SUMMARY

• 8 years of Sap Security experience, 3 years of GRC ARA experience and 1 ½ years of Hana Security experience.
• Security Consultant with experience of the SAP development life cycle from Blueprinting through Go - Live.
• Experience of 3 complete implementation projects from blueprint to Go-Live.
• Ability to work security concepts for world class companies, Manufactures, Oil & Gas and Confidential .
• Develop formal processes for SOD Monitoring, SOD Remediation and SAP Rule set Maintenance.
• Expertise in Creation of Master role, Composite roles, Derive roles for various Streams\Modules.
• Worked with internal and external auditors to help reconcile discrepancies in order to support the auditing functionality.
• Have concept of cyber security thru Sap America training in ETD=Enterprise threat detection.
• Knowledge of SNOW and benefit of using SNOW such as: View consolidated usage data across all SAP systems, Automate SAP user license administration and Identify and trace indirect usage etc.
• Knowledge of PCI Rules in Sap System.

PROFESSIONAL EXPERIENCE

Confidential, Roselan, NJ

Sap Security Analyst

Responsibilities:

• Worked on SAP Implementation since October 2014 until Go Live on Jan 4th
• Build Authorization (Roles for PTP, RTR HTR, GRC, HANA)
• Implemented GRC 10.01 roles and provisioning + user base and role base analysis for SOD and SOX Compliance.
• Implemented sap security notes and took care Users dev. Object key at SAP Market place.
• Responsible of HANA Security, user provisioning and role building as per
• Responsible of BPC security, role development and user provisioning.
• Responsible of BOBJ security, Roles and user provisioning
• Exposure and limited experience with IDM in developing use cases to test end to end compliant user provisioning.
• Supported FIT2, Wave1 which Include defects and enhancements.
• Participated with basis team in order to create SSO for ECC to Fiori serve. Configure the parameters and Kerberos token/user principle name via spnego and created user mapping by setting SNC name for users by using SNC1
• Implemented HCM Security and PTP security, Finance security, SCM security, OTC Security.
• Participating in development phase for ECM and Performance management blue print design to create security roles according to requirements for merging Solo Company with Dart Container.
• Developed Master data role in PTP
• Developed CHARM (Change Request Management) security role. Charm is getting implemented in Dart Container.
• Work with deployment team and Quality team for cutover activities..
• Configure and created EAM (Emergency access management) in GRC10 and also worked on ARA component of the GRC 10.
• Implemented Mitigation procedures, Rule set customizations.
• Technical expertise to SAP GRC 10.0 implementation with an enterprise-wide scope
• Worked on daily Role mapping, User mapping, roles review and production Issue which include Enhancement, SCR (Scope change request), create new users, Change user profile and also detail Analysis.
• Took care Market place request such as creation of OSS ids, Developer key and also securing the user access for notes or access ids when BASIS or Developer need to apply the notes.
• Expertise in ECC 6.0 role development.
• Worked on CUA Systems for Production, Sandbox, and Development.
• Also work on BOBJ, BPC security.
• Worked on Portal security including ESS/MSS
• Worked on producing quarterly reports such as if user did not log in for 90 days.

Confidential, Phoenix, AZ

Sap Security Analyst

Responsibilities/Deliverables:

• Worked with development phase of the system, implementation and role development until the system go live in Indonesia with 1400 business users.
• Perform production support until system was stabilized.
• Responsible for user provisioning and support for the client operation located in Indonesia and in North America. Develop and mapped with sodmaster role, composite role, drive roles and single roles for FI, SCM, MT, HR.
• Provision Portal roles for the new hires or if there is any changes in their duties.
• Daily provisioning ESS/MSS reports.
• Responsible of provisioning and maintaining a secure area for SAP OSS connection to apply a note or conduct an investigation for Post go live or any PI channel issues.
• Responsible for break fix and enhancement which is required after go live or after cutover.
• Use of ER (emergency access) tool to assign emergency access for limited time for wide open roles.
• Developed HR roles and Finance Roles according to SOD.
• Transport roles to production system when enhancement or any changes done in development thru the Charm (Tool of the solution manager).
• Designed and built Authorization Role Strategy for CRM, BAS, BW and Business Objects
• Responsible for user administration, roles and profile generation.
• Work with business and functional team to gather requirements for the end user authorization needs.
• Handle security development for various Modules.
• Created new roles as per segregation of duties requirements.
• Created Single role, composite role, and derived role as per organizational structure.
• User maintenance on day to day basis.
• Transport of roles, profile and user into SAP systems.
• Extensively worked on authorization objects, fields, authorization and authorization profile in profile generator (PFCG).
• Identify missing authorizations by using SU53 and maintain them manually in PFCG.
• Analyzed user related information including roles and profiles by utilizing transaction SUIM.
• Involved in audit activities to ensure Sarbanes Oxley (SOX) compliance.
• Executed PFCG TIME DEPENDENCY report in background to perform cleanup.

Confidential, South San Francisco, CA

SAP Security

Responsibilities/Deliverables:

• Performed in-depth root cause analysis.
• Participated with the team for SOX compliance processes and best-practices.
• Responsible for user administration, role, profile generation.
• Created new roles as per segregation of duties (SOD) requirements.
• Created single role, composite role and derived role as per organizational structure.
• User maintenance on day to day basis.
• Analyzed user related information including roles and profiles.
• Worked on authorization objects, field authorizations and authorization profiles by using profile generator PFCG.
• Assisted and worked with HR consultant to create roles and profiles.