We provide IT Staff Augmentation Services!

Sap Security Consultant Resume

PROFESSIONAL SUMMARY:

  • Having around 7 years of professional experience in the areas of SAP Security, GRC, Fiori and Basis Intended to serve as a SAP Security consultant in dynamic and challenging environment.
  • Certified SAP Business Objects GRC Access Control 10.0
  • Worked on Configuring Access risk Management, Access request management, Business role management, Emergency Access management in GRC AC 10
  • Good Experience in User Administration Creation and Modification of User Master Records for Project and End Users.
  • Hands on experience in SUIM tool for generating different kind of reports based different selection criteria.
  • Good experience in user administration in production support, quick turnaround for end user requests, and Helpdesk support for user administration
  • Full trouble shooting support for the users authorization failures in all SAP applications and resolving the Security issues and support in integration testing of Roles/Profiles.
  • Good experience in developing Security authorization roles as defined by application managers for the end users using Profile Generator (PFCG) tool.
  • Created Workflows for AC 10.0 implementation to provide notifications for role approvers in AC
  • Having good understanding of Business Processes in SAP
  • Good experience in Access Risk Analysis tool for SOD Analysis such as User level, Role level, Authorization object level etc.
  • Good experience in using the tool SU24 for maintenance of authorization objects/keys in transaction base.
  • Good experience in creation and maintenance of Fire Fighter user IDs for Critical Authorizations for Project and End Users.
  • Performed the activities - Risk identification, Rule building and validation, Role analysis, Risk Remediation and mitigating controls.
  • Running risk analysis on role level and user level
  • Developed various SOD reports for users & Roles and cleaned up existing Roles with conflicting actions.
  • Experience in SAP Fiori Security implementation for end user mobile application interfacing with ECC.
  • Knowledge on structural authorization security of HCM module.
  • Knowledge on Hana security User management, Role creation, restriction using Table, View and Schemas at Analytic privileges in Role through HANA Studio. Tracing and troubleshooting.
  • Experience in SAP Netweaver 7.4 installation and configuration.
  • Hands on Experience on all aspects of SAP Basis Administration including Client Copy/Export/Import, System Copy/Refresh, Support Packs, Kernel Upgrades, Spool Administration, Background jobs, Workload Analysis,, Add-on installations, applying OSS Notes.
  • Committed team player with high degree of conceptual and analytical ability and strong Zeal to learn new technologies.
  • Excellent communication and interpersonal skills with ability to co-ordinate activities and work in a team environment to the deliverables.

PROFESSIONAL EXPERIENCE:

Confidential

SAP Security Consultant

Responsibilities:

  • Responsible for maintaining SAP products implemented (ERP6.0, BI) at Confidential .
  • Responsible to maintain SAP application security. Primary activities include identifying requirements, designing new roles for new implementations and also responsible to maintain existing sap application security roles.

Confidential

SAP Basis and Security Consultant

Responsibilities:

  • Implemented GRC Access Control 10.0
  • Performed the Post Installation steps of GRC AC 10.
  • Defined RFC Connections.
  • Activated the SICF Services, BC-Sets.
  • Maintained the Access Control Configuration Parameters.
  • Generated the Standard Rule set and executed the batch risk analysis job.
  • Connector Assignments to AUTH Scenarios.
  • Configured Access risk Management, Access request management, Business role management, Emergency Access management in GRC AC 10
  • Defined the Connectors to establish the connection to SAP Backend systems.
  • Executed the Repository Synchronization Jobs.
  • Connector Group Definition and Connector Assignment.
  • Running risk analysis on role level and user level
  • Assigning Fire Fighter ID’s to user
  • Created Firefighter IDs & maintain mitigating Users & controllers.
  • Schedule Jobs to produce the reports of FF ids and sent to Functional Managers.
  • Created Firefighter IDs & maintain mitigating Users & controllers.
  • Defined Mitigation monitors and approvers
  • Defined Role owners & approvers
  • Schedule Jobs to produce the reports of FF ids and sent to Functional Managers.
  • Performed the activities - risk identification, rule building and validation, role analysis, risk remediation and mitigating controls.
  • Redesigned the Security Roles as per the initial SOD reports.
  • Defined Role owners & approvers
  • Defined User access approvers and Risk owners
  • Defined Mitigation monitors and approvers
  • Created Workflows for AC 10.0 implementation to provide notifications for role approvers in AC Emergency Access Support
  • Developed various SOD reports for users & Roles and cleaned up existing Roles with conflicting actions.
  • Performing security related activities for ERP, and BI-BO systems like
  • User and Role administration
  • Creating, modifying delimiting, locking, unlocking, resetting passwords.
  • Creating user groups b) Updating user profiles c) Creating master and derived roles as per business requirement and maintaining authorizations.
  • Fixing authorization related issues using su53 and st01 and inserting the missing authorization objects manually as per requirement.
  • Created Authorization objects and Fields as per business requirements.
  • Mass locking and unlocking of users during upgrades/major imports.
  • Using SUIM for analysis of the users, profiles, roles, auth. objects and change documents
  • Transporting roles in the System landscape.
  • Mass download and Upload of roles.
  • Involved in auditing activity, prepared audit reports as requested by auditors.
  • USMM Activity- Classifying users according to licenses and generating system measurement results and sending these reports to SAP Team.
  • Provided security for Business Objects reports at folder level and object level.
  • Managing the User rights on Business Objects Applications like Desktop Intelligence, Web Intelligence, Designer and Dashboards etc.
  • Worked on Security implementation for Fiori Mobile interface using NetWeaver Gateway system as communication channel for leveraging REST services and OData Services on SAP Business Suite ECC 6.0.
  • FIORI / UI5 Gateway role design to include Catalogs, Groups and ODATA for FIORI Launchpad
  • Backend role design to include Tcode, ODATA, Webdynpro with Authorizations.
  • Trace error log analysis using /IWFND/ERROR LOG for missing Services and Backend authorizations.
  • Knowledge on structural authorization security of HCM module
  • Finding the Position number.
  • Creating Communication Info type for new User ID creation.
  • Assign Structural authorizations profile to User ID manually.
  • Generate authorizations for users in organizational plan using RHPROFL0 report
  • Performing Basis related activities like Scheduling, monitoring and managing background jobs.
  • Configuring and maintaining system profiles.
  • Configuring the operation modes.
  • Client administration: client copies such as Local, Remote copies and client exports.
  • Configuring the Transport Management System (TMS), maintaining system landscape, and importing transport requests.
  • Performing Kernel upgrades
  • Starting and Stopping of SAP
  • Applied Support Packages and Add-ons and SAP Notes
  • Creating and troubleshooting RFC’s using sm59
  • Installation of NW7.4 system on windows platform with DB2 database.
  • Configuration and Installation of SSL s for BI and ECC systems.
  • Configured SMTP to exchange emails between SAP and MAIL SERVER.
  • Analyzing the performance of SAP using ST03N transaction like transactions with high response times, high DB time, high CPU time, etc.
  • Registering the Developer keys, Object Access Keys (SSCR) at service.sap.com.
  • Performed BO Upgrade from 4.0 to 4.1 SP5
  • Resolving day-to-day issues as per mails and tickets and helping end users.

Confidential

Subject matter expert

Responsibilities:

  • Installation of SAP ECC5, ECC6 systems, web dispatcher for product development and testing.
  • Installed Support packages, upgraded kernel.
  • Importing transport requests to test systems.
  • Fine tuning systems to utilize memory and CPU resources optimally and deliver optimal performance to web service calls.
  • Trouble shooting web services, RFC, authorization issues, runtime errors, startup issues, load balancing issues.
  • Exposing web services for SAP ECC5, ECC6 connector by creating web services.
  • Generating WSDL for the exposed web service.
  • Identified all the minimum required authorization objects to access each web service and created a role with minimal authorizations for SAP connector to execute all required web services.
  • Testing the web services.
  • Prepared a document for Minimum authorization objects required to use SAP connector for FIM.

Confidential

SAP Security Consultant

Responsibilities:

  • Day to day support activities like trouble shooting production issues, handling support tickets.
  • Administering users, Authorization data and Roles.
  • Mass locking and unlocking of users during upgrades/major imports.
  • Using SUIM for analysis of the users, profiles, roles, auth. objects and change documents
  • Created master and derived roles as per role matrix for SD, FI modules
  • Assigning transactions in roles as per business requirements and setting up authorization fields.
  • Secured roles by organization levels such as company code, plant, cost center, etc.
  • Troubleshooting authorization related problems using SU53, ST01.
  • USMM activity (updating users license data)
  • Registering the Developer keys, Object Access Keys (SSCR) at service.sap.com.
  • Worked on user administration in SAP Portal Security (created users, roles, groups).
  • Transported Roles to Quality and Production system.
  • Troubleshooting authorization related problems using SU53, ST01.
  • Used SU24 and maintained check indicators for Transaction codes.
  • Worked with security related tables (AGR*& USR*).
  • Created Firefighter IDS for Firefighter Users.
  • Mapped Firefighter ids to Owners, Controllers, and Firefighters.
  • Scheduled Fire-Fighter Background Job for Logging
  • Defined RFC Destination for Firefighter Program
  • Provided Firefighter Log Reports.
  • Monitor SOD Conflicts at user level and role level.

Hire Now