SUMMARY:

• Experience in Operations/ Information Technology field for more than 12 plus years out of which 7 plus years is in ERP SAP Security, experienced in formulating and executing client requirements
• Guiding all organizational levels through technical decisions, scoping and planning, designs and implementations, production system monitoring / modifying / troubleshooting.
• Experienced in creating and maintaining user’s authorization, roles and profiles for SAP ERP R/3, ECC 6.0, CRM, SCM, BPC, BW/BI, FI - CO and HR.
• Strong understanding of SAP authorization concepts and its implementation.
• Experienced in creating users, user groups and mapping roles to users on front end in Portal.
• Worked with process experts & head of departments for SOD (RAR) rule sets and conflicts assigned appropriate roles to the users.
• Worked on Sarbanes-Oxley (SOX) compliance with team lead and functional team to meet SOX internal and external audit requirements.
• Security redesign projects that met internal and external SOX requirements for Manufacturing and Consumers base companies.
• Worked on the BW/BI security and creating roles based on the info cube level coming from technical BW/BI team for end user.
• Experienced in implementing Roles based on security using single, derived and composite roles through coordination with functional and Business team owners.
• Performed transport and mass transport of roles, Authorization Groups through PFCG and also through Solman (Rev-Trac) tool. Performed global User Administration through CUA.
• Experienced in developing monitoring plan and Security Policies for the security department.
• General Knowledge in following modules FICO, MM, T&P, SD, HR, CRM, GTA, GDP, APO etc.
• Worked extensively in SAP R/3, ECC 6.0 with authorizations using Automatic Profile Generator for various modules such as FICO, MM, T&P, SD, HR, AP0, CRM, ERP, MDM etc.
• Analyzed and resolved authorization issues using SU53 or if required then trace out with User.
• Experienced in download SAP table information into Microsoft Excel & creating reports.
• Strong technical, analytical, and interpersonal communication skills to provide quality service and proven results. Possesses good understanding of various business activities and processes.
• Testing and supporting in implementing Portal for creating roles according to the users and approvers requirements in Trip request and Expense report request.
• Analyze audit reports after every three months for External and Internal auditors.
• Use SU24 if any changing required in role for any particular object or for Custom Object.
• For Mass Generation of Profiles used SUPC, for updating profiles in user master records by PFUD.
• Transported roles i.e. single and mass between clients on a particular system and across systems from Development to Q/A to Production. Documented day-to-day activities for future .
• Executed Info System Authorization by utilizing transaction SUIM and created various reports.
• Worked with SAP License Audit team to remove unnecessary SAP systems and bring assets for the Confidential .
• GRC-10.1 has been completed to avoid Segregation of Duties and secure Confidential from risk to assign more extra access to users.

TECHNICAL SKILLS:

SAP R/3 - 4.7 through: ECC 6.0, SAP BI/BW, SAP Portal, CRM, SCM/APO, MDM, BPC Security and Operations

Knowledge SAP: SAP VIRSA/GRC Tools 5.3 (RAR, CUP, SPM) & GRC.10 AC

Security Audit reviews: Segregation of Duties (SOD), SOX, SAP License

Operating Systems: Windows NT/XP/98/2000/Vista/window 7

Office Tools: Microsoft Access, Excel, Word, and PowerPoint.

Web Tools: HTML, DHTML

Database: SQL, MS Access

PROFESSIONAL EXPERIENCE:

Confidential, TX

SAP Security Team Lead

Responsibilities:

• Create a Global SAP Security Model for the entire Confidential to implement Global Roles and Authorizations in North America, Latin America, Europe, Middle East and Asia Pacific.
• Successfully implement ECC6.0 for Canada, USA, Europe, Brazil, Middle East and Asia Pacific with zero SOD conflicts.
• Involved in gathering End User Roles business requirements to implement SAP ECC 6.0 security authorizations.
• Working with process and business owners to define the authorizations needed for End Users.
• Developed many Single and Composite roles for the Project team to support the project including ECC, PI/XI, Solution Manager, BASIS, SAP Security and ABAP.
• Work very closely with Business, Audit and Audit controllers to eliminate SOD conflicts by roles, positions and end users before Go-Live.
• Transported project roles across the landscape to restrict project team access.
• Working with process and business owners to define the authorizations needed for End Users.
• Created a Global SAP Security Strategy for the entire Confidential to implement position based Global End User Roles in North America, Europe and Middle East.
• Created Global User and Roles Naming convention document.
• Involved in gathering End User Roles business requirements to implement SAP ECC 6.0 security authorizations.
• Moving forward to Base Line phase and will follow Solution Delivery, Realization, Go-Live and Post production support.
• Go-live BW system with front end BPC Security, with technical team for End Users in Production.
• Working on Implementation of FI Global in ECC.6 with technical and business team.
• With my strategic thinking I always tried to provide technical solutions in any situation to exceed the solution process which helps avoid future problems and workload.
• Provided guidance and assistance to functional, business, test, developer and security teams handling day-to-day support and post production support of SAP Security. I am a true team player with hands-on experience in SAP Security and Authorizations.
• Implementation of GRC-10.1 has been completed to avoid Segregation of Duties and secure Confidential from risk to assign more extra access to users.
• Establishing Processes, Policies and Procedure for the Confidential in future use.
• Generated authorization profiles by maintained authorization fields and partially maintained Authorization fields.
• Work with SAP License Audit team to remove unnecessary sap systems and bring assets to the

