SUMMARY:

• 16 Yars of total experience in SAP Security & Authorizations R/3 for the modules SD, MM, PP, PM, QM, RH, FI, CO. Last Version is ECC 6.0.
• 8 Months in SAP Security & Authorizations in BW - BPC and PCM ((Business Planning and Consolidation, Profitability Cost Management).
• 3 Years in SAP Security & Authorizations in CRM.
• 2 Years in SAP Security & Authorizations in BW.
• 1 Year in SAP Security & Authorizations in APO.
• 3 Months in SAP Security & Authorizations in GTM for a Confidential for the creation of the roles templates - St. Louis Mo.
• 8 Years of experience in Cobol from HP-3000 and HP-9000.
• 22 Years of total experience in IT
• Creation of roles and maintenance in SAP R/3 for the modules SD, MM, PM, PP, QM, RH, FI, CO And APO, CRM and BW.
• Creation and maintenance of the SAP users with 2 years in experience handling CUA (Central User Administrator).
• Experience with the Tívoli Tool for the administration of the tickets from SAP Users.
• Knowledge of Structural Authorizations for HR module.
• Attending the SAP user's requirements by phone and Tickets by Tivoli, in order to assist them in some problems with SAP lack of authorizations in process or transactions.
• Creation of new roles and modify the existents roles for the upgrade version R/3 4.6c and implementation for the SAP modules: FI, CO, MM, PP, PM, SD, RH, QM.
• Assist to the consulting personal from the Consulting Company in order to give them the information about the users with a specific access.
• Implementation of the politics rules from The Consulting Company and achievement that procedures in the SAP Access Control.
• Review the users with high risk access transactions and eliminate the risk in the most possible cases.
• Work and review the access according to GRC (Governance Risk Compliance) Version 5 and 10.
• Work experience GRC in the component RAR - Risk Analysis and Remediation - with the tool Virsa
• Knowledge of GRC in the component ERM - Enterprise Role Management, in order to create the role authorization inside GRC and review the workflow for grant it.
• Knowledge of GRC in the components CUP and SUP.
• I have realized the Archiving System in the SAP DEV device.
• For one month I was in charge of transport the SAP order requests from DEV system to QAS and PRD.
• Knowledge in SAP CRM Net Weaver Application Server V 7.0 (business roles)
• In charge for the construction of the new roles for version from 4.5b to 4.7, documenting the process in the System SOLMAN - Solution Manager.

TECHNICAL SKILLS:

Solid experience in: SAP Security & Authorizations.

Solid experience in: programming in Cobol (HP-3000, HP-9000)

60% Knowledge in: programming SAP ABAP R/3, Windows 2008.

EXPERIENCE/PROJECT WORK:

Confidential

Sr. SAP Security & Authorizations Administrator

Responsibilities:

• Attention to authorizations requirements for systems SAP ECC North and Enlace, and BW, BW Hana and Solman with CUA for its management.
• Review and analyze the risks founded by the personal audit from Confidential and the continue elimination for these risks in the SAP systems ECC productive as North as Enlace
• Generate the information required by GRC V 10.1 in order to charge the roles on it and apply Risk Analysis to the roles and SAP users.
• Administration of the SAP Security and generation of the new roles of authorizations for BW-BI Hana in order to migrate from BW V3.5; as well the administration of the SAP Netweaver Portal for Hana.
• Creation and maintenance of the authorizations roles for SAP ECC V6.0.

Confidential

Sr. SAP Security & Authorizations Administrator

Responsibilities:

• The process consisted in implement the clients of Confidential inside Solution Manager for EWA and Incident Management.
• Participate in the project of SAP Security implementation for the client ASPEN LATAM for the countries México and Colombia.
• Creation of the project in Microsoft Project for this project (ASPEN) showing the resources needed and task and times.
• Creation and modification of roles of authorization for SAP ECC 6.0.

Confidential

Sr. SAP Security & Authorizations Administrator

Responsibilities:

• Create and maintain authorizations with correct SOD for the authorizations roles in ECC 6.0.
• Working not every days just on demand.

