, derived, composite & single) for new companies based on their roll based on the information provided by management.
  • I handled the Security Testing & UAT for Denmark, Spain, Italy and Norway clients after role creation and helped in resolving the defects.
  • I was also responsible for biweekly releases which included modifications to the existing roles or any urgent role changes.
  • Created derived roles in R3 system and analysis authorization (roles) in BI system. Transported the generated roles and profiles using Transport Management System. Extensively worked with security related tables such as AGR TCODES, AGR USERS, AGR 1251, AGR 1250, AGR DEFINE etc.
  • Collaborated with other team members and business representatives to ensure that security settings meet the requirements of the business.
  • Documenting all development procedures, sensitive objects, manual inputs and all other critical changes.
  • Assisting in post implementation by assigning new/changed roles to users based on HP Service Manager.
  • User Creation/Deletion/Modification and User Lock/Unlock based on the standard procedures. This was implemented through IDM and SNOW tool.
  • Checking for necessary approval once the request is received, and providing access in backend system, communicating to the user and then closing the ticket within stipulated SLA.
  • Maintained Users Master Records by creating User Ids, assigning roles, copying, renaming, reset password, etc. using SU01 and mass user requests through SU10.
  • Role administration was done through CHARM tool. My work involved doing role modifications for weekly and urgent changes.
  • My duties involved updating roles, transporting the generated roles and profiles using Transport Management System.
  • Extensively worked with security related tables such as AGR TCODESAGR USERS, AGR 1251, AGR 1250, AGR DEFINE etc.
  • Based on the requirement, Creating and modifying roles. Creating new single/composite roles for any new functionality, creating new derived roles for extending to any new country/organization.
  • Creating new IT and end-user roles for any new team that joins, modifying existing roles for missing authorizations.
  • Assisting the users during UAT and providing any new missing authorizations. Documenting the entire process, creating manuals for new roles
  • Troubleshooting missing authorizations

Confidential

SAP Security Consultant

Responsibilities:

  • Based on the requirement, Creating and modifying roles. Creating new single/composite roles for any new functionality, creating new derived roles for extending to any new country/organization.
  • Creating new IT and End-user roles for any new team that joins, modifying existing roles for missing authorizations.
  • Assisting the users during UAT and providing any new missing authorizations. Documenting the entire process, creating manuals for new roles.
  • Assisting in post implementation by assigning new/changed roles to users based on Remedy Tool tickets.
  • GRC Cup Tool was implemented to perform the User Administration activities. I assisted in maintaining the workflow for the user requests based on the roles and approvers they select.
  • Before the CUP Tool was implemented, Remedy Tool was used for User Administration ticketing, so checking the tool and resolving the tickets based on requirements.
  • User Creation/Deletion/Modification and User Lock/Unlock based on the standard procedures. This was implemented through HP Service Manager.
  • Checking for necessary approval once the request is received, and providing access in backend system, communicating to the user and then closing the ticket within stipulated SLA.
  • Maintained Users Master Records by creating User Ids, assigning roles, copying, renaming, reset password, etc.
  • Worked in coordination with HR people to maintain the synchronizations of the HR data (Pa0105- user id email) and the SU01 user data so that users receive the workflow items.
  • Checked for user’s HR aster data through PA20 to e sure that user’s are properly maintained.
  • Assigned portal roles to end users.
  • Providing Reports to Clients based on SOX Requirements. Regular checking of system to ensure SOX Compliance.
  • The Reports included IT User review through SUIM Report. Inactive Users report through RSUSR200.
  • Checking Security Parameters through RSPARAM.
  • Checking SAP Standard User passwords through RSUSR300 etc.
  • Finding the lacking Authorizations based on the User’s Input. My role included identifying missing authorizations through SU53 and tracing authorizations through ST01.
  • Granting Firefighter roles / ids to users based on their requirement.

Hire Now