Confidential, Illinois, Ohio

SAP Security Consultant

Responsibilities:

• Worked closely with Internal Auditors and all Business Team Managers of Asia Pacific to restructure in very large numbers of roles and identify the least harmful critical transactions/roles (composite & derived) to be removed in order of eliminate segregation of duties issues.
• Also helping in creating new users and maintaining users on day to-day basis for the DEV, QA and Production environment in three different production systems.
• Experience in creating users, user groups and assigned approved roles to users in SAP Production environment (ECC 6.0/CRM/BW/BI/SCM).
• Experience in gathering requirements, design and development of SAP security authorization objects / roles, segregation of duties, and Governance Risk and Compliance
• Currently giving Supports to the enforcement of corporate, regulatory, and risk management policies.
• Assists in developing, maintaining, and publishing corporate SAP security standards, procedures, and guidelines for enterprise computing platforms.
• Providing support to departments on issues of SAP Security, including technical guidance and, and designs and implements programs for user awareness, compliance monitoring, and security compliance.
• Giving support in maintaining users and roles through CUA in Global environment.
• Performing technical functions for SAP Security projects, applications and systems and SAP Security incidents. Analyzes authorization errors, fix and test to move changes in to production.
• Assists in gathering requirements, detailed design, architects, builds and implements SAP Security solution as per Confidential procedures.
• Supports and administers SAP Security & authorization, roles design, implementations, audit and SOX functions. Provides information and supports audits to ensure proper segregation of duties.
• Operating effectively in the context of a SAP Security projects with excellent technical, analytical, interpersonal, written and verbal communication and self-management skills, multi-task and manage work priorities. Support to approximately 10,000 users globally by 7 days per week 24 hours per day.
• Providing support in designs & creates, modifies roles, SOD checks, support to audit, fix authorization errors, defects, monitors, testing and terminate user access for both internal and external end users.

Confidential

SAP Security Analyst

Responsibilities:

• Created users, user groups and assigned approved roles to users in SAP Production environment (ECC 6.0/CRM/BW/BI/SCM).
• Working with SAP business Team and developers to design, test, and transport of roles to satisfy business process requirements.
• Working with SAP business functional team and technical team to design, test, analysis, troubleshooting during the implementation of new request for business users.
• Detailed analysis during the developing and testing and transport roles for Users and Approvers as per authorizations according to the business requirements.
• User mapping, creating, copy, and assigning roles in any SAP systems for new users.
• Coordinated with functional expert to take remedial action as per SOX (Sarbanes-Oxley) law.
• Working with development team for setting up custom security for all modules of SAP.
• Run extensively in-house developed tools & SAP tools for analyzing SOD conflict, T-codes assignment to roles and roles assignments to users after every three months.
• Implemented and developed custom roles to process for technical teams in sandbox, Dev and QA.
• Creating and maintaining user’s authorizations, roles and profiles for SAP ECC 6.0 and BW/BI etc.
• Performing routine checks for security related issues and troubleshooting using SU53 and ST01.
• Performed mass changes such as creating mass users, Used SUIM extensively to create reports.
• Extracted information from SAP tables: USR* & AGR* concerning users, roles & profiles.
• User Administration for more than 3,700 users.
• Analyze audit reports after every three months in Excel sheet for External and Internal auditors.

Confidential, N.Y

SAP Sr. Security Analyst

Responsibilities:

• Create users, user groups and assigning roles to portal user groups for DEV, QA and Production.
• Worked on BW security and created roles based on the info cube level and provided authorizations based on the queries.
• Working with SAP business Team and developers to design, test, and transport of roles to satisfy business process requirements.
• Working with SAP HR team and Portal technical team to design, test, analysis, troubleshooting during the implementation of Trip request and Expense report in Portal with team lead.
• Detailed analysis during the developing and testing and transport roles for Portal Users and Approver as per authorizations according to the business requirements.
• User mapping, creating, copy, and assigning roles in Portal.
• Coordinate with functional expert to take remedial action as per SOX (Sarbanes-Oxley) law.
• Working with development team for setting up custom security for all modules of SAP
• Used extensively in-house developed tools & SAP GRC tools for analyzing SOD conflict, T-codes assignment to roles and roles assignments to users.
• Studied the Organization structure, jobs, roles and the SOD matrix for the Security developed in SAP and handled SOD conflicts for Sarbanes Oxley Compliance.
• Ran reports to see which users had never logged on since their creation date.
• Setting up daily checklist procedures and administration duties. Documentation of all process and procedures to ensure skill transfer could take place.
• Creating and maintaining user authorization, roles and profiles for SAP R/3, SAP BW.
• Managed design and build of global roles for all business process.
• Create reports on user’s access and assigned roles, to do a comparison between roles, to check change record history of roles and users if any.
• Decentralize User Administration for more than 3000 users.
• Identifying opportunities for process improvements which meet or exceed customer expectations for the provisioning of SAP Security roles and user ids