Confidential

Sr. SAP Security & GRC

Responsibilities:

• Review the GRC RAR conflicts for Grupo Modelo ECC 6.0 Production System and delivery recommendations in order to eliminate the conflicts and risks of transactions in the Final SAP Users for SOD.
• Review all the rule-set for Risks, Functions, Rules, Transactions, Authority Objects that are uploaded into GRC Production System.
• Review the roles created in PFCG for ECC
• Review the profiles showed in the RAR of GRC which are incorrect assigned to the final SAP users, because some profiles didn´t have a role assigned, according with the table AGR 1016, so these profiles shouldn´t be showed (considered) in the GRC RAR.
• GRC Access Management version 10.0 with SAP Net Weaver. Inside SAP GRC (SAP logon) with the transaction NWBC.
• Review the Matriz of SOD for Grupo Modelo.
• Upload the tables AGR USERS, AGR PRFOFILES, ADCP, AGR 1251, AGR 1252, AGR AGRS, AGR-DEFINE, USR02, USR21 from ECC 6.0 Production System into SQL in order to have access to excel.
• Review the job that every week runs on Production System of GRC for RAR of ECC of all the users production system. Upload the files created in this job into Excel in order to handle the information in SQL.

Environment: GRC Version 10.0 with SAP NetWeaver and ECC Version 6.0, SQL.

Confidential

Sr. SAP Security & Authorizations Administrator

Responsibilities:

• Creation and Maintenance of the SAP roles of authorization (in transaction PFCG) for the project of Implementation of SAP BW-BPC (Business Planning and Consolidation Management, version 10.0) and SAP PCM (Profitability Cost Management) with SAP NetWeaver for BPC. for the consultant staff in Developing, Quality and Production System and for the Final SAP Users for Argentina, Brasil, Colombia and Venezuela, accessing Queries, Workbooks and Infocubes.
• Assignation of authority groups for all the SAP users in PRD, DEV and QAS system.
• Use of Audit Information System (Transaction SUIM) for the review of access of Roles, Profiles, values of fields of authority objects, transactions by SAP users, etc.
• Creation and maintaining of the SAP users for consultant users in DEV, QAS and PRD system and for the SAP Final users in PRD system with the transaction SU01 and SU10.
• Add the authority objects to the SAP roles, /POA/A BPT, UJ IDENTI, S RS ICUBE
• Create the Order Transport in transaction SE09 for the roles of authorizations created or modified inside PFCG.
• Copy the Order Transport from Development System A to B with the transaction SCC1, in order to make the tests of authorizations.
• Create and maintain the "Z" authorizations for BW-BPC and BW-PCM in transaction RSECADMIN.
• Restrict the authorizations from RSECADMIN according with the Activity, Country,
• Apply Traces to SAP consultants and SAP Final users in order to identify conflicts of authority, The transactions used are ST01, ST05 and inside RSECADMIN the logon records.
• Verify the access of the final SAP users and consultant users inside BPC SAP NetWeaver according to the Profiles, Task Profiles and Teams assigned to the users.
• Verify the roles created automatically and assigned to the BW-BPC users.
• Create the roles specially for the access of Planning, Consolidation, Profitability and Costs.
• Verify the tables UST04 (Users-profiles), RSDCHA - To identify the characteristics relevant for authorizations, RSDCUBEIOBJ - Infocube with his characteristic, RSDCUBE - Infocube with his Infoarea, RSDCUBET - Text for Infocubes, RSDIOBJT - Text for IOBJNM Characteristic.
• Review the table AGR USERS in order to get the SAP users created and the roles assigned to them.
• Review access to transactions of SAP users in transaction ST03.
• Verify jobs in SM37.

Environment: SAP BW-BPC & PCM version 7.0 with SAP NetWeaver, ECC 6.0

Confidential

Sr. SAP Security & Authorizations Administrator

Responsibilities:

