SUMMARY

• Over 7 Years of experience in SAP security administration in various SAP environments ECC 6.0/5.0, R/3 4.7, 4.6C, 4.6B (HR, FI, SD, PS, MM, PP,WM), BI 7.0,BW 3.5, EP, GRC 5.3, Virsa, Solution Manager, SAP Net weaver 2004 and 7.0.
• Good Experience in Administration & Authorization including Role/Content Administration and User Administration, Profile Generator (PFCG), Central User Administration (CUA), Segregation of Duties (SODs) analysis and auditing requirements.
• Extensive hands on experience Design & Develop Security for ECC 6.0 and BI 7.0.
• Experience in analyzing and translating business requirements into technical specifications in collaboration with application developers and functional teams.
• Good Experience on developing single, composite, and derived roles to restrict system access for authorized users in SAP R/3 - 4.6C, 4.7, ECC5.0, ECC 6.0 and BI 7.0.
• Extensively worked on RSECADMIN to define analysis authorizations
• Upgrade experience- BW3.5 to BI7.0. Involved in design, development and testing phase
• Experience using Virsa & GRC 5.3 to generate reports on Firefighter log (SPM/FF) and Compliance Calibrator (CC/RAR) SoD reports.
• Updated and maintained authorization object for tcodes using SU24 to meet the business requirements and to make sure the SAP best practices are followed.
• Good Portal Security experience with assigning Groups, and importing roles
• Extensive experience using SUIM, SU53, ST01 and RSECADMIN to troubleshoot authorization issues.
• Good production support experiences, provide 24x7 on call production support, making sure tickets are resolved in timely fashion to meet the deadlines well in the SLAs and in compliance with the change management policies.
• Hands on experience with BOBJ XI 3.1 security
• Good experience on Position based security.
• Good knowledge and experience with SolMan Service Desk, ChaRM Solar01, Solar02).
• Created OSS Message, OSS ID, Generating Developer & Object keys, Registering Objects in service marketplace.
• Excellent problem solving skills, team player with good communication skills .

TECHNICAL SKILLS

SAP Security Technical: R/3, ECC, EP, HR, BI, Security Audit, GRC-AC SoD/SOX, ESS/MSS, SSO, Solution Manager, ECATT

PROFESSIONAL EXPERIENCE

Confidential, Philadelphia, PA

SAP Security Analyst

Responsibilities:

• Closely worked with business process owners, functional and technical team to gather and analyze requirements, create tcode to role mapping, User to role mapping, unit test the role changes, perform SOD analysis and role remediation.
• User maintenance (User creation/deletion/lockdown/activation/Password management).
• Generate weekly SoD and FF log reports for the management, Setup FF, Create and assign FF IDS to users once approved by the FF ID owner.
• Work with profile generator (PFCG) to creating roles, composite roles and derived roles.
• Extensively worked on RSECADMIN to define analysis authorizations.
• Involved in Business Reorganization project which involved design and development of new AA and roles in BI7.0
• Implemented Special authorizations using colon and key figure authorizations.
• Maintained authorization object assigned to tcodes using SU24 to meet the business requirements and to make sure the best practices are followed.
• Created Authorization Groups to restrict the HR table access and review/correction of sensitive authorizations (S TABU DIS, etc.), including assignment of authorization for sensitive tables.
• Creating authorization groups using SE54
• Performed troubleshooting of user roles, tracing the users, security authorization objects and custom reporting authorization objects to debug/troubleshoot an authorization error for SAP systems for DEV, QAS and Production Environment.
• Extensive experience in SAP Security Administration & Authorization including Activity Groups, Profile Generator (PFCG), Central User Administration (CUA), Role/Content Administration and User Administration and an extensive use of transactions like SUIM, PFCG, SU01 SU10, SU24, ST01, SU53.
• Worked with the management on CSS which helped to improvise thins as per user requirements and make it more user friendly Extensively worked on authorization issues related to BI Security and was leading the team as BI SME.
• Used ticketing tools like HPQC and ISM Provide On-Call support 24x7for all SAP Security related issues and activities.

Confidential, Benton Harbor, MI

SAP Security Administrator

Responsibilities:

• Closely worked with business process owners, functional and technical team to gather and analyze requirements, create tcode to role mapping, User to role mapping, unit test the role changes, perform SOD analysis and role remediation.
• Checked Security upgrades using SU25 for BW upgrade from 5.3 to 7.1
• Performed Steps 2A, 2B,2C and 2D in SU25 for post process the settings after Upgrading to Higher Release
• Extensively worked on complete role designing and developing new AA using RSECADMIN as per client needs
• In testing phase, being at client facing role, was POC for any defects(QC) raised for Security team and UAT in HPQC
• Used BI Tables: - RSECVAL, RSDCHA, RSDCUBE and RSDCUBEIOBJ
• Created new authorization with proper naming convention standards which would reduce the ambiguity & objects can be distinguished and reduce the maintenance effort
• Created LSMW scripts to copy user master record from old BW system to upgraded BI system
• Worked with the end-client to train their resources on the new features provided to manage analysis authorizations
• Actively interacted with all members of client team

Confidential

SAP Security Administrator

Responsibilities:

• Working on ESS/MSS, Talent Management, Position based Security and SSO issues.
• POC for all the enhancements related to role changes, new role creation and new object assignment to tcode.
• The main objective is to ensure that everything get delivered on time by planning the hours and setting up probable dates for delivery.
• Responsible for designing and developing roles.
• Created Composite, Master - Derived roles to meet the business requirements.
• Worked closely with the business and functional team to define Composite role, Role to tcode mapping, User to role mapping.
• Creating authorization groups using SE54 .
• Maintaining Infotype 105 (Communication) for all new employees.

Confidential, Arlington, TX

Security team lead

Responsibilities:

• Responsible for Design and development of security strategy for enhancements and Development projects.
• Perform troubleshooting of user roles, tracing the users, security authorization objects and custom reporting authorization objects to debug/troubleshoot an authorization error for SAP systems for DEV, QAS and Production Environment.
• Updating role as requested by business process owner and run through GRC - RAR to make sure the new addition does not cause any SOD violations within the role.
• Used transaction RSECADMIN for creating analysis authorization and S RS AUTH for assigning analysis authorization to end user roles.
• Maintained authorization object assigned to tcodes using SU24 to meet the business requirements and to make sure the best practices are followed.
• Created Authorization Groups to restrict the HR table access and review/correction of sensitive authorizations (S TABU DIS, etc.), including assignment of authorization for sensitive tables.
• User maintenance (User creation/deletion/lockdown/activation/Password management).
• Work with profile generator (PFCG) to creating roles, composite roles and derived roles.
• Creating weekly reports which include SOD (SOX) reports, Inactive user reports, User termination reports and Firefighter log reports.
• Created OSS Message, OSS ID, Generating Developer & Object keys, Registering Objects in service marketplace.
• Performed User Administration activities like Creating, Deleting, Modifying, Locking and Unlocking users using SU10 & SU01.
• Good experience using CUA for central user administration.
• Maintained security for Folders, Reports, Universes and Universe connections in BOBJ XI 3.1 CMC (Business Objects Enterprise Central Management Console).
• POC for escalations(if any) for Security area Responsible for status call with client for discussing current activities and issues going on in Security Area.