SUMMARY

• Have around 10 years of experience of SAP implementation and support for multiple solutions including SAP Security for GRC AC 10.0/10.1, S4 Hana, ECC, BI, HANA, Business Objects, SCM, SRM, BPC 10.0, FIORI, SUP, PLM, PPM and Portal Security for various
• Experienced in implementing SAP Security solutions from blue print phase till implementation and support for clients from different industry including clients having non - SAP ERP systems.
• Experienced in conducting workshops for collecting requirements, coordinating with business teams, understanding the transactions required, and designing security roles for different end users and functional teams based on the localization required for client’s Business Process Model.
• Experienced in designing roles based on business requirement in accordance with Segregation of Duties and in redesigning roles based on any changes. Well versed in designing security architecture for different functional modules
• Extensively worked on Sarbanes-Oxley (SOX) Compliance and Segregation of duties
• Experienced in enabling and customizing GRC MSMP workflows.
• Creation, Maintenance and perform SOD review of roles. Identified SOD violations, worked on removal of these violations by working closely with Business teams and implement necessary changes in compliance with Security Standards and policies.
• Experienced in using Analytics tools like QlikView, Tableau, MS Access and MS Excel.
• Experienced in tools like ARIS, HPQC, Remedy, Charm, BART, Bizrights and GRC.
• Strong knowledge of Confidentiality, integrity, and availability concepts, Security governance principles Compliance legal and regulatory issues Professional Ethics. Security policies, standards, procedures and guidelines
• Strong Knowledge of (Controlling Access and Managing Identity), Physical and logical assets control, Identification and authentication of people and devices, Identity as a service (e.g. cloud identity), Third-party identity services (e.g. on-premise), Access control attacks and Identity and access provisioning lifecycle (e.g. provisioning review)
• Experienced in IT General Controls, ASC 606 standard, SSAE16, SOC1 Reporting.

TECHNICAL SKILLS

Language: Java, Servlets, Applets, C,C++,SQL,PLSQL

RDBMS: MS-Access & Oracle 8i.

PROFESSIONAL EXPERIENCE

Confidential

Senior Internal Auditor

Responsibilities:

• Working as Senior IT Auditor
• Performed Testing for IT General controls, Automated Control and SOX Reports
• Conducted walkthroughs for performing enquiry of Business Owners about the controls
• Coordinated with IT teams during ASC 606 implementation and worked with business owners for establishing SOX compliant processes and systems.
• Created workpapers and audit reports for controls tested.
• Presented Audit reports to leadership
• Working directly with vice president of internal Audit.

Confidential

SAP Security Lead

Responsibilities:

• Worked on GRC AC 10.1 SP upgrade
• Integrated GRC 10.1 with GRC Fiori Applications
• Worked on roll out projects for ECC
• Implemented mitigation control MSMP workflow in GRC AC 10.1 for automating mitigation controls assignment.
• Implemented user access review workflow in GRC AC 10.1 for user access role review.
• Redesigned Security roles for logistics modules PP/MM/SD/WM/PM
• Performed Role redesign and GRC upgrade for S4 Hana
• Worked on supporting BPC, ME, ECC, BW, BO and FIORI
• Worked on ECC version upgrade.
• Worked on salesforce security

Confidential

Senior Consultant/Security Lead

Responsibilities:

• Worked closely with business team for understanding the requirement and redesigned roles for ECC and BI
• Implemented CUA. Established Trusted RFC connections
• Identified and removed SOD violations
• Implemented Business Objects. Designed Access levels, enterprise groups and established user authentications
• Worked closely with BI team, designed folder level security, restricted access based on super user and end users privileges etc.
• Restricted functional access for universes and connections and restricted access for applications
• Identified localizations and redesigned ECC security roles by regrouping the transactions based on function module. Removed manual authorizations and strictly synced the design with SU24.
• Designed SECATT scripts to automate user provisioning
• Synced user accounts with defined licenses
• Experienced in troubleshooting issues using SU53 and ST01 trace identifying info cubes and info Objects and designing BI Analysis Authorization. Experienced in designing security approach and BI roles as per business model /requirement for IS and Business users based on segregation on Info cube / Info area etc.
• Proficient in creation of BW authorizations Object (RSECADMIN & RSSM) and making them Authorization Relevant (RSD1) to restrict BW reporting on fields/organization values like Company code/Cost Centers. Experienced in RSECADMIN Trace for troubleshooting authorization issues in BI.