• Creation and Modification of the SAP roles of authorization in transaction PFCG for the project of SAP implementation in Soriana.
• Review the matriz of access for the job positions according to the SAP functional consultants.
• Review and configure the transactions check with the authority objects related to in transaction SU24.
• Review the programs in transaction SE83.
• Review and modify the called transactions in order to ask or not ask for the authority object (S TCODE) in transaction SE97.
• Create the SAP users in DEV, QAS and PRD system in transaction SU01 and SU10, for Final SAP users and consultant users.
• Create and assign authority group for the SAP users in transaction SU01
• Review the access of roles, profiles, authority objects and values in transaction SUIM.
• Get the reports for the tables AGR USERS, USR02, USR21, USR04, AGR AGRS, AGR PROFILE, AGR 1251, AGR 1252, AGR 1016, etc.
• Review the lack of authority for a user in Transaction ST01 and ST05 (Traces)
• Review ABAP programs in transaction SE83.
• Review critical access for PRD system like jobs (delete, copy), transactions (PA20, PA30, SCC1, SCC4, SM01, ST22, SM21, PFCG, SU02, SU01, SM35, SM37, etc.)
• Attending the phase of testing in QAS system in order to identify the lacks of authorizations and modify the roles profiles and transport again to QAS until the roles has not issues.
• Verify and create group of authorization for tables in transaction SE54 and assign to tables that not have an authority group already.
• Verify tables that were created without an authority group, these tables were assigned automatically for SAP to the authority group &NC&.

Environment: SAP ECC Version 6.0

Confidential

Sr. SAP Security & Authorizations Administrator

Responsibilities:

• Implementation of SAP ECC 6.0 SAP Security for Goldgroup Company.
• Creation and Modification of the SAP roles of authorization (Master Role, Derived Roles, Single Roles and Composite Roles), in transaction PFCG, for all the job positions in the Company of Goldgroup México, according to the specification of the Project Manager.The SAP modules are HR, FI, CO, LE, PM, MM, SD, QM, BC
• Attention of the users of the mines of the Goldgroup in México and Vancouver, review the process and assist with the lack of authorizations, and requirements of a new transactions.
• Creation of the SAP users for Quality and Production System with the roles according with the job position of each one. The version is SAP ECC 6.0
• For the HR module, verify if the infotype of communication is correct for the SAP users of the employee number and name in PA20 transaction.
• Creation of SAP users (Final and consultants) for DEV, QAS and PRD system in transaction SU01 and SU10.
• Review the access to transaction SM37 of the jobs, in order to restrict the access to copy, delete, etc. to non consultants users.
• Use the transaction SUIM to identify users with roles, authority objects, values, etc.
• Use the transaction SU24 to configure the authority objects for specific SAP transactions.
• Review the called transactions for S TCODE in transaction SE97.
• Identify problems of authorization in ABAP programs debugging this in trans. SE38

Environment: SAP ECC Version 6.0

Confidential

Sr. SAP Security & Authorizations Administrator

Responsibilities:

• Review and analyze the new structure for freedom codes of purchases.
• Analyze the authorizations already existing in PRD system with the transaction SUIM
• Get the information from the tables AGR USERS, AGR PROFILES, AGR 1016, AGR 1251 and AGR 1252.

Environment: SAP ECC Version 6.0

Confidential

Sr. SAP Security & Authorizations Administrator

Responsibilities:

• Implementation of SAP Business Control for creation of the roles in transaction PFCG and validating the SOD with SAP Virsa GRC version 5.0 for the modules of MM and SD from SAP ECC version 6.0
• Attending Defects in the tool of Quality Center for the process of the testing in Quality System and solving these.
• At the same time attending tickets, change orders and requirements for users who have a lack of authorizations in Production System, this is thru the tool of Service Desk.
• Creation of SAP users in CUA system. Version of SAP is ECC 6.0
• Creation and maintaining of authorizations objects "Z" in BI in transaction RSECADMIN
• Creation and maintaing of the SAP Users for BI on SAP NetWeaver.
• Trace the process in transaction ST01 and ST05.
• Review programs in transaction SE38 in order to identify some problems with process of final SAP users.

Environment: SAP ECC Version 6.0, BI 7.0, GRC v5.0

Confidential

Sr. SAP Security & Authorizations Administrator

Responsibilities:

:

• Participation in the implementation of SAP BUNGE Project Global GTM, in order to review the global transaction for the module GTM and creation of the roles template. Modify, Create, Maintain the roles with the correct authorization, Version ECC 6.0.
• In transaction PFCG were the creation of the SAP roles for this module
• In transaction SU24 create the configuration for the Z and Y transactions new with the authority objects that should be checking.
• Review and modify the relation from the main transaction that call to other transactions, with the transaction SE97. Here I eliminate the request of the authority object (S TCODE) from the transaction that is called.
• Create the order requests for the configurations of SE97, SU24 and creation or roles, with the transaction SE09.
• Review the tables TCDCOUPLES, AGR USERS, AGR PROFILES, USR02, USR21, AGR AGRS, AGR 1251, AGR 1252, AGR 1016.

