PROFILE:

• 8 years of Sap Security experience, 3 years of GRC ARA experience and 1 ½ years of Hana Security experience.
• Security Consultant with experience of the SAP development life cycle from Blueprinting through Go - Live.
• Experience through 3 complete implementation projects from blueprint to Go-Live.
• Ability to work security concepts for world class companies, Manufactures, Oil & Gas and Confidential .
• Build Roles and provide support after Go-Live.
• Expertise in Creation of Master role, Composite roles, Derive roles for various Streams\Modules.
• Have concept of cyber security
• Technical Experienced in implementations of Sap Security.
• Hands on experience in ECC 6.0, BI/BW, Bobj, BPC, HANA Security.
• Experience in User Maintenance and authorization.
• Experience in gathering requirements from Business team and building Role according to Matrix.
• Experience in working with transporting roles between development, quality and production R/3 Systems.
• Experience in GRC 10 Access control and EAM = Emergency access management.
• Experience in GRC and audit principles, SOX compliance requirements, SOD risk mitigation, etc.
• Experience in building Fire Fighter role and sustainment roles.
• Experience in building Fire fighter ids and experience in user management in GRC.
• Understand configuration concept of SSO.
• Understand configuration concept of SLT.
• Exposure and limited experience with IDM in developing use cases to test end to end compliant user provisioning.
• Experience in HANA Security, user provisioning and role building as per
• Requirement and system parameter settings, security settings.

EXPERIENCE/PROJECT WORK:

Confidential, Roselan, NJ

Sap Security Analyst

Responsibilities:

• Working on Confidential Internal Implementation.
• Taking care User administration via CUA thru the Solman to all Target Systems BW/HANA, CRM and ECC
• Taking care role administration, creation and distribution to the user and test ids.
• Taking care role administration and user administration thru the HANA Studio.
• Taking care all critical issues related to Security.

Confidential

Sap Security \ GRC, HANA Security Consultant

Responsibilities:

• Providing help and solution to Sap Clients in 3 major areas such as security authorization, GRC authorization, role, SOD analysis & reports, Hana authorization and user management.
• Evaluated the critical security, Basis and development tcode and wrote risk for Confidential.
• Evaluated Single Sign on and architest for Confidential in Denvor, Colorado.
• Worked at different Sap client and their SAP security need.

Confidential, Oklahoma City, OK

Sap Security Consultant

Responsibilities:

• Build Authorization (Roles for PTP, RTR HTR, GRC, HANA)
• Implemented GRC 10.01 roles and provisioning + user base and role base analysis for SOD and SOX Compliance.
• Implemented sap security notes and took care Users dev. Object key at SAP Market place.
• Responsible of HANA Security, user provisioning and role building as per Requirement.
• Responsible of BPC security, role development and user provisioning.
• Responsible of BOBJ security, Roles and user provisioning
• Exposure and limited experience with IDM in developing use cases to test end to end compliant user provisioning.
• Supported FIT2, Wave1 which Include defects and enhancements.
• Participated with basis team in order to create SSO for ECC to Fiori serve.
• Configure the parameters and Kerberos token/user principle name via spnego and created user mapping by setting Confidential name for users by using Confidential

Confidential, Mason, MI

ERP Security Analyst

Responsibilities:

• Implemented HCM Security and PTP security, Finance security, SCM security, OTC Security.
• Participating in development phase for ECM and Performance management blue print design to create security roles according to requirements for merging Solo Company with Dart Container.
• Developed Master data role in PTP
• Developed CHARM (Change Request Management) security role. Charm is getting implemented in Dart Container.
• Work with deployment team and Quality team for cutover activities..
• Configure and created EAM (Emergency access management) in GRC10 and also worked on ARA component of the GRC 10.
• Implemented Mitigation procedures, Rule set customizations.
• Technical expertise to SAP GRC 10.0 implementation with an enterprise-wide scope
• Worked on daily Role mapping, User mapping, roles review and production Issue which include Enhancement, SCR (Scope change request), create new users, Change user profile and also detail Analysis.
• Took care Market place request such as creation of OSS ids, Developer key and also securing the user access for notes or access ids when BASIS or Developer need to apply the notes.
• Expertise in ECC 6.0 role development.
• Worked on CUA Systems for Production, Sandbox, and Development.
• Also work on BOBJ, BPC security.
• Worked on Portal security including ESS/MSS
• Worked on producing quarterly reports such as if user did not log in for 90 days.

Confidential, Phoenix, AZ.

Sap Security Analyst

Responsibilities:

• Worked with development phase of the system, implementation and role development until the system go live in Indonesia with 1400 business users.
• Perform production support until system was stabilized.
• Responsible for user provisioning and support for the client operation located in Indonesia and in North America. Develop and mapped with sod master role, composite role, drive roles and single roles for FI, SCM, MT, HR.
• Provision Portal roles for the new hires or if there is any changes in their duties.
• Daily provisioning ESS/MSS reports.
• Responsible of provisioning and maintaining a secure area for SAP OSS connection to apply a note or conduct an investigation for Post go live or any PI channel issues.
• Responsible for break fix and enhancement which is required after go live or after cutover.
• Use of ER (emergency access) tool to assign emergency access for limited time for wide open roles.
• Developed HR roles and Finance Roles according to SOD.
• Transport roles to production system when enhancement or any changes done in development thru the Charm (Tool of the solution manager).
• Designed and built Authorization Role Strategy for CRM, BAS, BW and Business Objects

Confidential, San Diego, CA

Sap Security Analyst

Responsibilities:

• Responsible for user administration, roles and profile generation.
• Work with business and functional team to gather requirements for the end user authorization needs.
• Handle security development for various Modules.
• Created new roles as per segregation of duties requirements.
• Created Single role, composite role, and derived role as per organizational structure.
• User maintenance on day to day basis.
• Transport of roles, profile and user into SAP systems.
• Extensively worked on authorization objects, fields, authorization and authorization profile in profile generator (PFCG).
• Identify missing authorizations by using SU53 and maintain them manually in PFCG.
• Analyzed user related information including roles and profiles by utilizing transaction SUIM.
• Involved in audit activities to ensure Sarbanes Oxley (SOX) compliance.
• Executed Confidential report in background to perform cleanup.

Confidential, South San Francisco, CA

SAP Security Team Member

Responsibilities:

• Performed in-depth root cause analysis.
• Participated with the team for SOX compliance processes and best-practices.
• Responsible for user administration, role, profile generation.
• Created new roles as per segregation of duties (SOD) requirements.
• Created single role, composite role and derived role as per organizational structure.
• User maintenance on day to day basis.
• Analyzed user related information including roles and profiles.
• Worked on authorization objects, field authorizations and authorization profiles by using profile generator PFCG.
• Assisted and worked with HR consultant to create roles and profiles.