Confidential

Responsibilities:

• Collected Requirements from client. Conducted Workshops
• Designed and built roles.
• Validated the systems and did initial security configuration
• Designed and created portal iviews and groups for PLM and PPM
• Designed PLM and PPM security roles.
• Worked on user administration of portal security, created groups, iView’s, users.
• Performed in mass user upload and mass user modification

Confidential

Responsibilities:

• Validated the systems and did initial security configuration
• Implemented CUA. Connected and disconnected system from parent system
• Worked on identifying Security requirements in RICEF Objects like Interfaces, Conversions etc.
• Worked on user Admin and authorizations issues.
• Worked on preparing workshop decks for security components and in preparation of strategy document.
• Identified CRM Security Configurations
• Created Secatt scripts for role assignments, role creation etc.
• Worked on designing, building security roles for ECC, SRM, CRM, SCM, EWM, GTS, BI and PI.
• Worked on designing and building Business Objects Enterprise Groups, folders, access levels and user. Worked on authorization issues, connections universes and transports
• Worked on designing teams, task profiles and data access profiles for Business Planning and Consolidation.
• Worked on authorization issues related to Enterprise Performance Management
• Designed security roles for Fiori and enabled access of application tiles.
• Implemented GRC access controls.
• Worked on designing portal security roles, groups and authorization issues related to web dynpros and iviews.
• Worked on user administration of components like SABRIX, Open Text and Workforce Performance Builder.
• Worked on authorization issues identified during testing.
• Performed mass user lock/unlock during cutovers.
• Used remedy for incident management and HPQC for change management.
• Participated in requirement gathering workshop
• Designed database to keep a track of transactions mapped by functional teams and design in system.
• Helped client with implementing solution by following best standards
• Documented Security Procedures.
• Experienced in designing and implementing “Business objects security”. Identified business need and designed access level and folder level security accordingly. Imported roles from backend and performed folder level security Have expertise on User admin, Groups, folder, Applications, Enterprise group, universes and connection. Worked on authorization issues for Webi, Crystal, Xelcius reports and applications in BI launch pad etc.Have worked on Analysis for Office .Experienced in managing Security for Active Directory Groups for SSO. Experienced in LCM and Promotion Management for transporting configurations. Experienced in enabling security configurations for Mobile BO.

Confidential

Responsibilities:

• Designed Teams,task profiles,member access profiles for BPC
• Controlled security from sap backend in BPC.
• Worked on identifying authorization issues in BPC
• Transported Security configurations from one environment to another.
• Worked on creation of access levels and folders based on client’s business model in BO
• Worked on importing roles from backend,creation of enterprise groups in BO
• Worked on enabling access to applications like mobile BO,crystal reports,explorer, BI launchpad etc.
• Worked closely with BI team on issues related to connections,universes in BO
• Worked on troubleshooting authorization issues
• Designed BI security roles and created analysis authorizations depending on business need
• Worked on Bex Analyzer/RSA1/Rsecadmin
• Worked on indetifying authorization for Spend performance management.
• Worked on BI Portal
• Worked on GRC 5.3 RAR,Access Controls and SPM
• Designed Enterprise and Functional roles by understanding the business model and accordingly identifying the roles to be grouped
• Worked on designing structural and PD profiles.Handled authorization issues .designed roles as per the requirement.Restricted access based on Infotypes.
• Conducted Business Object training for team
• Gave demos and presentation to client for handover of the build done
• Experienced in designing Security for “Business Planning and Consolidation (10.0)”, Teams/Tasks Profile/Member Access Profiles/Transporting Security Configurations, worked on roles and transport of Security Configurations. Worked on controlling security from SAP GUI and worked on authorization issues. Experienced in EPM
• Worked on GRC 5.3, RAR, Access Controls and SPM. Implemented GRC 10.0 AC and PC parameters .Experienced in establishing MSMP Workflows. Experienced in custom transactions evaluation, classification, benchmarking and rule set alignment .Worked on SOD for ECC .Experienced in assigning FFIDs to firefighters, Controllers and extracting log reports.

Confidential

Responsibilties:

• Worked on designing ECC security roles by identifying transaction groupings based on the client’s business model.
• Role creation,adding/removing transactions,Maintaining authorization with SU24 settings,SU25.
• Worked on troubleshooting authorization issues through ST01 trace and SU53
• Worked on designing BI security roles, creating Analysis authorizations based for custom queries by identifying corresponding infoprovider
• Worked on troubleshooting authorization issues through RSECADMIN
• Worked on BI reporting authorization objects like S RS COMP, S RS COMP1 etc..
• Conducted BI training for team
• Role creation,adding/removing transactions,Maintaining authorization with SU24 settings,SU25.
• Design APO security roles based on location and planning book accesses needed
• Worked on troubleshooting by closelyworking with clients
• Worked on tools like Remedy,HPQC,Bizrights
• Experienced in automated tools such as eCATT, LSMW and project related activities tracking tools like Remedy, HP Quality Center
• Worked on Business Object(BI4).Designed Access Level
• Identified and Created folders for reports based on client’s business model.
• Identified appropriate roles and performed Folder to role mapping
• Worked on importing roles,giving access to BO applications
• Managed project as offshore lead and mentored the team
• Implemented CUA. Added and removed systems from CUA. Worked on transactions like BD64/SCUL/SCUA etc. Created RFC connections. Established CUA using trusted RFC connection.
• Experienced in CRM Security. Identified Business roles, designed PFCG roles. Worked on authorization issues.