SAP Senior Consultant Resume

SUMMARY

I’m a SAP Security and Authorization/GRC Consultant with over 13+ years of IT experience with 11+ years in core SAP Security, Authorizations and GRC.
Very good understanding knowledge of SAP functional Business Processes and sub - processes.
Experience in SAP Security Administration across SAP Modules with latest versions of ECC, FI, BI, CRM, SRM, HCM, Enterprise Portals and GRC.
Throughout this period I have been involved in Confidential SAP Implementations, Upgrades and Production Support Projects from a consultant level to Team Lead level in various stages of the Project life cycles.
Designed and Implemented security in ECC SAP ERP EHP7.0 FI, CRM, HCM, SRM, BI/BW 7.4, BOBJ (BI 4.1), S/4 HANA and Portal Environments.
Strong SOX remediation skills, good understanding knowledge of SAP Functional Business Processes and sub-processes.
Profound knowledge on various security models like direct authorization assignment to end users through roles, indirect authorization assignment to end users through HR positions etc.
Knowledge on UME based authorizations for SAP Java Platforms like GRC Access Controls, EP etc. Good knowledge on role based BW reporting authorizations as well as the new analysis authorization concept in BI 7.0 and BOBJ Security. I have designed and implemented security roles for various sap applications like CRM, SRM etc.
9 Implementations exposure, 4 Implementations as Lead, spread across Confidential geographies in US, Europe, Australia, New Zealand and Malaysia.
Involved, configured and implemented GRC AC10 with ARA, EAM and BRM modules
Involved with GRC 10.0 bidding activities/pre-sales activities.
Provide SAP Security Solution to the clients via Role Implementation framework and SAP ABAP Authorization Concepts.
Development of Role Matrices, Role cards, for SAP modules such as Finance, CRM, BI, HR/HCM, Procurement and Accounts Payable, etc.
Proficient with ASAP methodologies and IGDM Methodologies widely used for SAP Project Implementation.
Creation of PFCG authorization roles based on SAP CRM Business Roles.
Set up Security for SAP CRM 7.0 Service Management
Configuration of IDM 7.2 and integration with CUA
HANA Studio - HANA User Administration activities, System privileges, content admin.
Create structured privileges, Role Admin in SAP HANA.
SQL Privileges, Object privileges, Analytic privileges, Package and Application Privileges in SAP HANA
Involved with HANA reporting and HANA modelling teams while designing HANA roles.
Created the HR Structural profiles for the Organizational Structure to be maintained.
Created HCM roles with the HR Info types restricting with read, write authorizations involving the objects PPERNR, PLOG and PORGIN.
Generate user authorizations for users in organizational plan using RHPROFL0 report.
Implemented HR based security and structural authorization.
Created roles for Personnel administration, Organizational management and Time Management of HR.
Provide detailed Business process to transaction mapping matrix as per the given functional Business Process Master list.
Documenting Client’s security requirements and build Security Profiles as per the standards and SAP best practices in conjunction with the Security model.
Have lead and initiated internal audits in elimination of Segregation of Duties (SOD) conflicts inherent within the SAP security model.
Involved in analysis of user master records for SOX-auditing by external/internal auditors.

TECHNICAL SKILLS

Strategy: SAP Security and Authorizations, SAP GRC,AC, PC, Risk Management and GTS SAP Audit review, Upgrades, IDM, SOX Compliance, Role Design, SOLMAN and MDG, Migration, BPC, HANA Security, BI/BOBJ Security

Process: SAP Net weaver

Technology: SAP Net weaver

SAP: R/3,ECC4.6,ECC5.0,ECC6,BW3.5,BI7.0,CRM,SRM,BOBJ,HANA,HR,FI,WM,MM,Portals.

PROFESSIONAL EXPERIENCE

Confidential

SAP Senior Consultant

Responsibilities:

