SUMMARY

• Over 15 years of experience in the Information Technology industry, specializing in SAP Security and GRC in implementation and support projects.
• Worked on full life - cycle implementations, from requirements gathering and design phase to post-implementation support.
• He has extensive experience in security user profile design, role to position mapping, and in resolving authorization and access control incidents.
• Handled design documentation as well as knowledge transfer to client users.
• He has in-depth knowledge of developing Security Strategies, designing and implementing SAP Security models, processes and procedures by following best business practices for SAP Security in S/4 HANA, FIORI, ECC, HR, BW/BI, SRM, CRM, Business Objects, and GRC applications.
• Experience in SAP Application Security/Basis support work.
• Experience with S/4 HANA Greenfield project implementation.
• Experience with SuccessFactor ECP Employee Central Payroll
• Experience in BW/BI Security with Analysis authorization.
• Experience in configure/manage/support CUA.
• Experience in HR security designing security including Structural, Indirect role assignment and Context -based security
• Strong experience in supporting Alert enterprise Suite and GRC - AC 10.X Suite.
• Strong experience in SAP Security Upgrade.
• Experience in implementing security for various SAP modules such as FI, CO, HCM, MM, SD, etc. in various versions of R/3 including 4.0, 4.6C, Enterprise R/3 4.7 and NW2004s products such as ECC 6.x,BW/ BI 7.5, EP, SRM 4.0,APO,CRM, GRC 10.x, FIORI,HANA, BOBJ.
• Experience in analyzing and processing of SOD and SOX issues, Audit projects and in reviewing critical and sensitive authorizations, implement improvements to meet audit requirements.
• Extensive experience in carrying out requirement gathering workshop and prepare Knowledge transfer documents.
• Experience in working with Automatic Profile Generator (PFCG), creating and modifying Single, Composite and Derived roles.
• Extensively performed User Master Reconciliation and Mass Generation of profiles, SUIM reports for reporting, audit and troubleshooting purpose.

TECHNICAL SKILLS

• ERP S/4 HANA,ECP- SuccessFactor, SAP R/3 Version 4.0B,4.6 C,4.7, ECC 5.0, 6.0, EhP7, Solution Manager
• Data Warehouse, BW 3.5, BI 7.0, BI 7.3, BI 7.5
• Security Utilities, GRC 10.x, Alert Enterprise 4.3
• Helpdesk, Remedy, Service Now

PROFESSIONAL EXPERIENCE

Confidential, NC

Lead SAP Security Consultant

Responsibilities:

• Responsible for S/4 Hana 1809 Finance Security Greenfield Implementation, working with SAP Security in ECC and S/4 HANA, FIORI Security, ECP- Employee Central payroll for Success factors SAP HR Security.
• Responsible for design, build, testing and all support phases in project, Key Contributor for designing and implementing Security for all process areas
• Participated in all phases of ASAP Methodology; Project Preparation, Business Blue-Printing, Realization, Final Preparation and Go-Live &Support.
• Work with functional team extensively to design the roles as per their needs meeting the SOX compliance SAP Role management and IT Change control processes over operational and implementation lifecycles.
• Experience in S4/HANA Security modules AP, AR, CO, GL,Banking.
• Expert in SAP Security best practice concepts for Role Design and Expert Profile Generator and authorizations for role changes
• Designed security roles for ECP- Employee Central payroll for Success factors SAP HR Security
• Extensive knowledge on Fiori Apps and responsible for Activating Odata Services for Fiori Apps
• Responsible for creating, updating, and managing authorization roles and adhering to SAP security best practices and SOX compliant access rules
• Worked closely with Internal Audit team in identifying and implementing Mitigation for violations.
• Leading and facilitating functional / technical workshop sessions
• Executing daily operational activities related to the SAP Environment including object transports
• Manage the full life cycle of role changes from design, development, and testing, final move to production.
• Worked closely with Business for User Access Review

Confidential

Senior SAP Security Analyst

Responsibilities:

• Implemented complete GRC Access Control 10.0 suite (ARA, EAM, BRM and ARM).
• Role Re-designed for all business areas for authorizations of Security
• Implemented Password Policy Changes for SAP systems.
• Production support for GRC AC 10.0 including Updating Ruleset, Firefighter user administration, Role imports to BRM and User provisioning through ARM.
• Lead in developing security for Business Objects and carried on BO Administration using CMC application.
• Experience in CUA configuration to assist user administration across multiple SAP systems landscapes.
• Setup user and roles for HANA and FIORI Systems.

Confidential

Senior SAP Security Analyst

Responsibilities:

• Designing and Implementing SAP Security for ECC, BW/BI, BOBJ, CRM, SRM
• Involved in implementation, upgrades and the post installation activities
• Applied OSS notes and Support packs. Downloading and applying Notes through SNOTE
• Created client copies according to the business requirement.
• Configured Transport management system for ECC landscape DEV, QAS and PRD .
• Code deployment and SAP change control functions including the transport management system
• Update Support Packs and apply OSS Notes and PATCHES required as a pre-and post-up-gradation maintenance using SPAM and SAINT
• Worked with clients to understand business requirements
• Maintained all the system profiles in development and production systems.
• Configured RFC between the systems.
• Performed Managed system configuration and CCMS monitoring setup
• Generated the EWA for all SAP systems from SAP Solution Manager.
• Daily Monitoring of Systems - Background Jobs, System Logs, Short Dump Analysis, Errors and Troubleshooting
• Performed Printer configuration and transport the same across landscape. Troubleshooting of print issues and print tickets whenever required
• Assisted the audit team for SOD SOX compliance.
• Daily administrative tasks include monitoring system logs, Work processes, locks and updates user administration.
• Management of Table Space Allocation Using BR TOOLS.
• Knowledge of Unix/Linux operating systems
• Worked with business in establishing mitigations process and remediating access risks identified with end-user authorizations.
• Worked closely with Internal Audit team in identifying and implementing Mitigation for violations.
• Lead in developing security for Business Objects and carried on BO Administration using CMC application.
• Experience in Working with OSS (service marketplace), setting up users, connections, generating Keys.
• Interacted with business teams to understand security requirement and designed security Matrix.
• Provided Post go-live support and primary person responsible to resolve all Quality center tickets.
• Designed and built Firefighter roles for functional and Technical Teams.
• Performed local and remote client copies on ECC 6.0 system.
• Performed Printer configuration and transport the same across landscape.
• Applying Support Packs, Plug-Ins & Add-Ons - ABAP Stack.
• Continuous monitoring of system performance and tuning in case of issues by working along with the functional and development teams involved, System profile maintenance using RZ10 & RZ11.
• Monitor all SAP systems like work processes, users, system logs, short dumps, locks, developer traces, system traces, disk space, etc.
• Experienced in Development and Production support and Project support for all SAP systems in SAP ECC environment and other environments.

Confidential

Technical Lead - Security

Responsibilities:

• Completed a full life cycle implementations for SAP R/3 (FI/CO and HR modules) and SAP BW.
• Installed, configured, and provided technical support for all SAP add-ons.
• Performed Daily health check and reporting of SAP system and performance issues.
• Transport Management Configuration.
• Client Administration.
• Trained Client to carry on Basis and security tasks.
• Developed and executed specifications and test plans for system monitors applied to all environments.