SUMMARY

• USA Citizen (since the year 1986), completed BSEE & MBA.
• SAP Certified in SAP Netweaver Security. Hands on SME Level Technical Expert in SAP Security.
• 17 Years SAP Security Hands on Expert Level Technical Experience (12 years as Lead) in: SAP Security Administration, Project Management, Architect, Gather SAP Security Requirements, Planning / Design / Develop / Implementation, Upgrades and SODs / SOX Compliance. Specialist in Parent / Derived / Composite Roles Creation & Changes, Transport, Users Provisioning and Production issues Resolution. SAP ECC Security top level Specialist (FI/CO all modules).
• Completed several Large Scale SAP Security Implementations & Upgrades (as SAP Security Technical Lead - independently) including SAP Security Implementation at Confidential (Public Sector Organization).
• USA Employers: Confidential, Confidential, CSC, SAIC, Lockheed, Pacesetter Siemens, Confidential Brambles, iGate Corp and Wipro (from India). SAP Security Work Places: Confidential (5 Years & 6 Months), Confidential (3 Years).
• SME level Hands on Technical Experience in SAP Security Administration / Implementation / Upgrades / Project Management / SAP Security Architecture Design / Central User Administration (CUA) & User Provisioning, Security Architect & Build, Testing, Cutover tasks / Post Go-Live Production Support / Security Monitoring / SODs Violations & Risk Analysis (SOX) / Audit Reports / License Administration (USMM & SLAW) / Role based access control (RBAC - ABAP) and Java environment. Created & Maintained large number of Roles and User Master Records (over 67,000 Production users), Mass User Locks / Unlocks. Helped in defining Security Controls. Managed several SAP Security Projects as Technical Lead.
• SAP Security Administration and Post Go-Live Production Support Expertise: System Audit, Batch Jobs, RFC Security, Profile Parameter Settings, Table Logging, Audit Logs Review, System Logs Monitoring, Custom Objects / Tables / Programs Security, Users Access, SODs / SOX. & Knowledge Transfer.
• PFCG / SU24, SU25 / ST01, SU10 / RSECADMIN and AIS (Audit Information System), CUA and Firefighter Administration expert. Requirements gathering with Business Process (Functional) Teams, worked closely with - Internal & External Auditors.
• Specialist in: ECC 6.0 (Finance /Controlling, G/L, AP, AM / FA, PP, PM, PS, QM, MM, SD), BW/BI 7.0 & 7.1, Solution Manager 7.0 / CUA, SRM 7.0 and Virsa Firefighter, IdMax, HCM and Portal 7.0. Good Working knowledge of GRC 5.3 & GRC 10.0, APO, CRM and Approva / Bizrights. Working Exposure to: Readsoft, OpenText, Novell Idm, XI/PI, BPC / Business Objects, SAP HANA.
• Good working experience in Basis Administration and ABAP Programming.
• Central User Administration (CUA) and User Provisioning using Control SA & Virsa GRC at Confidential / Solution Manager (at Confidential / Zachrys / Confidential ) / Idmax and Approva Bizrights (at Confidential ) / Idm Novell & GRC 5.3 and 10.0 at Confidential ).
• Kumar has Created / Maintained over 10, 000 Parent / Derived / Composite SAP Security Roles using PFCG (Profile Generator). Created / Managed 67,000 Unique SAP Users in Production. Used eCATT & BAPI.
• Created SAP Security Technical Documents (Security Standards & Procedures), Change Management tasks / Roles Matrix creation. All work done, in Strict Compliance of SAP Best Practices.
• Strong Experience working with BMC Remedy and Control SA (SSO), Confidential Quality Center (HPQC), Microsoft Sharepoint (for documents Management & sharing), AIS (Audit Information System).
• Independently, Kumar led SAP Security Implementation Project at Confidential (Huntsville, Alabama, USA) from start thru Security Planning / Design / Development / Testing to its successful Implementation and Post Production Support. Completed several Full Cycle SAP Security Implementations / Upgrades, successfully.
• Calm Natured, Highly Motivated, Hard Working and Result Oriented. Good Team Lead and Cordial Team Player, Excellent Written & Oral Communication Skills. Wonderful Health. 100% Travel or Relocation okay.