Confidential, N.Y

SAP Security Consultant

Responsibilities:

• Responsible for keeping the Development, Quality Assurance, Production and SAP system environments secure by designing mechanisms and procedures for user administration.
• Developing, implementing and securing change management process -Assist Programmers/Analysts with identifying and designing security requirements for all interfaces, conversions, enhancements and reports.
• Created and maintained roles & profiles utilizing PFCG, Used SUIM tool for reports.
• Revamped existing activity groups to make them compliant with SOD.
• Created roles for FI, CO, MM and PS Modules.
• Developing security on a “need to know” basis and setting up security to keep profiles as non-complex and as similar as possible. Security related OSS Notes to SAP if needed.
• Performing extensive positive, negative security testing to protect the sensitive information.
• Interacted with ABAP Team to implement custom based security and creation of Authorization Group. Performed Upload and Download of roles as per requirements.
• Performed analysis of SU53 & Trace and RSECADMIN for user’s authorization issues in ECC and BI systems.
• Worked on SOD (RAR) rule sets and conflicts assigned appropriate roles to the users.
• Helping lead in Configured and maintain GRC (RAR) rule sets, SPM, CUP and Fire fighter.
• Generated authorization profiles by maintained authorization fields and partially maintained Authorization fields.

Confidential

SAP Security Consultant

Responsibilities:

• As SAP Security Consultant providing support in several SAP Business Suites. Able to be flexible when meeting demands and deadlines, and solves problems using excellent decision-making, organization and implementation skills. Highly motivated, works efficiently to produce work and is a quick learner looking for career growth. Maintained User Ids and roles for about 3,000.
• Designed and tested ERP Security roles in preparation for production as per requirements.
• Setup and configured security audit logs and documented all security check lists for audit compliance.
• Studied the Organization structure, jobs, roles and the SOD matrix for the Security developed in SAP and handled SOD conflicts for Sarbanes Oxley Compliance.
• Created new roles as per Segregation of Duties requirements.
• Designed business application authorization profiles for production roles, setup role testing scenarios and trained business analyst responsible for supporting business users in security testing procedures to ensure business users are granted proper authorization.
• Created Roles and Authorization Profiles for Functional business teams.
• Working closely with Audit team for user-role conflict removal in SAP R/3, SAP BI etc.
• Locking and unlocking the transactions to safeguard against misuse.
• Extensively used SE16 to extract information from various tables in SAP systems.
• Ran reports to see which users had never logged on since their creation date.
• Work with profile generator to creating roles, profiles, composite roles, derived roles & global roles.

Confidential, Franklin Lakes, NJ

SAP Security Admin

Responsibilities:

• Responsible for SAP security by utilizing various SAP user administration tools.
• Created user accounts as per the departmental requirements utilizing transaction SU01 & SU10.
• Maintained user master records including address information, log-on information & default settings.
• Created roles for FI, CO, MM and SD Modules as per business requirements.
• Maintained and transport roles & profiles in DEV, QA and PROD systems using PFCG.
• Created and maintained single & derive roles, used SE16 to extract information from various tables in SAP systems. Maintained roles & profiles to meet audit requirements.
• Performed extensive Positive & Negative testing on user accounts to insure the appropriate access levels. Analyzed and resolved authorization issues using SU53, SU56 & ST01.
• Coordinate with ABAP development team to implement custom based security.
• Checked assigned roles to users in table AGR USERS & for T-codes AGR TCODES.

Confidential

Operation Manager

Responsibilities:

• Worked as senior manager having skills to handling various banking operations and data entry processing systems. Strong knowledge of marketing, retail, planning, P & L management and budgeting. Established record of implementing and developing solutions to multidimensional complex operational problems.
• Developed relationships, worked with other divisions and outside agencies to achieving objectives and goals of the Confidential . Supervised public relation and advertising firms.
• Makes decisions fully independently regarding manpower, to completed monthly targets, objects and satisfying customer’s needs.
• Optimum trouble shooting, managing emails system and ensuring the appropriate level security.
• Assisting business team with software/hardware support during product development.