PROFILE:

• I am a seasoned SAP security architect who is driven by providing SAP project sustainment, with a strong sense of process control, security profile change management, and technical safeguard to protect the data integrity for clients.
• To effectively sustain business data in SAP systems, I applied Approva BizRights, SAP GRC suites, to address the Segregation of Duties Management Process, Compliance Calibrator for Risk Recognition, Rule Building, Validation, Risk Analysis for Remediation Firefighter and Risk Terminator for Mitigation continuous Compliance.
• I am equally at home on production support, security offshore team leadership, and detailed SDLC project management, and keep abreast with traditional and new - technology tools and approaches.
• My experience involves implementation and production support of SAP application with infrastructure security. With over ten years in performing complex and conceptual analysis, consulting, project management, I provide recommendations in the areas of application security, business process control, information technology design, implementation and assessments of policies and procedures.
• Technical background includes 12 years of demonstrated information technology management experience with strong working knowledge of SAP development methodology with full cycle deployments. I practice effective client relationship management and business systems analysis.
• I manage security team with demonstrated leadership ability. Customer and team oriented with the ability to work and communicate effectively with staff at all levels.
• Strong oral and written communication skills, my specialization is in SAP Security Assessment review, Change control management, regulation compliance.
• I possess general understanding of the business drivers of operating on the enterprise level, as well as its components in products, services, finances and strategies.

PROFESSIONAL EXPERIENCE:

Confidential, CA

SAP Security consultant

Responsibilities:

• Manage service request tickets in SAP environment
• Resolve daily SAP security related (HCM, SD, FI, MM) issues
• Research SAP Market Place notes related to SAP security patches
• Organize Helpdesk incidents in AD account, email setup, user identity management issues

Confidential, Issaquah, WA

SAP Security Audit consultant

Responsibilities:

• Provided the Logic to retrieve GRC EAM Controller information
• Compile dAudit Requirement and deliver Swim Lane Visio Workflow documents
• Managed Business and IT user roles with scalable segregation of role profile to meet compliance requirement
• Resolved process control inquiries related to SAP security with Audit teams
• Monitored GRC EAM daily scheduled jobs
• Delivered SAP security SOP guidelines to address Business and SAP Security operation/administration tasks
• Conducted Compliance controls in GRC user access review

Confidential, CA

SAP Security Lead consultant

Responsibilities:

• Provided the Security Weaver solution and implemented the SAP Role Redesign Project in 2015
• Compiled User Requirement and Business transformation authorization objects
• Configured Business and IT user roles with scalable segregation of role profile to meet compliance requirement
• Remediated KPMG audit findings and provided resolutions and mitigation controls to resolve Segregation of Duties issues
• Resolved process control inquiries related to SAP security with internal Audit teams
• Delivered SAP security SOP guidelines to address Business and SAP Security operation/administration tasks in both user management and role management
• Conducted Compliance controls in quarterly and annual user access review

Confidential

SAP Security Administration consultant

Responsibilities:

• Produce gap analysis to identify alternate solutions specific to security requirements and provide technical recommendations on design or architecture improvements
• Provide architectural framework for security and key integration components with Enterprise Portal, Active Directory/LDAP and ECC systems
• Upgrade GRC 10 Access control and Fire Fighter technical considerations
• Manage BRM and MSMP workflow in GRC 10 Access Control
• Lead monthly outage process and Block Point implementation
• Manage the sustain working knowledge of Sarbanes-Oxley requirements
• Practice solid understanding of assessing and designing SAP internal controls
• Provide SAP technical assistance to support security related activity, security procedures in a regulatory environment
• Execute elevated temporary access policy to address SAP emergency
• Manage Solution Manager in user administration and ChaRM users set up
• Apply technical understanding of security strategies, technologies, and risk concepts

Confidential, Milwaukee, WI

SAP Security Architect consultant

Responsibilities:

• New implementation of SRM/PI/APO/PLM project
• Managed BOBJ and BI integrated authorization objects technical aspects
• Led off shore support staffs to follow Global Enterprise Security guidelines and policy
• Managed portal user access to PLM cFolder with functional iViews
• Responsible for system architect overall security considerations with emphasis on eliminating the operation gaps
• Enhanced audit check list with SAP validation effort in addressing the non-human account users and GRC SPM (Fire Fighter) access
• Managed CUA, Solution Manager, global GRC connection and user administration
• Led Security Oversight on Compliance mitigation and remediation

Confidential, Seattle, WA

SAP Security Lead consultant

Responsibilities:

• New implementation of SCM/APO DP/SNP project
• Managed APO and BI integrated authorization objects technical aspects
• Delivered APO user roles with strong segregation of role profile technology to meet business requirement
• Managed PwC audit requirements and provided resolution to the related SOD issues
• Drafted SAP security interface guidelines to address Security operation and administration tasks

Confidential, Irvine, CA

SAP senior Security Manager

Responsibilities:

• Led the world wide COMPASS security administration
• Initiated Special Security Projects on MS Project to track consultants’ activities in deployment, monitoring, maintenance, upgrade, and support of Project Plan
• Managed SAP Practice security staff, including recruitment, supervision, scheduling, development, evaluation, and foster talents actions
• Developed IT Internal Controls Assurance strategies
• Adapted SAP NetWeaver Identity Management to provide end-to-end support for user provisioning
• Assisted scheduling release of GRC 5.3 RAR, SPM Implementations with portal and SSO for current fiscal year
• Enabled business process-driven identity management to integrate with SAP Business Suite
• Applied Identity service models to deliver service - enabled identity management for SOA environment
• Enabled business-driven identity governance model and achieved sustainable prevention of SOD violations and delivered compliant identity management
• Coordinated monthly SOD scheduled meetings, reviewed quarterly Audit report, monitor risk mitigation control documentation, conducted enterprise-wide risk analysis, and manage user role provisioning
• Managed security user/role matrix, profile generator design, coordinate with updated business requirement
• Led Security practice to achieve faster resolution of auditor observations with SAP BusinessObjects GRC Access Control
• Hosted bi-weekly COMPASS project regional security leads meetings, shared concerns in sustain support, planning projects, and organizing and negotiating the allocation of resources

Confidential, Livingston, CA

SAP Security Lead consultant

Responsibilities:

• Resolved QM configuration issues related to Record Inspection Result and Chang Inspection Result in terms of authorization objects technical aspects
• Delivered QM user roles with strong segregation of role profile technology to meet business requirement
• Managed E&Y audit findings and provided resolution to the related SOD issues
• Drafted SAP security policy and guidelines to address Security operation and administration tasks
• Managed security redesign project, led security team to establish the project baseline, user access history, user role assignment, customized transaction and reports, and published redesign strategy
• Applied user provisioning, workflow, and approvals in BizRights and upgraded to Approva/BizRights 4.5 version for security role redesign effort to meet SOX compliance and SOD sustainment

Confidential, Aliso Viejo, CA

SAP Security Lead

Responsibilities:

• Accelerated and mapped security requirements with SME and Business owners
• Accomplished MM, PP, SD, FI security requirements via profile generator for client’s user role assignment
• Coordinated integration test results, gap analysis, and provided proper remediation
• Documented user authorizations, trained staff
• Provided Password management, role and entitlements, reporting and auditing in the components of SAP NetWeaver Identity Management
• Furnished GRC RAR implementation strategy to project lead, including pre-installation and post-implementation checklist

Confidential, Lexington, Kentucky

SAP Security Lead

Responsibilities:

• Collected and mapped security requirements from Business owners
• Constructed MM, PP, SD security knowledge to client’s user role assignment
• Led Security in blueprint, realization, test and implementation tasks
• Conducted integration test results, gap analysis, and provided proper remediation
• Identified SAP GRC 5.3 Access Control tool and Solution Manager to meet IT audit compliance
• Managed HCM HR-IS development work in Query authorizations
• Documented user authorizations, train staff, and paved ‘building block’ for third phase and future enterprise implementation

Confidential, West Greenwich, Rhode Island

SAP Security Consultant

Responsibilities:

• Re-designed security collected requirements from Business owners
• Applied HR, BW/SEM, SD, MM, FI/CO security knowledge to user role assignment
• Formulated ESS/MSS configurations to support project analysis in working hours accumulation and resources consolidation
• Designed with Basis team to initiate security logs in Solution Manager
• Initiated Security re-design and execution tasks for the newly acquired division
• Devised and Established integration test results, gap analysis, and provided remediation
• Reviewed GRC CUP package with intention for next HR phases to do user role provisioning and termination process
• Documented user authorizations, trained staff, and prepared for next Audit review
• Maintained Structural authorization parameters in authorization profile maintenance
• Applied Evaluation Path concept to assign Organizational authorized users
• Provided proper organizational restrictions for the authorized access of personnel administration data
• Addressed SAP HR Application security issues, suggested recommendation in the configuration of SAP Roles, security, PD Profile Relationship, Profile Generator, SOD, Org unit access, Variants updates for all the Personnel Areas with appropriate access for all the HR and PY Roles

Confidential, Costa Mesa, CA

SAP Security Lead

Responsibilities:

• Mapped security requirements with Business owners
• Applied FI/CO security knowledge to client’s user role assignment
• Launched Security design and execution tasks
• Tested and reviewed integration test results, gap analysis, and provided remediation
• Wrote Security Management policy and Guidelines
• Expanded out HCM implementation, HR Payroll and ADP interface
• Introduced SAP GRC suites package and implementation strategy to PMO
• Documented user authorizations, trained staff, and prepared for second phase implementation

Confidential, Los Angeles, CA

SAP Security Consultant

Responsibilities:

• Reviewed BI security processes with Business owners
• Presented BI security knowledge to client’s user role assignment
• Migrated BW 3.5 authorizations to BI 7.0 analysis authorization
• Accomplished and reviewed integration test results
• Served as a functional lead to address APPROVA issues
• Reviewed and upgraded Virsa Compliance Calibrator 5.0 to meet the enterprise access control and audit compliance, coordinated with APPOVA upgrade team to discuss upgrade schedule
• Negotiated BI new analysis authorizations impact to developers
• Applied Structural authorizations in Organizational Management, configured and maintained structure authorizations and assigned them to appropriate users
• Configured Evaluation Path to determine all related objects stored under the root object ID in the structure - Org Unit, positions, and persons

Confidential, Dallas, Texas

SAP Security Consultant

Responsibilities:

• Collaborated security processes with Business owners requirement and Change management workflow
• Implemented CUA security knowledge to redesign client’s user role assignment
• Delivered APO Demand Planning on planning book and assign users with different accesses, design authorization to interaction with SCM and BW data, and supplied master and transaction data through CIF interface in real time
• Developed and delivered APO Supply Network Planning to calculate quantities to be delivered to client’s sites to match client’s demand and maintain the desired par level
• Managed Integration test defects and updated authorization objects and roles
• Generated system and coordinated with trainer and documentation
• Assisted in implementation of the APPROVA and Solution Manager to meet the enterprise access control and audit compliance
• Aligned security guidelines with developers and Business SME for project deliverables

Confidential, Palo Alto, CA

Senior Security Consultant

Responsibilities:

• Assessed security upgrade from 4.7 to ECC 6.0 with infrastructure architect knowledge
• Applied Role based security practice to redesign client’s user role assignment
• Practiced BI 7.0 analysis security and updated authorization objects and roles
• Called upon SEM BPS security with clients related to best practices and standards
• Served as a principal consultant and contributed best practices to enhance SAP GRC 5.3 implementation strategy
• Led design and oversaw development of complex, cross-functional, multi-platform processes and application systems
• Advised clients and developed complex technical architecture and design
• Advised client on complex systems management plans and issues
• Designed and documented administration policies and procedures to meet SOX compliance
• Reviewed the HR Structural authorization setup and configuration
• Maintained and assigned HR structure authorizations to end users
• Applied PPOME, HR specific transactions and table to sustain the HR Organizational Management