PROFESSIONAL EXPERIENCE

Confidential, Richmond, VA

Principal Architect / SAP Security Lead

Responsibilities:

• Strategic Planning, requirements gathering & Blueprint creation for Upgrade from R/3 4.7 to ECC 7. Did configure & Setup Firefighter IDs in GRC 5.3 and V addon.
• Executed SU25 steps for upgrade: discovering new t-codes, new objects, affected roles and SU24 changes. Data fill and transport of USOBT C and USOXX C tables.
• Modification of roles in red (SU25) and creation of new roles. Resolve Production Issues.
• Secured Custom Objects, T-codes, ABAP Programs, Tables - using Auth Groups and AUTHORITY-CHECK statements. Frequent use of SU24 for changing object assignments.
• Helped in HR (Structural Authorizations) Implementation.
• Security of Junior Security Analysts, Functional Teams and End Users.
• Executed responsibilities as SAP Security Lead: in keeping track of work progress by all team members, monitor / approve change management, Transport Management, keep track of projects progress at Sharepoint, resolved most critical Production & Upgrade issues. Work assignments to the security team.

Environment: R/3 4.7, SAP ECC 6.0, BW/BI 7.3, Solution Manager, HR, IAM Portal, GRC / Virsa, Service Now

Confidential Houston, TX

SAP Security Architect / Lead

Responsibilities:

• Houston Independent School District ( Confidential ) had implemented SAP Security in the year 1999. Confidential is an Administrative body for over 300 schools, and they decided to get assessment of their current SAP Security status, and also re-design & re-implementation of SAP security, to meet present security requirements. Kumar was assigned these tasks for completion.
• Completed thorough assessment of existing SAP Security: reviewed Single & Composite 6,600 roles, Custom Programs, Interfaces and workflows. Deep analysis up to field value level.
• Created new SAP Security Architecture, for re-implementation of SAP Security. The number of roles in new security design has been reduced from 6 0.
• Generated complete Blueprint document, detailing SAP Security Architecture, Security Design, Security Build, Unit / Integrated / User Acceptance testing (UAT), Cutover tasks and Go-Live phase.
• Used Sharepoint for documents management. Helped in User Provisioning using CUA.

Environment: SAP ECC 6.0, BW/BI 7.0, Solution Manager / CUA, SRM, Portal, Approva, Confidential QC, BMC Remedy

Confidential, San Antonio, TX

Senior SAP Security Consultant

Responsibilities:

• Completed thorough analysis of SAP system security, roles design & contents, users, SODs.
• Created roles and users for HR Implementation.
• Provided recommendations for security modifications, roles cleanup.
• Advised steps to secure SAP systems.
• Implemented CUA for User provisioning, via Solution Manager. Did configure & setup Firefighter IDs.

Environment: SAP ECC 6.0, Solution Manager / CRM, SRM, HCM, Portal, Confidential QC, BMC Remedy, NWBC

Confidential, Oklahoma City, OK

Senior SAP Security Consultant - SAP Security & Compliance Technical Lead

Responsibilities:

• Did setup CUA at Solution manager for User provisioning & User Administration.
• SAP Security Administration of all ECC 6.0, BW/BI 7.2 Production Systems (DEV & QA also).
• Found and corrected multiple Configuration & Technical settings errors, including Profile Parameters values, Secured SAP* and other SAP default users. Password Policy.
• Manually Recreated Finance and other functional Roles in ECC6 - to improve on SODs. Managed Roles Testing, User Acceptance Testing (UAT), Defects Resolution. Used HPQC and Sharepoint.
• Restricted users from Viewing / Changing Data from other Company Codes / Plants.
• Worked on Technical Documents Review and Creation, including Policies & Procedures.
• Resolved the most Critical SAP Security Technical Issues, working with Functional Teams and Internal & External Auditors - in Compliance of SOX-404. Change Controls Management.
• Implemented BW / BI 7 Security. Created BI Authorizations and Roles using RSECADMIN and PFCG. Traced and debugged authorization issues. Partially involved in BPC & HANA security.
• Trained other SAP Security Team Members and End Users.

