Sap Security Business Relationship Manager & Senior Analyst Resume
MichigaN
SUMMARY:
- SAP Security Experience: 13 Years
- SAP Security Projects: Global Implementation, Country Roll outs/expansions, Upgrade (SAP 4.6C/4.7/5.0 to ECC6.0 and GRC 5.3 to GRC10, SAP Solman 7.1, SAP BI 7.3, SAP CRM 7.0,SAP PI 7.3, SAP HANA(SPS09), Successfactors, FIORI), Go - Live, Post Go-Live, Day to day Operations/On Going Project Support, Production support.
- Over 13 years of experience in SAP Security, including team leadership, project coordination, IT service management, business process modeling, system analysis and design, and computer programming.
- Wide knowledge and experience in project management, software development process, and maturity models. Strong background in Governance, Risk and Compliance (GRC) including access risk, segregation of duties, remediation and mitigation, SOX, IT controls and system audits.
- Good skills in leadership, teamwork and communication.
- Responsibilities include governing IT policies, processes, procedures and KPI's, ensuring alignment with best practices and compliance with internal requirements, laws and regulations.
- In charge of access and identity management processes and tools (ECC, GRC, BW, HR, SF, HANA, BPC, SRM, XI/PI, Fiori and APO) as well as system security rules and monitoring.
TECHNICAL SKILLS:
SAP Versions: SAP 4.0x/4.6C/4.7, ECC5.0/6.0, Net weaver 2004s (ABAP & Java Stack),SAP Solman 7.1,SAP BI 7.3,SAP CRM 7.0,SAP PI 7.3, SAP Successfactors,SAP FIORI,HANA
SAP Module: HR, FICO, SD, MM, PP, PM, BWx/BI7, Enterprise Portal7.0, SRM/E Buyer/EBP, CRM, SCM/APO, PI7.0, XI3.0, ABAP, BASIS, SAP Net weaver Identity Manager (IDM), Business Objects(BOBJ)
User Management: CUA, SSO, LDAP, Active Directory,ISIM
Change Management/ Ticketing System Tool: ISM, Peregrine Remedy, SD4,HP Service Centre, Service Now
Testing Tool: HP Quality Centre 9.0(HPQC), Virsa /SAP GRC Access Control Suite 5.x/10 Risk Analysis and Remediation - RAR (Compliance Calibrator)Enterprise Role Management (Role Expert)Super user Privilege Management (Fire Fighter)Compliant User Provisioning (Access Enforcer)
PROFESSIONAL EXPERIENCE:
SAP Security Business Relationship manager & Senior Analyst
Confidential, Michigan
Responsibilities:
- SAP implementation (ECC, GRC, BW, HR, SF, HANA, BPC, SRM, XI/PI, Fiori and APO) and Security design aligned with SOX principles and requirements.
- Understand business risks(FI/OTC/MM/PP/WM/HR etc.) and design SOD free SAP Security and implement ways to mitigate risks by applying appropriate controls/recommendations(After discussing with Business).
- Responsible for GRC 10.0 design and implementation including Workflow, Firefighter and Risk definition which is used now for SAP role and user SOD check and user access provisioning.
- Develop and maintain efficient Production/Project support process for different SAP system landscapes.
- Managing onsite/offshore SAP Security team (8 FTEs across the Globe-NAR/LAR/EMEA/ASIA) in terms of managing SAP Security deliveries for implementation and support projects (SLA driven).
- Implementation of single Sign on and integration of Identity management in alignment with SAP Security and information security policy.
- Responsible for budgeting SAP Security resource including 3rd party vendors selection for various projects.
- SAP License management.
- Worked with The Testing COE Lead and Testing team to design Testing approach and build Test scripts in HP QC tool for SAP Security role changes for various projects.
- Prioritization of SAP Security tasks for AMS and Project team for efficient time management ensuring smooth support.
- Responsible for introducing latest technologies like SF/FIORI/HANA for the benefit of Business and IT team and keeping abreast with the most innovative methods and techniques widely used in the industry.
- Worked with vendors for SOW and Service management
- People management scopes like Team motivation,Carreer development, one on one mentoring and conducting team outings/activities etc., simultaneously maintaining team integrity ensuring ethics, code of conduct and overall team health and employee retention.
