SUMMARY

• Senior SAP Security and GRC consultant with 9+ years of experience in S/4 SAP Security, FIORI, GRC Access control, BOBJ, BPC, BODS, SOLMAN, BI Security.
• Strong experience in designing authorization roles for SAP S/4, ECC, GRC, IDM, BI, Solman and Enterprise Portal systems like BOBJ, BPC and HANA DB
• Strong expertise in GRC Access control (ARM, EAM, BRM, ARA, UAR)
• Strong knowledge on Create and maintain User master records, authorizations and profiles Mass user management using SU10 and using GUI scripts.
• As a security administrator, strongly expertise of User role administration using Profile Generator (PFCG) for creation and maintenance of Roles/Activity group
• Experienced in Role (single, composite and derived) design, build, test and moved them to production system
• Extensive experience in using ChaRM Lite in Solution Manager (SolMan) for Change Requests and good knowledge in Transport management system.
• Hands on experience in using Service Market place for opening OSS connections, creating users, providing developer and object key, Logon credentials for sap, OSS message creation.
• Successfully configured SAP GRC Access Control 10.0/10.1 components like ARM, EAM, ARA, BRM and Support experience in GRC 5.3 well.
• Involved in GRC upgrade from 10.1 to GRC 12.
• Involved in Configuration and customization of Multi - Stage Multi-Path (MSMP) workflows, BRF Plus Rules.
• Hands on experience in Rule Set Customizations, Configuring Mitigation Controllers, Approvers, Monitors in ARA.
• Excellent knowledge on SOX (Sarbanes Oxley) Audit issues and Segregation of Duties (SOD).
• Very good knowledge of producing and analyzing reports in SAP using SUIM, and security related tables (AGR*, USR*, etc.), and SUIM reports.
• Provided training to new team members or to Client team whenever needed
• Involved in all the Security related user audits performed by internal and external audits, also involved in designing the future Audit controls based on the current year as an improvement factor.

PROFESSIONAL EXPERIENCE

Confidential

Senior SAP Security Consultant

Responsibilities:

• Was also part of AMS support and handling 4 ABAP systems (S/4, FIORI, BW, CRM)
• Work involves support for BOBJ, AO, BPC, BODS, Hana database, PIPO
• Involved in end to end New CAJUN project as part of security like user creation/Role creation/role updates for the Cajun related activities from end to end
• Have provided weekend support whenever needed during various phases of the new project CAJUN until Go-live
• Has been working on Hypercare ticket on priority post the CAJUN go-live
• Troubleshooting the authorization issues and provided resolution faster
• In Fiori performed activities like User provisioning /access revoking, Adding FIORI catalogs and groups to roles, Co-ordinating with FIORI developer to add the available FIORI apps to custom catalogs
• Performed various jobs like role cleanup based on the standards and requirements of the Client
• To be SOX compliant we have always documented the changes to user/roles to be SOX compliant.
• Have involved in BOBJ/AO security restructuring based the requirement of client post the CAJUN project to keep the Data secured in each report based on each area like CRM, Finance, EAM, HR etc.
• Have resolved all the incidents/ service requests within SLA and provided proper solution
• Have worked on SAP Service marketplace related tasks like OSS user creation, Dev key, providing FF access to SAP team to login to systems to replicate the issue.
• Have extensively used Access risk analysis (ARA) and Enterprise access management (EAM) for our daily security related activities like Running risk analysis sending the details to SOD compliance team for mitigating
• Have always followed the process of getting approvals from SOD Audit manager and SAP role managers before assigning any role to user to be SOX complaint.
• Provided all the details to the GRC team member related to the security process of client with which he could start up with the configuration of GRC 12 version.
• Has been supporting from security team for the GRC 12 upgrade now.

Confidential

Senior SAP Security Consultant

Responsibilities:

• Creating, modifying and terminating the user IDs through GRC.
• Analyzing the missing authorization (SU53, STAUTHTRACE) and suggesting the roles or role change based on the client requirement.
• Fiori performed activities like User provisioning /access revoking, Adding FIORI catalogs and groups to roles, Co-ordinating with FIORI developer to add the available FIORI apps to custom catalogs
• Modifying Fiori Roles based on business requirements (Catalog / Groups).
• Worked on Su24 changes for Services
• Having working sessions with users for Fiori issues.
• Performed Role Modifications.
• Maintain and Import Business Roles.
• Experience on working with SAP Market Place.
• Delivered workshops to educate the customer in understanding GRC 10.1 features.
• Created OSS ID, generated Object Keys.
• Worked on customized T-codes and have done SU24 changes for the customized T-codes.
• Have done SOD analysis both at user level and role level (User risk analysis, User risk simulation, Role risk analysis and Role risk simulation).
• Have done SOD mitigation at user level as per the client suggestion.
• User locking and unlocking at the time of Refresh activities.