Environment: SAP ECC 6.0, BW/BI 7.2, BPC / BOBJ, Solution Manager / CUA 7.0, SAP HANA

Confidential, Oklahoma City, OK

Senior SAP Security Consultant / SAP Security Technical Lead

Responsibilities:

• Upgraded GRC 5.3 (RAR, CUP, ERM, SPM all components) to GRC 10.0, as member of GRC upgrade team.
• Completed Post Implementation Configuration Settings of GRC AC using SPRO and NWBC, Rule sets, Risk Analysis Reporting, Mitigation & Remediation. Created Firefighter Roles and IDs.
• Implemented HR Security (Structural Authorizations), from scratch including ESS and MSS.
• Implemented Security for ECC 6.0, BW / BI 7.0, Portal 7.0. Role Matrix Creation.
• Created Roles and Users, managed Functional & Technical Roles Unit Testing, User Acceptance Testing, Cutover activities and final Go-Live for ECC6. Post Go-Live Support, Defects Resolution. User Locks and Unlocks.
• User Provisioning using CUA, and then participated in Idm Novell setup.
• For BW/BI 7.0, Created Authorizations and Roles using RSECADMIN and PFCG.
• Used HPQC and Sharepoint extensively.
• Implemented GRC 10.0 in coordination with Basis Team.
• Completed Post Implementation Configuration Settings, Rule sets, Risk Analysis Reporting, Mitigation & Remediation. Created Firefighter IDs.
• Worked with Novell Idm team in setting up interfacing with GRC.
• Immediate Response to and satisfactory Resolution of Most Critical Technical Security Issues, and Change Request Items. 100% SLCs on time and absolute Client Satisfaction.
• Motivated & helped other SAP Security Team Members with issues in various Functional areas. Also trained the junior members of the team, Functional Teams and End Users.
• SODs Role & T-code Conflicts Analysis (as per SOX Section 404) using GRC Tool.
• Helped Internal Auditors & Functional Teams in creation of Mitigation & Internal Controls.

Environment: SAP ECC 6.0, BW/BI 7.0, HCM, SRM, Solution Manager 7.0, GRC 10.0, Portal 7.0, Novell Idm, XI / PI.

Confidential, Huntsville, Alabama

Senior SAP Implementation Engineer / SAP Security Technical Lead

Responsibilities:

• SAP Security Administration of: ECC 6.0, BW/BI 7.0, Solution Manager 7.0, Portal.
• Restricted users from Viewing / Changing Data from other Centers / Business Areas.
• Thorough Technical Audit of SAP Systems & Interfaces after Go-Live or Upgrades.
• Did User Provisioning using IdMax and NAMS.
• Extensive use of Approva / Bizrights GRC tool for SODs and Roles creation and also in user Provisioning.
• SAP Security Upgrade from 4.6C to ECC 6.0. Roles Modifications, Roles Testing, UAT. User Locks and Unlocks. Custom Objects / Tcodes / ABAP Programs / Tables Security.
• SAP Security Upgrade from BW 3.5 to BI 7.0 - Creation of New BI Auth Objects and Roles.
• Solution Manager Upgrade to 7.0. Creation of Roles for ChARM Proof of Concept.
• As BW & ECC Security Technical Lead: Worked on all aspects of Implementation of BI 7.0.
• Setup of Table Logging for monitoring changes by user activities, and Auditing.
• Setup of Security Audit Log for auditing unauthorized access attempts, transactions used.
• Development of Policies & Procedures, and revise Security Standards.
• QA: Review & Analysis of Roles for Critical Transactions, Authorizations & Objects, before moving into production for large number of users.
• Creation of Roles (using Profile Generator), Authorization Objects & Custom Transactions.
• Resolution of the most critical Technical Issues related to Audit, Roles & User Access.
• Worked on all aspects of SAP Security Implementation from generation of Methodologies, to: Technical Documents Creation and also Defects Resolution.
• SOD Conflicts Analysis & Resolution (as per SOX Section 404), using Biz Rights tool.
• Helped Internal Auditors & Functional Teams in creation of Mitigation & Internal Controls.
• Immediate Response to and satisfactory Resolution of Most Critical Technical Security Issues, and Change Request Items. 100% SLCs on time and absolute Client Satisfaction.

