SUMMARY:

• Overall 19+ Years of extensive IT Industry experience
• 11 + years as SAP Security Consultant .
• Worked extensively as SAP Security Administrator , Sys tem and Network Administrator, SAP Basis Administrator.
• Lead and facilitate information gathering sessions to validate business cases, gather and document Business functional objectives.
• Expertise in Administration, User Security, Implementation, migration and Supporting SAP R/3 Systems (ECC 5.0, 6.0, CRM, NetWeaver, BW/BI, BOBJ, Enterprise Portal, Ariba, HANA Studio, S/4 HANA, Solution Manager and GRC 10.0)
• Experience in designing and implementing Security for new environments to ensure that an experienced SAP company’s Security policies adhered to concerns identified during internal audits (SOX) and general controls reviews.
• Experience in Role creation, derivation & modification in PFCG & Role Expert, test and transport roles to DEV, QA & Prod systems.
• Comfortable with ECC as well as CRM system environment’s Security, SAP HANA database studio, Designing new system security(upgrade and installation) and defining custom roles as per project requirement. Restricting business transactions and their access. Running ECatt scripts for mass user creation.
• Experience in GRC security risk analysis for role creation and modifications
• Experience in configuring GRC AC 10/10.1 Workflow
• Experience in configuring GRC AC 10/10.1 mitigation controls
• Experience in Reporting in GRC AC 10/10.1 (Risk Analysis, EAM Logs, Mitigation Controls, etc)
• Experience in developing and administering security design for the SAP landscape (ECC 6.0, BW, EP, BO, BI/BW, PI, and Solution Manager)
• Experience in GRC 10.0s installation and configuration ( ARM and EAM tools )
• Experience on ECC S/4 HANA administration.
• Experience on SAP HANA Analytical privileges, creating customized roles in HANA DB for Developers, Modellers, Technical Admins, End Users and Power Users.
• Performed reviews for program change control, application Security, and process integrity. Conducted unit testing and functional integration testing of Security profiles. Reviewed and assessed controls surrounding SAP R/3 administration Security.
• Skilled in time management and organizational skills, with the ability to manage detailed, concurrent tasks.
• Ability to meet deadlines with quality results while managing risk.
• Ability to successfully manage multiple assignments and/or projects simultaneously
• Ability to perform well under pressure
• Proven experience in ability to adapt quickly and work in teams, a can - do ability to take charge when necessary and drive the work to completion.
• Proficient and well-versed in Office suite - Microsoft Office skills including Word, Excel, Powerpoint and Outlook.
• Quick in learning ‘In-House’ Softwares.

PROFESSIONAL EXPERIENCE:

Confidential

Sr. SAP Security Consultant

Responsibilities:

• SAP Security administration and analysis including User Administration, Role Development and Modification, Upgrade and Maintenance Support, Root Cause Analysis and Incident Resolution across SAP Landscape including ECC, CRM, BW/BI, Enterprise Portal, S/4 HANA, Solution Manager and GRC 10.0.
• Coordinate sessions to validate business cases and document business functional objectivities to update the role structure.
• Develop and enhance SAP security with ECC, CRM and BW environment.
• Analyze the Test & Performance Results and implement the changes required to meet project and business expectations.
• Role creation, derivation & modification in PFCG & Role Expert, test and transport roles to DEV, QA & Prod systems through Change Request (CR) Management Process.
• Coordinate detailed Unit Test & Integration tests.
• Thorough knowledge of role menu, data and analysis authorization concepts.
• Second level escalation for SAP related incidents. Good understanding of incident management process, SLA and OLA concepts.
• Day to day technical support and troubleshoot Security issues. Analyze missing authorizations using System Trace (ST01), SU53 report and SUIM. RRMX, RSRT, RSECADMIN for BW Authorizations.
• Analyze, troubleshoot SAP Security related issues with root cause analysis and propose solutions.
• Coordinate with Basis Team in GRC Implementation and Enhancements.
• Provided risk analysis and risk mitigation at role level and user level.
• Performed the activities - rule building and validation, risk analysis, risk identification, risk remediation and mitigating controls.
• SOD validation reports generation in GRC.
• Monthly/Quarterly Audit Report generation and validatiions.
• User creation in Hana Database Studio, create, assign and maintain new repository roles.
• Maintenance of HANA User requests - Password resets, delete, deactivate and reactivate HANA users.
• Assist/Report weekly/Monthly/Quarterly SODs reports and support for both Internal and External Auditing.
• Perform periodic self-assessments/audits of SAP security environment.