Environment: SAP GTM

Confidential

Sr. SAP Security & Authorizations Administrator

Responsibilities:

• Modify, Create, Maintain the roles with the correct authorization for the modules of MM, SD, PM, QM, FI, HR.in SAP R/3 Version ECC 6.0. for Single Roles, Composite Roles, Derived Roles and Master Roles.
• This is made in a Developing System exclusive to Sap Security and the rol is assigned to one transport order Iin transaction SE09) and then in other Developing System this transport order is copied in the transaction SCC1 in order to realize the tests.
• Create and Modify the SAP users using CUA (Central User Administrator) since in Solution Manger System to Change the initial password, block and unblock, change the end date and all the master data.
• Using the Tool Tivoli to Administer the requirements / tickets in order to attend the final SAP users needs, some times I communicate with the final user by phone when they have one lack of authority in some SAP process.
• Attend the Key-users and process owners in order to give them reports from users and access in critical transactions for the Company.
• Review the tables AGR USERS, AGR DEFINE, AGR TEXTS, AGR 1251, AGR 1252, AGR 1016, TCDCOUPLES, AGR AGRS, USR02, USR21, ACDP.
• Accessing the transactions ST21, ST22, ST03, ST01, ST05, SE54, SE93, SUIM, SE16, SE16N, SM36, SM37

Environment: SAP ECC Version 6.0

Confidential

SAP Security & Authorizations Administrator

Responsibilities:

• Modify, Create, Maintain the roles with the correct authorization for the modules of MM, SD, PM, QM, PP, FI, HR including Travel Expanses..
• Create and Modify the SAP users. Change the initial password, block and unblock, change the end date and all the masters data.
• Assist the final SAP users by phone and mails when they have one lack of authority in some transaction.
• Assist to the final SAP users to create the ticket to ask for the new authorization.
• Process each ticket in order to give to the final SAP user the authorization that is missing, reviewing each case and then modifying the correct roll of this final user.
• Attend to the personal of Regional Support when they need authorization for some process
• Give reports to the Audit department in order to identify the users with access to some critical process or transactions.
• Identify SAP users with high risk in transactions, for several modules, eliminate the transaction(s) with risk and assign these transactions to other SAP users who do not have the risk by the manager of the module or process.
• Execution of the Archiving process in the DEV system, just for 3 months.
• Transport the orders request of programs, roles and profiles from DEV System to QAS System and Production System, just for 2 months.
• Lead the project EAS to create the new roles for the version 4.7 and new template.
• Give the information needed to the Functional Leaders for the project EAS, like transactions for users, if they have used any transactions in some period time in the past. Create of the new roles for the version 4.7.
• Verify the values that the new roles should have to had, this checking was with each one of the personal in charge of each module.
• Testing the roles with the final users inside the project and modifying again the roles for new authorizations.
• Creation and maintaining of the new roles for Mexico (migrating from version 4.5b to 4.7).

Environment: SAP R/3 4.6c, SAP R/3 4.7

Confidential

Security & Authorizations Administrator

Responsibilities:

• Creation and maintenance of SAP users in SAP R/3 was 1125 users, CRM, APO and BW.
• Creation and maintenance of authorizations profiles-roles (Profile Generator) in SAP R/3 for SAP modules SD, MM, PP, FI, HR, CO, PM, QM. And ERP: CRM, APO, BW.
• Creation of new authority objects.
• Creation, tests, implementation and maintenance of the SAP profiles-roles and users of
• Assist the final SAP users by phone and mails when they have one lack of authority in some transaction.
• Analyze the user problem or lack of authorization (by /NSU53)
• Grant the authorization with the functional new authorization to the final user leader in charge of the SAP module
• Add the new authorization to the final user.
• Maintaining the roles-profiles in R/3 according the requirements form the audits applied by Deloitte & Touche
• Identify SAP users with high risk in transactions, for several modules, eliminate the transaction(s) with risk and assign these transactions to other SAP users who do not have the risk by the manager of the module or process.

Environment: SAP R/3 3.0, 4.6c, SAP CRM, SAP BW 3.0, SAP APO