Environment: SAP R/3 4.6C, ECC6, Core, BW / BI, Solution Manager, Approva BizRights.

Confidential

Senior SAP Systems Security Consultant / SAP Security Technical Lead

Responsibilities:

• Security Team Management, and Motivation.
• Technical Audit of SAP Systems & Interfaces after GO-Live.
• Managed Roles Testing, UAT, Cutover activities, SAP Security Implementation, Go-Live and Post Production support, Defects Resolution. User Locks and Unlocks.
• Development, Design, Implementation, Upgrade of Security for SAP Systems. R/3 4.5B to ECC 5 upgrade, and later upgraded to ECC6.0.
• SAP Security Administration of all SAP Systems.
• As Project Lead for Virsa (GRC Tool) Project:
• Installed VRAT / VFAT / VRMT / Firefighter / Compliance Calibrator and Activated Role Expert.
• Created and managed Firefighter IDs, Discovered & Reported SOD Issues, issues Analysis and Resolution to the field value level. Reported SODs Resolution and Mitigation.
• Compliant provisioning with dynamic workflow - starting Request generation to Manager Approval, Risk Analysis to Auto Provisioning.
• Design, Development and Implementation of Security Models for SAP Systems.
• Did setup Logical Systems (ALE) & Central User Administration (CUA).
• Created & changed users simultaneously in several systems, including DEV & QAS, using CUA.
• Created SAP Security Policies & Procedures, and other Documentation.
• QA: Review & Analysis of Roles for Critical Transactions, Authorizations & Objects, before moving into production for 60,000 unique users and over 18,000 Roles.
• Setup of Audit Information System (AIS) for System Audits / Business Audits.
• Setup of Table Logging for monitoring changes by user activities, and Auditing.
• Setup of Security Audit Log for auditing unauthorized access attempts, transactions used.
• Created Roles (using Profile Generator), Authorization Objects & Custom Transactions.
• SAP Systems covered For Roles Creation, QA & System Audit / Data Protection: R/3 & ECC Core (FI-CO, SD, MM, PM, QM, PP), BW, HR, IS Oil, IS Medical, IS Aviation, CRM.
• Moving transports to Quality Assurance and Production Systems.
• Resolution of critical technical issues related to Audit, Roles & User Access.

Environment: SAP R/3 4.5B, 4.6C, 4.7, ECC6, Portal, IS Oil, SEM, BW, Solution Manager, Virsa, HR.

Confidential, Huntsville, AL, USA

Senior Computer Scientist / SAP Security Administrator / SAP Security Technical Lead

Responsibilities:

• Security Team Management, and Motivation.
• Planned, Designed, Developed & Implemented complete SAP Security for SAP R/3, BW, SEM from Scratch.
• Managed Roles Creation & Testing, UAT, Cutover activities, SAP Security Implementation thru Go-Live, Post Production Support and Resolution of Defects. User Locks and Unlocks.
• Devised SAP Security Standards for Security / Monitoring / Auditing..
• Developed Policies, Procedures & Documentation. Roles / Transaction Code Matrix. Current users in Production: 13,000 in R/3, 10,000 BW, 2500 SEM users.
• Did setup Security Audit Log, Table Logging.
• Created Functional & Technical Roles using Profile Generator, from Scratch.
• Used CATT Scripts for mass user creation / change / delete, adding Roles to users.
• Created Custom Transactions, using Variants. Created ABAP Reports.
• Used ABAP/4 & Screen Painter to Create / Modify transactions / Screens.
• Created Authorization Groups, User Groups. Maintained user tables using SM30.
• Frequent use of System & Database Traces (ST01, ST05).
• Solving, Authorization problems relating Functional Teams.
• Registered OSS Users / Objects, Opening Systems for SAP Logon.
• Extensive use of Profile Generator for Creating Roles. Solved Missing Authorizations problems using SU53 & Traces. Trace and Authorizations Analysis.
• For BW, Created Reporting Objects - making related authorization objects as Relevant.
• BW 3.0: Dealt with security of - Infocubes, InfoObjects, ODS, InfoAreas, Queries.
• Trained End Users, and SAP Security Administrators, Help Desk Reps.
• Worked with Internal Auditing Team. SAP Security Systems and Business Audit (FI/CO - AP, AR, FM, Budget, Purchasing, Sales, Inventory).
• SEM: Planned Security from Scratch, including creating of Roles.
• SAP Security Administration: R/3 4.6C, BW 3.5, Solution Manager, APO.