Manage and Operate the SAP Security delivery across the Confidential SAP System landscape.
Manage the overall SAP Security team that includes Hands on GRC, IDM and SAP Security teams Onsite and Offshore teams in Australia and India involving CRM, FI, HCM, APO and MDG modules
Responsible for the access provisioning using IDM workflows
Auto Provisioning through HR actions.
Approve FF requests in GRC for Security team members that involve direct user provisioning.
Approve CHARM requests for Role Changes by Security team via SOLMAN.
Verify the roles via Profile Generator tool PFCG
Delivery of USMM licensing report
Undertaken Patching projects for GRC, IDM, BPC, HANA patches.
Work with Change Management and Deployment teams to deploy security change requests as per the release dates and projects in SOLMAN.
Primary contact for all Security issues, top severity and escalations related to all authorization and security related matters.
Role Changes via PFCG deployment via SOLMAN CDs and RFCs
First point of contact to validate all security efforts and estimates such as new Projects, enhancements.
Implemented GRC Process Controls, Risk Management and support GRC Access Controls AC
Liaison with Confidential IS stakeholders on areas of improvement, recommendation tracker for Security and authorization related concerns.
Workshops with Role owners and Business Process Owners to understand analyze and communicate improvements in the Business Role Owner approvals via IDM.
ARIS tools used for amending Business Processes and transactional data in Security Roles.
Root cause analysis on aged Incidents, longevity and complex issues.
Work with Problem Managers on Severity Incidents, provide the fix and identify the permanent resolution of the problem
Link up with Data base, Basis and IDM teams for IDM re-org schedules to improve IDM performance
Weekly meetings with Service delivery managers on the progress of the calls, challenges encountered, improvements made, etc.
Weekly Governance meetings with Client stakeholders on improvements in Operational areas such as access forms used, new projects in the pipeline, timelines for major security enhancements, Security resourcing estimates, best practices implemented, timeline for approvals, amending processes for better business continuity.

Confidential

Consultant /Lead Consultant

Responsibilities:

The key purpose of this role is to support Confidential Production landscapes at Confidential - Confidential working under the AMS structure while playing a parallel Project team member role with the on-going projects and mini projects simultaneously.
Involved as the main point of contact for the POP 2.0 BW project from the Security team
KT the Profiler team on the authorization matrices and OPU’s.
Resolve day to day issues related to Security and Authorizations under MM, FI, SD, BI and GRC modules.
Provide Root Cause Analysis on complex issues with action plans to the senior management.
Enhancement of security roles based on requirements.
Working closely with the SAP Governance team to remediate and mitigate SOD conflicts.
Identify and escalate issues before turning into risks to the senior management/ PMs.
GRC Access Control support, Run Risk Analysis, BRM concepts used.

Confidential

Lead Consultant

Responsibilities:

The key purpose of this role is to gather, analyze and document detailed business requirements, current state business and technical processes, and to-be business and technical processes.
Assess the AS-IS S&A environment and the processes. Review them against the Business Processes during the Functional Blueprint Workshops
Business requirements and priorities
Business processes technical requirements and priorities
Meetings with clients Solution Architects, SME’s, Portal leads and Infra team to understand and recommend a suitable Auto User Provisioning approach as opposed to their current manual user creation set-up.
Existing systems and infrastructure remediation's required to support the new solution and project outcomes
Identify the Business impacts in relation to the functional approach and design security accordingly.
Dependencies with other initiatives and operational activities.
Provide detailed Business process to transaction mapping matrix as per the given functional BPML’s.
Document Client’s security requirements.
Develop a detailed Security and Authorizations Blueprint document highlighting the concepts of Security methodology, Integrated Business Processes, concerns, assumptions and any involved risks.

Confidential

SAP Security and Authorization Programme Lead

Responsibilities:

SAP Programme Lead for Security and Authorizations across all the Waves in the Confidential ERP Project- involving latest versions of SAP ECC and SAP BI systems.
AMS Support Lead for S&A. Team of 5 Security Consultants
Involved and lead the team in Security Design, Plan, Implementation, testing, Go-Live and Production support of the ERP Wave1.
High Level design, Scope documents, Estimation Matrix.
Gathered requirements from the Functional Leads.
Involved actively in the weekly Work stream meetings and the BPO meetings.
Assisted the S&A team with the Business CR’s and Technical CR’s for Change Review Board by providing:
Implementation plan and design with parties/partners involved with the Security Implementation.
Test plan set ups and scenarios for UAT- workflow testing, Role testing and Job Position testing approach.
Identified Risks and Issues and escalated to the PMO in a timely manner.
Involved in providing user master records for SOX-auditing by external auditors.
Assisted auditors with SOX compliance standards.
Implemented Security best practises as per standards.
Had Action Plans for unexpected issues and resolved the critical issues.
Advisory role for the S&A offshore team and assisted them resolve pending issues.
Identified and differentiated the configuration issues with the Security issues.
Successful implementation with 1500+ users.
Ran SECATT scripts for mass role creations and user creations.
Audit reports to external auditors Post Implementation.
Design the Access Request Form and improvisations with the SDM/Clients.

Confidential