SUMMARY

• Experienced in creating and maintaining user’s authorization, roles and profiles for SAP ERP R/3, ECC 6.0, CRM, SCM, BPC, BW/BI, FI - CO and HR.
• Strong understanding of SAP authorization concepts and its implementation.
• Experienced in creating users, user groups and mapping roles to users on front end in Portal.
• Worked with process experts & head of departments for SOD rule sets and conflicts assigned appropriate roles to the users.
• Worked on Sarbanes-Oxley (SOX) compliance with team lead and functional team to meet SOX internal and external audit requirements.
• Security redesign projects that met internal and external SOX requirements for Manufacturing and Consumers base companies.
• Worked on BW/BI security and creating roles based on the info cube level coming from technical BW/BI team for end user.
• Experienced in implementing Roles based on security using single, derived and composite roles through coordination with functional and Business team owners.
• Performed transport and mass transport of roles, Authorization Groups through PFCG and also through Solman (Rev-Trac) tool. Performed global User Administration through CUA.
• Experienced in developing monitoring plan and Security Policies for the security department.
• General Knowledge in following modules FICO, MM, T&P, SD, HR, CRM, GTA, GDP, APO etc.
• Worked extensively in SAP R/3, ECC 6.0 with authorizations using Automatic Profile Generator for various modules such as FICO, MM, T&P, SD, HR, AP0, CRM, ERP, MDM etc.
• Analyzed and resolved authorization issues using SU53 or if required then trace out with User.
• Experienced in download SAP table information into Microsoft Excel & creating reports.
• Strong technical, analytical, and interpersonal communication skills to provide quality service and proven results. Possesses good understanding of various business activities and processes.
• Testing and supporting in implementing Portal for creating roles according to the users and approvers requirements in Trip request and Expense report request.
• Analyze audit reports after every three months for External and Internal auditors.
• Use SU24 if any changing required in role for any particular object or for Custom Object.
• For Mass Generation of Profiles used SUPC, for updating profiles in user master records by PFUD.
• Transported roles i.e. single and mass between clients on a particular system and across systems from Development to Q/A to Production. Documented day-to-day activities for future reference.
• Executed Info System Authorization by utilizing transaction SUIM and created various reports.
• Worked with SAP License Audit team to remove unnecessary SAP systems and bring assets for the company.
• GRC- 10.0/10.1/12 has been completed to avoid Segregation of Duties and secure company from risk to assign more extra access to users.

TECHNICAL SKILLS

• 4.7 through ECC 6.0, S/4 Hana, SAP BI/BW, SAP Portal, CRM, SCM/APO, MDM, BPC with BW, Security and Operations (Banks).
• SAP VIRSA/GRC Tools 5.3 (CUP, SPM) & GRC. 10.0/10.1/12 AC
• Security Audit reviews, Segregation of Duties (SOD), SOX, SAP License Global CUA Administration, Solution Manager (Rev-Trac)
• Windows NT/XP/98/2000/Vista/window 7
• Microsoft Access, Excel, Word, and PowerPoint.
• HTML, DHTML
• SQL, MS Access

PROFESSIONAL EXPERIENCE

Confidential, TX

Sr. SAP Security lead

Responsibilities:

• Create users, user groups and assigning roles and user groups for DEV, QA and Production.
• Worked on BW security and created roles based on the info cube level and provided authorizations based on the queries.
• Creating and maintaining user’s authorizations, roles and profiles for SAP ECC 6.0 and BW/BI etc.
• Performing routine checks for security related issues and troubleshooting using SU53 and ST01.
• Working with process and business owners to define the authorizations needed for End Users.
• Created a Global SAP Security Strategy for the entire company to implement position based Global
• Experience in creating users, user groups and assigned approved roles to users in SAP Production.
• Working with BW system with front end BPC Security system, with technical team for End Users in Production.
• Performing technical functions for SAP Security projects, applications and systems and SAP Security incidents. Analyzes authorization errors, fix and test to move changes in to production.
• Usage of su53, Usage of ST01 and fixing the authorizations if failed.
• S/4 Hana User Administration, Authorization Overview and creating and managing roles.
• Creating User for SAP S/4 Hana.
• Creating Catalog, cannot create on runtime system and design time can created on run time.
• Provided guidance and assistance to functional, business, test, developer and security teams handling day-to-day support and post production support of SAP Security.
• Implementing GRC-10 to avoid Segregation of Duties and secure company from risk. Work with SAP License Audit team to remove unnecessary sap systems and bring assets to the company. Establishing Processes, Policies and Procedure for company.
• Role Management in S/4 HANA - Create Role, grant privilege to user/role, grant role to the users, revoke role from user, SSO, troubleshoot and resolve HANA security related issues.
• User Management and Role Management in SAP FIORI - Create Role, assign Business catalog and Business Tiles Group to the role, Transports, Create User and assign role to the users.
• Setup Test IDs and managed SAP security authorizations test defects for Unit Testing, Integration Testing and User Acceptance Testing(UAT).
• Responsible for communication, coordination, and teamwork within the team and end users.
• Created and assigned Firefighter Id’s and extracting Firefighter Id’s log.
• Performed GRC analysis to identify sod violations.
• GRC- 10.0/10.1/12 has been completed to avoid Segregation of Duties and secure company from risk to assign more extra access to users.
• Worked on critical authorization objects related to planning and consolidation.
• Built security for maintaining dimension master data.
• Worked extensively on BPC task creation, data access profile, team creation etc.
• Built BPC Roles related to end users, Flex Clients.
• SAP License Audit team to remove unnecessary sap systems and bring assets to the

Confidential

SAP Security Team Lead

Responsibilities:

• Involved in gathering End User Roles business requirements to implement SAP ECC 6.0 security authorizations.
• Working with process and business owners to define the authorizations needed for End Users.
• Developed many Single and Composite roles for the Project team to support the project including ECC, PI/XI, Solution Manager, BASIS, SAP Security and ABAP.
• Work very closely with Business, Audit and Audit controllers to eliminate SOD conflicts by roles, positions and end users before Go-Live.
• Transported project roles across the landscape to restrict project team access.
• Working with process and business owners to define the authorizations needed for End Users.
• Created a Global SAP Security Strategy for the entire company to implement position based Global End User Roles in North America, Europe and Middle East.
• Created Global User and Roles Naming convention document.
• Involved in gathering End User Roles business requirements to implement SAP ECC 6.0 security authorizations.
• Moving forward to Base Line phase and will follow Solution Delivery, Realization, Go-Live and Post production support.
• Go-live BW system with front end BPC Security, with technical team for End Users in Production.
• Working on Implementation of FI Global in ECC.6 with technical and business team.
• With my strategic thinking I always tried to provide technical solutions in any situation to exceed the solution process which helps avoid future problems and workload.
• Provided guidance and assistance to functional, business, test, developer and security teams handling day-to-day support and post production support of SAP Security. I am a true team player with hands-on experience in SAP Security and Authorizations.
• Implementation of GRC-10.1 has been completed to avoid Segregation of Duties and secure company from risk to assign more extra access to users.
• Establishing Processes, Policies and Procedure for the company in future use.
• Generated authorization profiles by maintained authorization fields and partially maintained Authorization fields.
• Work with SAP License Audit team to remove unnecessary sap systems and bring assets to the company