Sap Netweaver Security Consultant Resume
Toronto, OntariO
Objective:
To obtain a challenging position as an SAP Netweaver Security Consultant in a well reputed organization where my education and work experience will have valuable application
Overview:
- Over 10years of IT experience including more than 5 years as a Security consultant on R/3, BW/ CRM and Portal.
- Proficient in use of standard security administration tools such as Profile Generator for Authorization Profiles/Roles administration (design, development, implementation), and User administration, (mass user creation and maintenance).
- Technical analyst for SAP security in production & non-production environments,
Segregation of Duties and Audit Compliance Standards. - Hands-on experience in Role, Object, and Position based Security (HR)administration in multiple SAP implementations.
- Extensive knowledge of HR Switches P_PLOG, P_ORGIN, P_PERNR, P_ABAP and various other Authorization objects and HR security tables.
- Experienced in Implementing, Testing, Training and Documenting SAP security Roles.
- Proficient in use BI Analyses Authorizations tools as ( RSECADMIN).
- Experienced with Government regulations such as SOX and general compliance policies.
- Analyzed and resolved authorization issues using (SU53), (SU56) and (ST01).
- Used CATT scripts for Mass user creation. Expert in using (SUIM) for Security reports.
- Skilled in using GRC (VIRSA) tools like CC for SOD remediation process.
- Experienced with implementing CUA functionality within customer landscapes.
- Experience with SAP Portals, Single Sign On(SSO), IViews, ESS, MSS and Business Warehouse.
- Comprehensive understanding and knowledge of Solution Manager, OSS notes application and Service Market Place.
- Effectively involved 24x7 call management across world time zones.
- Capable of working independently in the definition and development of security roles
- Reviewed system logs using SM21 and ST22 for ABAP short dump associated with the failed jobs.
- Client Administration: Creating clients (SCC4), copying local/remote clients, importing and exporting clients. Creating logical systems (BD54).
- Excellent knowledge of Change and Transport System (CTS). Created Background Jobs (SM36) and monitored job status using (SM37).
- Excellent communication, strong analytical, problem solving and administrative skills.
Professional Experience:
SAP Netweaver Security Consultant
Confidential, Toronto, Ontario. Dec08 / Present
- Performed user maintenance tasks, User creation, deletion, lock down, activation, password management tasks and ran various user administration reports.
- Analyzed and replaced existing roles with new roles accurately matching business needs.
- Provided detailed documentation of SAP Security procedures to client.
- Worked with process experts on Segregation of Duties (SOD) issues.
- Designed and developed Security solutions for HCM (HR) and FICO.
- Transported change requests from DEV to QAS and PRD.
- Identified Security issues, recommended and implemented solutions to problems.
- Cleaning up of roles and profiles not being used.
- Documented policies and procedures surrounding the system including daily, weekly and monthly tasks within the security team.
- Provided supplemental Basis support for all landscapes.
- 24/7 support. Follow company documentation standards.
SAP Security Consultant:
Client: Confidential, Minneapolis. USA Feb08 / Nov08
- Security Monitoring & Reporting.
- Created Users with transaction SU01 and Maintained Authorization profiles using PFCG.
- Addressed Segregation of Duties issue.
- Participated in Upgrade project from ECC 5.0 to ECC 6.0.
- Created Custom roles and generated profiles with reference to the business profiles in different modules.
- Analyzed and resolved missing authorization issues reported by the users.
- Assisted internal auditors to prepare for the annual Audit.
- Redefined authorization scope using SU24.
- Fixed authorization issues encountered during the unit and integrationtesting with the help of transaction.
- Used SM21 to review system log and ST22 for ABAP short dump.
SAP Security Consultant:
Client: Confidential, Winnipeg, Manitoba. Dec07 / Feb08
- Assisted Government of Manitoba SAP security analysts with the development of new position based roles and changes to existing roles.
- Processed SAP user access change requests from the departments.
- Troubleshoot derived roles and SAP user's security issues.
- Analyzed missing/required SAP authorizations.
- Worked with helpdesk support staff and SAP configuration analysts regarding daily issues/problems.
- Created SAP user IDs for testing. Reset SAP passwords.
- Deleted old/expired SAP security roles from the Production system.
Basis / Security Consultant:
Client: Confidential, Brampton, Ontario. Sep06 / Nov 07
- Interacted with functional, internal/external auditors, management and user community regarding the development of SAP roles and Authorizations.