Environment: SAP R/3 4.6C, BW 3.0B, SEM 3.1B, IS-Public, SEM

Confidential, Orlando, Florida, USA.

SAP Security Senior Administrator / SAP Security Team Lead

Responsibilities:

• Security Team Management, and Motivation.
• Developed SAP Security from scratch for SAP systems.
• Devised Complete SAP Security Policies & Procedures, for all countries.
• Managed Roles Testing, UAT, Cutover activities, SAP Security Implementation, GO-Live, Post Production Support including Defects Resolution.
• Project Planning for whole SAP Security Implementation Project, Security Audits.
• Maintained tables USOBX, USOBT using SU25 & SU24.
• Did Setup Central User Administration (CUA) for multiple Clients. Interfaced with Non SAP, Legacy System Teams.
• Used CATT Scripts for mass user creation. R/3 users 5,000 & BW users 3,500.
• Created Custom Transactions, using Variants / Screen Painter. ABAP Reports.
• Implemented Single Sign On / mySAP.com and APO security,
• ABAP/4 Changes for creating Custom Transactions, Authorization Groups.
• Planned & Created Roles & Users from Scratch for functional areas like FI / CO, P&I, SD, Core Commercial, Stocks & Movements, Operations & Logistics, Automotive.
• Registering OSS Users / Objects, Opening Systems for Logon by SAP.
• Extensive use of Profile Generator for Creating Roles. Solved Missing Authorizations problems using SU53. Production System - SAP Security maintenance, Overall SAP Security Planning, including Operating Systems, System Trace.
• SAP Security Administration of all SAP Systems..

Environment: SAP R/3 4.6C, BW, APO, IS-Auto.

Confidential, Hanover, Maryland, USA

SAP Basis & Security Administrator / SAP Security Lead.

Responsibilities:

• SAP R/3 4.6C and Oracle database Installation. Operation modes setup.
• R/3 System Administration: All aspects including Performance & Tuning, Monitoring, Background Job Scheduling, Printing, Register OSS users, Spool Administration.
• Developed Security System, Policies & Procedures. System Audit Reporting.
• Did setup TMS, Profile Parameter changes, Change Requests and Transports, defined Printer Devices in SAP. Transporting at UNIX level, using ‘tp’.
• Oracle database administration: Tables pace Administration using ‘sapdba’, checking free space and adding space. Maintaining System Profiles using RZ10. Running Report RSPARAM. SQL & System Traces (ST05, ST01). System Logs & Short Dump (SM21 & ST22) Analysis. Monitoring Work Load, Work Processes, Update Records, Lock Entries. Performed Database Backups using DB13, and Oracle Database restore.
• SAP Security Project Planning, Roles and Users and Documentation, for FI, CO, SD, PP, MM functional areas, during SAP R/3 (4.6C) Implementation.
• Configured Profile Generator / Check Indicators - Created Activity Groups, Users Setup / Administration, User Groups. Assignment of Activity Groups to Users. Tcodes Addition, Authorizations including Org Level Setup, Missing Authorizations.
• Running System Trace (ST01), SU53. Close interaction with SD, FI/CO, MM, PP Consultants in setting up Authorization Objects field values. Solved Users problems in different areas specific to SAP Security (Authorizations).
• Generated Matrix for Roles and Tcodes.
• Used Profile Generator very extensively to create new roles from scratch.
• Trained End Users, and SAP Security Administrators, Help Desk Reps.
• Clients - Create, Copy (Refresh), Delete, Transport. Did Setup OSS Users, Printers (Remote & Local) Setup. Applied Support Packages (Hot Packs), Kernel Patches, GUI Patches. Resolved, Functional Consultants Problems, taking OSS help. Applied OSS Notes. Analyzed: System Logs, Short Dumps. Other System Administration Activities.

Environment: SAP R/3 - 4.6B, Oracle, FI/CO, SD, MM, PP