SUMMARY

• SAP Security Consultant with overall 10+ years of experience in SAP Security and Authorizations with strong understanding of information security practices.
• Experienced in working for Full Life Cycle Implementation and Production Support projects.
• Extensive experience in Requirement Gathering, Design, Development, and Maintenance of SAP Application security.
• Involved in Complete ERP security implementations, multiple enhancements and production support in mySAP ERP ECC 7.4, SAP S/4HANA 1709, FIORI apps, ECC 5.0lifecycles from Design phase to Post - implementation phase on different projects.
• Production support for SAP 7.4 Enterprise. A very huge landscape with various systems like ECC, Retail, HANA HR, BW, CRM, FICO. The landscape involves several developments, quality, sandbox, staging, training, production support systems as well. Enterprise portal is also configured in the landscape with development, quality and production environments.
• Experienced in working for Full Life Cycle Implementation, Go-Live, Post Go-Live, and Production Support projects.
• Extensive experience in Requirement gathering, Design, Development, and Maintenance of SAP applications security.
• Interfaced extensively with clients to gain insight and develop solutions to meet customer business needs across the entire SAP landscape.
• Extensive User and Role maintenance experience.
• Expertise in Mergers and Acquisitions entailing: SAP Security Blueprinting & Support, Controls Management, and Audit
• Extensive Technical Security Architecture, Audit, and Compliance Assessment Expertise
• Exemplary Expertise in Providing Technical Remediation Courses of Action
• Expertise in writing Technical Business Requirement Documents (BRD’s) & Risk Matrix Management
• Extensive Cross Functional Liaising Expertise (FI, SD, MM, PP CO, BW, HR)
• Extensive ECC and S4 Security Architecture, Deployment, Authorizations, Scripting, Support, and Risk Remediation Experience
• Exemplary Expertise in Providing Remediation and Identifying Risk Related Attributes in SAP ECC, APO, & GRC 10.1
• Proficient expertise in Creating Documentation to conduct Business End User Training and Change Management Meetings
• Extensive Business Framework and Controls Enforcement Expertise (SOX)
• Expertise in writing SAP ECC, BW, and HANA S/4 Role Design & SAP Role Matrix Management
• Proficient with SAP Security Project Management Life Cycles: Waterfall, Agile, SDLC
• Expertise with SAP Landscapes: ECC (All Versions), GRC 10.0 & 10.1, BW, FIORI, GTS, SOLMAN, and S4 HANA

TECHNICAL SKILLS

Tools: Technologies

ERP: SAP ERP ECC 7.4, SAP S/4HANA 1709, FIORI

Modules: SAP security, GRC 10x

SAP NetWeaver: SAP EP 7.4

Databases: MySQL, Oracle

Operating Systems: Windows NT/98/2000/XP/Vista, UNIX, LINUX

Office Tools: MS Word, MS Excel and MS PowerPoint

PROFESSIONAL EXPERIENCE

Confidential

SAP Security Consultant

Responsibilities:

• Principal Analyst for Upgrade, Migration, Integration, Configuration and implementation of Access Request Management (ARM) tool, Access Risk Analysis (ARA) tool and Emergency Access Management (EAM) tool of SAP GRC AC 10.1 from older version SAO GRC AC5.3
• Designed Roles & Responsibilities matrix of restricting NWBC work centers of GRC 10.1 front end.
• Security liaison for Business stakeholders, Subject Matter Experts (SME's), Business Analysts and SAP Implementation teams including Functional, Technical and Infrastructure teams to build security solution as per business requirements.
• Security team member for full cycle implementation of SAP ECC 6.0, CRM 7.0, SAP GTS that includes business requirements gathering from security standpoint and realization of requirements, User administration & Roles Design, Testing & Transport of roles and troubleshoot all security and authorization errors.
• Validated Access Control Owners migration from GRC 5.3 to GRC 10.1 including Role owners, Risk Owners, Mitigation Control Owners and Monitors
• Scheduled authorization sync jobs & repository sync jobs to sync target plug-in systems into GRC.
• Scheduled batch risk analysis to perform risk analysis across all systems.
• Analyzed existing security roles for SOX / SOD issues utilizing ARA tool & lead remediation effort and role redesign exercises by conducting workshops
• Worked closely with Internal and External audit teams on Segregation of Duties (SOD) conflicts to maintain systems SOX compliant.
• Secured critical tables and programs by implementing security restrictions on critical authorization objects.