SAP Security/GRC Senior Consultant/Global Lead
Confidential
Responsibilities:
- Worked with below mentioned multiple clients across the globe over the span of 10 years
Confidential, Boulder, Colorado
Onsite SAP Security/GRC Global Lead
Environment: SAP R/3 Enterprise and GRC
Confidential, New Jersey
Onsite SAP HR Security/GRC team Lead
Environment: SAP R/3 Enterprise
Confidential
SAP Security team lead
Environment: SAP R/3 Enterprise
Confidential
Onsite SAP HR Security team lead
Environment: SAP R/3 Enterprise
Responsibilities:
- All aspects of SAP ECC/BI Security Design, Implementation and Administration tasks including Coordinating and interacting with business, technical and functional consultants for gathering SAP Security requirements, Design/develop SAP role, transport roles/authorization, testing, setup security system parameter, generating analysis reports, troubleshoot authorization error and create/maintain SAP Security process documents for SAP systems.
- Designed, developed and maintained Master and Derived roles and Secured roles by Organizational levels such as Company Code, Plant, Cost Centre, Profit Centre, Purchasing Organization etc. for MM, SD, PP, FICO, BI7.0.
- Design and implement GRC 5.3 and later on upgraded to GRC 10(SAP Business Objects Access Control) with new workflow design and business process.
- Expert knowledge on Segregation of Duties and Audit Compliance Standards, Audit Compliance Standards
- Development of tailored security and controls techniques in conjunction with system upgrade (i.e. ERP) and the design or re-engineering of business processes (i.e. shared services environment)
- For the HR module worked on the following: Position based Security via Indirect Org Assignments (infotype 0001),Context Sensitive HR solution, Structural authorization (infotype 0017)and The HR: Master Data with Context authorization object (P ORGINCON)
- SAP framework for SAP Global security upgrade, SAP Global security and authorization support, development and design
- Create status reports and present the same to steering committee.
- Collaborate with Internal Audit throughout design to identify SOD risks and ensure SOX compliance
- Train client security team in SAP HCM Security concepts, and knowledge transfer upon rolling-off project.
- Applied SAP Security policy / procedure / best practices and system controls to SAP systems
- Used SAP Security transactions - PFCG, SU24, PFUD, SUPC, SUIM, SU53, SU56, ST01, SE09/SE10, RZ10, SE16...etc
- BI7.0 Security, used BI Transaction RSECADMIN to create and assign analysis authorization by Characteristics, Attributes, Characteristics values, Hierarchies, Key Figure, Info-area and Info-object level, Info-cube, ODS, PSA, Query, Info-providers and Workbook for SAP BI Reporting users, BI users, SAP BI Administrators and Query Users.
- Setup Test IDs and managed SAP security authorizations test defects for Unit Testing, Integration Testing and User Acceptance Testing (UAT).
- Troubleshoot user roles, tracing the users, security authorization objects and custom reporting authorization objects to debug/troubleshoot an authorization error, resolving the issue by giving required authorizations in SAP modules
- Responsible for communication, coordination, and teamwork within the team and end users.
- Prioritization of SAP Security tasks for my onshore/offshore team and onsite Project team for efficient time management ensuring smooth support.
- Responsible for people management including determining budgets for SAP Security resource including 3rd party vendors selection for various projects.
- GRC workflow design, risk, function creation/administration.
- GRC role, user risk analysis/simulation
- GRC Fire fighter setup
- GRC jobs administration
- BW/HR role assignment, support and administration
- Prepared Authorization matrix
- Implemented structural authorization
- Budgeting in terms of SAP Security resource allocation
- Analysis authorization setup based on organizational values
- BW user trace analysis
- Daily BW authorization issue analysis and support
- Related BW document update
- User creation as per User access approval form.
- Creating ECC/BW Roles and profiles.
- Transporting Roles to QA Environment and Production Environment.
- Designed Blueprint document
- Analyzing the test results with track leads and business
- Authorization group building and assignment
- Designed roles for batch/RFC users
- Pre and Post System Quality system refresh Activities.
- Solving various authorization/non auth. problems faced by different team (ABAP team, Functional team) in same project in addition of my project work.
- Helping offshore team for Basis monitoring.
- Registration of SAP objects and user id in SAP service marketplace.
- Changing of client settings in pre-prod, prod systems as and when required.
- Performing backup of user master data of pre-prod system and training client.
- Performing backup of structural authorizations.
- Restoration of logical system, partner profile-port-RFC link.
- Creation of distribution model.
- Building and refresh of training client as per requirement.
- Scheduling of background job in SAP