Confidential

Sr. SAP Security Consultant

Responsibilities:

• SAP Security administration and analysis including User Administration, Activity Group Development and Modification, Upgrade and Maintenance Support, Root Cause Analysis and Incident Resolution across SAP Landscape including ECC, CRM, NetWeaver, BW/BI, BOBJ, Enterprise Portal, Ariba, S/4 HANA, Solution Manager and GRC 10.0.
• Single Point of Contact (SPOC) for Onsite, Best Shore and Business Calls.
• Monitoring Service Now tool for Day to Day user access requests/incidents/change requests and weekly/monthly service reports.
• Coordinate sessions to validate business cases and document business functional objectivities to update the role structure.
• Develop and enhance SAP security with ECC, CRM and BW environment.
• Generate Test execution reports/graphs at a project level and component level.
• Analyze the Test & Performance Results and implement the changes required to meet project and business expectations.
• Role creation, derivation & modification in PFCG & Role Expert, test and transport roles to DEV, QA & Prod systems through Change Request (CR) Management Process.
• Prepared detailed Unit Test & Integration test scripts and performed thorough testing.
• Thorough knowledge of role menu, data and analysis authorization concepts.
• Second level escalation for SAP related incidents. Good understanding of incident management process, SLA and OLA concepts.
• Day to day technical support and troubleshoot Security issues. Analyze missing authorizations using System Trace (ST01), SU53 report and SUIM. RRMX, RSRT, RSECADMIN for BW Authorizations.
• Analyze, troubleshoot SAP Security related issues with root cause analysis and propose solutions.
• Actively involved in PIR (post implementation review) and MIM (major incident management) meetings.
• Coordinate the system upgrade activities and perform testing cycles to ensure stability before roll-outs.
• Provide On-call Customer Support for all the SAP systems in a production environment.
• Lead the Offshore team in Regular Support activities like User Access request processing via GRC, Risk analysis and Mitigation, audit sensitive transaction usage.
• Reporting in GRC AC 10/10.1 (Risk Analysis, EAM Logs, Mitigation Controls, etc).
• Periodical review of Role Owners and assignment approvers in GRC with Line of Business coordinators.
• Collaborate and lead sessions with FI/CO/SD/AM/MM/PS Business Unit Teams in identifying the requirements, validate and provide the optimal solution with an implementation plan for a GRC Compliant solution for different SAP Clients and clarify any concerns.
• Develop, enable, disable function actions and function permissions as per business requirements in GRC.
• Work with the business SoD mitigating control monitors to ensure effective/accurate monitoring is occurring in a timely manner.
• Coordinate with Basis Team in GRC Implementation and Enhancements.
• Gathering business requirements to configure in GRC ARM / EAM
• Configuring Access risk Management, Access request management, Emergency Access management in GRC 10.0.
• Provided risk analysis and risk mitigation at role level and user level.
• Performed the activities - rule building and validation, risk analysis, risk identification, risk remediation and mitigating controls.
• Define Role owners & approvers.
• User creation in Hana Database Studio, create, assign and maintain new repository roles.
• Maintenance of HANA User requests - Password resets, delete, deactivate and reactivate HANA users.
• Assist/Report weekly/Monthly/Quarterly SODs reports and support for both Internal and External Auditing.
• Perform periodic self-assessments/audits of SAP security environment.
• Coordinate/Train the Process Owners for Documentation and testing, with an eye on project status, issues and activities at all times.

Confidential

SAP Security Consultant

Responsibilities:

• Day to day technical support and troubleshooting of Security issues. Analyze missing authorizations using System Trace (ST01), SU53 report and SUIM, RRMX, RSRT, RSECADMIN for BW Authorizations.
• User administration (Setting up user accounts, unlocking user accounts, User termination process, reactivating users, Reset password on user account).
• Validate User authorization and Role authorization data using AGR and USR tables.
• Using the Profile Generator (PFCG) created functional templates, single/composite roles
• Used the derived role concept for production roles setting the correct Organizational Levels to the specific plant, warehouse, company code, division, etc. required for each site.
• Role creation, derivation & modification in PFCG & Role Expert, test and transport roles to DEV, QA & Prod systems.
• Resolving audit issues of removing critical authorizations, profiles from users, restrict sensitive table display/update access in production, remove debug access from production, and restrict access to business or system sensitive transactions.
• Analyzed the requests coming to the Security mailbox, validating the users, and initializing the change management tickets.
• Developed and modified roles as part of enhancement through Change Request (CR) Management Process using the tool PCM (Production Change Management - Lotus Notes Based tool).
• Maintained and Created Roles as per the Classification in RSD (Roles & Security Database - Lotus Notes Based tool) and maintained sink between RSD and SAP.
• Monitor and Process user requests for IDM Access with necessary authorizations.
• Worked on Global Access Management implementation based on GRC 10.0
• Provided Configuring Access risk Management, Access request management, Emergency Access management in GRC 10.0.
• Provided risk analysis and risk mitigation at role level and user level.
• Performed the activities - rule building and validation, risk analysis, risk identification, risk remediation and mitigating controls.
• Defined Role owners & approvers.
• Developed various SOD reports for users & Roles and cleaned up existing Roles with conflicting actions.
• Defined User access approvers and Risk owners in GRC.
• Defined Mitigation monitors and approvers in GRC.

Confidential

SAP Basis Security Consultant

Responsibilities:

• Installed, Configured and provided maintenance of CRM 7.0, ECC 6.0 IDES EHP4, SCM 5.0 systems.
• Implemented RCA (Route Cause Analysis) with Solution Manager for the Project - NGAM (Next Gen Apps Management).
• Monitored and solving alerts related to Background Jobs, System errors and Short dumps.
• Upgraded support Package and Kernel.
• Provided User maintenance, Role Maintenance.
• Performed SAP security, SAP User Management engine (UME), including activity groups, roles, profile generator, and central user administration (CUA).
• Performed Client creation and copies for exclusive projects.
• Worked with functional teams and business analysts to gather role requirements.
• Handled Change Requests.
• Performed Documentation and Implementations changes.

Confidential

SAP Basis Consultant

Responsibilities:

• Monitored the sandbox servers and background jobs.
• Performed Workload and Performance Monitoring
• Analyzed and solved the missing authorizations, day-to-day security issues that are being raised by the users.
• Installed and Configured the SAP Enterprise Portal, CRM 2005 and ECC 6.0 and Applying support packages
• Analyzed and Performed trouble shooting of ABAP Short dumps.
• Performed Client Administration including client copy / export / import / deletion.

Confidential

Sr. System Administrator

Responsibilities:

• Performed Server Installations based on requirements from internal projects.
• Performed Server maintenance viz., patch upgrades, Disaster recovery planning and execution, Periodical Backups for the servers and databases using VERITAS 11D and Dell TL2000 Backup server.
• Provided Network maintenance, periodical backups for Cisco switches, Router and ASA.
• Performed Desktop and Laptop troubleshooting.
• Performed Installation, configuration and maintenance of file server and Exchange server.
• Performed Installation, configuration and monitoring of Dell Servers (2950/1950/860 ) & Dell Latitude Laptops.
• Performed Documentation on Network support activities.

Confidential

Sr. Engineer

Responsibilities:

• Installed, commissioned and conducted ATP of equipment and configuring System, software at client sites
• Performed root cause and cause and effect analysis to diagnose and solve technical and operational problems
• Performed process improvement and change management.
• Installed and provided maintenance of Intergraph GIS Systems, Digital Fotorite Systems, HP Plotters, PSTD Scanners & HP Network Printers, primly used for Satellite Imagery Interpretation.
• Performed Migrations from NT 4.0 to Windows 2000 Active Directory
• Configured and Implemented Group Policy Objects in Active Directory.
• Performed Disaster and Network Security Policy Implementation documentation
• Performed Weekly Server backups through HP DAT Drives.
• Performed RAID5 and RAID 0+1, configuring in SAN device and servers
• Performed Desktop support and print Server administration.

Confidential

Sr. Engineer

Responsibilities:

• Installed & Troubleshoot PCs & Different Peripherals at different Client Sites.
• Designed, implemented and provide Maintenance of PC LANs.
• Provided maintenance of Data Centre Servers and prepare security patches update schedule.
• Provided Routers IOS update as per requirement, Canopy equipment setup and maintenance
• Provided Network design to integrate the different subsystems supplied by different vendors.
• Provided LAN points troubleshooting and enabling ports and adding in to VLAN as per requirements
• Provided File and Print servers maintenance
• Analyzed business requirements and Design Active Directory service architecture.