- Implemented Role-based security including design, testing and documentation.
- Created Profiles, Roles, and Composite Roles with profile generator (PFCG).
- Used CATT Scripts for creating mass users.
- Involved in SAP Security viz. Sarbanes-Oxley (SOX) compliance and SOD.
- Used VIRSA Firefighter in emergency situation.
- Troubleshot authorization problems using (ST01), and (SU53).
- Configured CUA to reduce the cost for user administration and to make user administration more secure by centralizing the work.
- Educated & trained client personnel in R/3 Security.
- Defined, Analyzed and Maintained BackgroundJobs. (SM36).
- Client Administration and handled client copies and exports.
- Reviewed system logs using SM21 and ST22 for ABAP short dump associated with the failed jobs.
- Provided 24/7support across the time zones.
SAP Security Consultant.
Client: Confidential, Mississauga, Ontario.June 05 / Sep 06
- Coordinated with a functional expert for the creation, assignment and maintenance of users and profiles.
- Handled users on R/3, CRM and BW systems.
- Utilizing the Profile Generator created and maintained user ids, roles and profiles for the functional consultants.
- Used SUIM for various security relevant reports.
- Analyzed and resolved authorization issues using SU53, SU56 and ST01.
- Used CATT scripts & Microsoft Excel to create mass user accounts.
- Transported roles between clients on a particular system and across systems from (Dev) Development to (QAS) Quality Assurance and to (PRD) Production.
- Used Compliance Calibrator in identifying SOD conflicts.
- Consolidated & reduced the scope of Authorization checks using transaction SU24 and maintained check indicators for Transaction codes.
- Coordinated with Auditors in completing SAP security audit requirements checklist.
- Tested and implemented security recommendations given by SAP audit team.
- Used SM21 to review system log and ST22 for ABAP short dump.
- Provided 24/7 support across world the time zones.
SAP Security Consultant.
Confidential, Toronto, Ontario Apr04 / May05
- Created Users with transaction SU01 and Maintained Authorization profiles using PFCG.
- Addressed Segregation of Duties issue.
- Created Custom roles and generated profiles with reference to the business profiles in different modules.
- Used reporting transaction SUIM to analyze the users, roles, user groups transaction codes and profiles.
- Worked on SAP Security and audit logging tools (SM20, SM19, SECR), setting Security audit log parameters, defining filter groups, complete and user defined auditing, logging changes to user master records, profiles, and authorizations
- Analyzed and resolved authorization issues using SU53, SU56 and ST01.
- Redefined authorization scope using SU24.
- Fixed authorization issues encountered during the unit and integrationtesting with the help of transaction SU53 and ST01.
- Maintained authorization periods for users limited time use.
- Used CATT Scripts for creating mass users.
- Maintained roles and profiles to meet Audit and departmental requirements.
- Performed Mass role transportation from Development environment to QAS and Production environment.
- Tested and implemented security recommendations given by SAP audit team.
- Tested roles by using positive and negative testing with test user IDs.
Service Technician
Confidential, Scarborough, Ontario Aug03 / Mar04
- New PC Hardware configuration, Software installation and testing.
- Diagnosed and resolved hardware and software problems through, email, telephone and in person.
- Deployed and upgraded PC/Network hardware, operating systems, and application software.
- Completing support calls in a timely and efficient manner.
- Prioritized request for support service keeping in mind service level requirements and available manpower.
- Provided feedback to Field Operations Manager on potential Customer situations.
- Provided individualized training for users or those performing new tasks.
Technical Skills:
ERP
SAP R/3 4.6, 4.7 EE, ECC 5.0,6.0, SRM5.0
BW 7.0, EP 6.0
SAP Tools
VIRSA"AE, CC, & FF", Quick Sizer, Solution Manager4.0.
Operating Systems
Windows XP/2000, Windows NT 2000/2003, Unix/Linux
Database
Oracle8x, 9i, 10g. SQL Server 7x, MS Access 2003, DB2
Server / Office tools
MS Office, Lotus Notes, MS Outlook, Visio
Languages
ABAP, JAVA, HTML, SQL/PLSQL,VB
Education/ Certifications:
- Masters Computer Science
- Advanced Diploma Network Engineering. (Cisco Academy).
- Certified CCNA.
Training:
- EP200 SAP Enterprise Portal System Administration
- ADM100 SAP Web AS Administration I
- ADM200 SAP Web AS Java Administration
- ADM940 SAP Authorization Concept
References: Available upon request.