Confidential

SAP Security Consultant

Responsibilities:

• End to end Implementation of GRC 10.1 Access Control ( ARA, ARM, EAM and BRM)
• Configured Access Risk Analysis module by Creating Connector, setting up Connector type, updating Global Rule sets, Updating Repository Sync (User, Role and Profile).
• Created Mitigation Controls as per required by Business process and evaluated strategy to remediate and if in case remediate not possible worked closely with Business folks to Develop Mitigation Controls .
• Configured MSMP ( Multi Stage Multi path workflows ) as per Business requirements
• Configured BRF+ Rules as per Business requirements
• Performed workshops with Business users to make them understand how to get more benefits from GRC and let them know End to End GRC Functionality and gathered the required data from business users
• Created Custom Rule sets by coping Standard GRC Rule sets and adjusted Custom rule sets as per Business needs and Generated Rule sets
• Worked on ARA Configuration, Creating Connectors, Activating BC Sets, Identifying Risk/ Mitigation owners and monitors and incorporated them into ARA
• Expert in Configuring EAM and configured Fire Fighter id's, Fire Fighter owners and Fire Fighter Controllers .
• Provided Emergency Access to Business users /Sustainment team on demand basis after getting appropriate approvals from management.
• Provided Business users ( BPO Owners, Auditors, Risk owners and end users ) so that they can take appropriate action if they get any automated notifications from GRC or if any users request GRC Access or emergency Access
• Performed the support of the project and worked closely with Client SAP Security resource to provide them required knowledge Transfer and Provided KT Documents

Confidential

SAP Security Consultant

Responsibilities:

• Performed as a senior analyst in the full life cycle implementation, which includes Analysis, Gathering Requirements, Development, Testing, Reporting, Go-live and Post Go-live support for HANA S/4. Created users, roles, privileges, packages, schemas as part of HANA S/4 security and development.
• Designed Rulesets, Risk IDs, Mitigation controls & Workflow for RAR.
• Designed firefighter mechanism as part of integration to CUP.
• Design ECC roles for various job roles and analyzed the SODs. Worked towards remediation and mitigation user & role access.
• Manage changes for Security and GRC to be compliant with SOX.
• Troubleshoot and maintain the open requests in CUP tool initiated by business & IT users.
• Created, generated profiles, Authorizations, object classes, objects, and roles and assigned to user master.
• Extensively used Automatic Profile Generator (PFCG) to create roles/profiles for various modules such as HR, MM, and BI etc.
• Transported profiles between clients within R/3 system and between R/3 systems; Performed transports and mass transports of roles.
• Used Derived activity groups to create new activity groups and to transfer transaction codes from old ones to new ones.
• Added and deleted transaction codes from roles; Worked on creation of variant / parameter transaction codes from table maintenance or for a program.
• Addition of transaction code to role menu and maintain the authorization
• Worked on SAP Check Indicator Defaults and Field values, reduced the scope of Authorization checks using transaction SU24 and maintained check indicators for Transaction codes.
• Effectively analyzed trace files and tracked missed authorizations in user master record
• Performed user maintenance tasks, User creation, deletion, lock down, activation, password management tasks and ran various user administration reports.
• Cleaning up of roles and profiles not being used.
• Transported the generated roles and profiles using SAP transport management system.
• Used Derived activity groups to create new activity groups and to transfer transaction codes from old ones to new ones.
• Setting up Transport management system
• Client administration - Client copy and transport.