SUMMARY

• Over 20 Years of total IT experience of System Implementation / Administration and support experience including 11 years of extensive experience as a SAP Security Consultant on various SAP products like SAP GRC, SAP ECC, SAP Portal, SAP CRM, SAP BI/BO, SAP BODS and SAP Process integration (XI/PI).
• Have worked extensively on User Authorizations using Profile Generator (PFCG) for various modules such as FI,CO,MM,SD etc., Central User Administration (CUA) in Solution Manager, Enterprise Architecture, Profile maintenance, Table Security, Custom Authorizations, ABAP Security checks, Enterprise & Networking Security.
• Have extensive working experience on multiple versions of ABAP, CRM, GTS, BI/BO and PI.

TECHNICAL SKILLS

SAP ERP: SAP R/3 4.7, ECC 6.0, CRM2007, BW, PI, SRM, GRC, BOBJ, BODS, Portal, WPB etc.

Tools: MS Office for documentation (Word, Excel, Visio, Outlook, Confidential Lotus notes etc)

PROFESSIONAL EXPERIENCE

Confidential

Lead SAP GRC Security Analyst/IT Security Analyst

Responsibilities:

• Responsible for security roles and profiles in SAP ECC, SAP BW, SAP SRM, SAP Portals and SAP GRC; managing role violations, role owners and documentation.
• Administration of SAP GRC configuration, rule sets, workflows and approvers, emergency access and access certification.
• Performs role design techniques such as composite roles, business roles, authorization objects and SAP role architecture.
• Administers and monitors security roles and authorization profiles for SAP systems
• Configures, administers, and maintains SAP end user accounts, permissions, and access rights across multiple client environments. Provide production support of existing security roles and functions.
• Prepare test user IDs in order to facilitate business/project user testing in non - production environments.
• Administers and monitors security profiles for all corporate systems. Maintains network security end-user ID’s, directory access, and mailboxes.
• Works within the user provisioning process to ensure users have the appropriate roles and access levels. Provide guidance to configure and troubleshoot workflow in GRC.
• Represent SAP Security and GRC considerations in department and company-wide projects to ensure security needs are satisfied.
• Assist with GRC configuration and use GRC tools in the creation and maintenance of security roles, in conjunction with Internal Audit.
• Work to mitigate all identified and prioritized vulnerabilities and risks to SAP technical security.
• Troubleshoot and develop solutions to SAP security issues in production, quality, development, and testing environments.
• Responsible for resolving security related incidents and problems as well as work with across the Operations teams to help with regular ongoing end user support and security administration as needed.
• Assists with compliance of Sarbanes-Oxley and audit requirements for all systems, working with internal audit staff with regular tests and audits.
• Review regular audit reports of user activity in the production system.
• Ensure SAP security changes comply with corporate change control policy. Create SAP transports and ensure all transports moved into production maintain system integrity.
• Assists in enforcement of policies for SAP system security and implementation of security best practices and standards General Security Administration.
• Work with IT and business users to facilitate questions and oversight of issues resolution.
• Provide expert opinion to managers and executives regarding best practices and process improvements.
• Contributes to definition of security policies and procedures, and ensures effective enforcement.
• Updates, maintains, and documents enterprise systems security controls and policies.
• Reviews security violation reports and investigates possible security exceptions.
• Provides security documentation and cross training to Information Technology staff backups.
• Participate in reviews of new or changes to existing systems to ensure security requirements are satisfied, prior to implementation, including risk assessment.

Environment: SAP ECC 6.0, SQ, SRM PI/XI, Enterprise Portal, SAP BI, BW, SAP GRC10.01 AC, BOBJ, SAP HANA, SAP WPB.

Confidential

Senior Product Developer/SAP Application Security Administrator

Responsibilities:

• Work with business, functional, internal/external auditors, management and user community regarding the development of SAP roles and Authorizations for various modules like FI, CO, MM, SD, etc., and component systems: ECC, XI/PI, CRM, SRM, SCEM, GTS, SM, GRC.
• Designs and supports SAP role administration including configuration of authorization objects, transaction codes, parent, derived, single and composite roles.
• Configure standard authorization objects as well as analysis authorizations
• Designs, configures, and supports the SAP GRC landscape including the implementation and maintenance of Access Control, Process Control, and Risk Management modules.
• Work with Cross Functional Team, Process and Audit Teams to identify Segregation of duties.
• Experienced coordinating with other Teams, meeting project time lines, supporting, coordinating and tracking testing activities.
• Experienced implementing different components and releases of SAP security and supporting Production systems (R/3/ECC, SRM, GTS, SCEM, SM, XI/PI, CRM, and GRC)
• Responsible for all aspects of SAP Security, from creation of roles, authorization objects, and troubleshooting to the administration of security
• Rudimentary Knowledge of ABAP and guiding ABAP developers on how to implement security while developing programs, tables, and transaction codes
• Segregated Roles based on their functionality of the job within the Module
• Experienced creating custom authorization objects for custom transaction codes, programs, tables with appropriate restrictions based on business requirements, severity of risks, and troubleshooting transaction problems
• Proficient with SAP Profile Generator to Create, Change and Delete Roles
• Worked with Management, Business/Support, Internal/External Audit teams to provide recommendations in mitigating risks, monitor SODs per SOX compliance, monitor critical transaction codes, provide various reports, and fix violations.

Environment: SAP R/3 ECC 6.0, APO, CRM, SRM PI/XI, Enterprise Portal, SAP CUA, SAP BI, BW, Solution Manager, SAP GRC10.0 AC

Confidential

SAP Security Analyst

Responsibilities:

• Developed, maintained and implemented security roles and authorizations for SAP ECC, SAP Portal/Java, BW/BI, PI, GRC and other SAP Systems such as CRM, SRM, GTS, HR Security etc.
• Maintain user ID’s and security roles across Development, Test and Production environments
• Experienced in working with Transports (STMS). Transporting roles between development, QA (test) and production environments.
• Responsible as a backup for SME dispatching, coordinating and scheduling work to be performed by team members
• Excellent communication and follow-up skills in gathering requirements from functional teams and data owners for role development
• Proficient in troubleshooting and handling user issues.
• Trace and troubleshoot user authorization errors via ST01/SU53 and also proficient with the following transactions: PFCG, PFUD, SU01, SU10, SUIM, SU24, SU25, SM19, SM20, SM18, SM59, and more, as well as, the use of eCatt (SECATT) Scripts for mass role creation, changes, mass user creation, change tasks.
• Worked with business units, support teams, and security coordinators to ensure compliance with security processes and controls.
• Regularly audited and reviewed roles and assignments for segregation of duties conflicts, compliance with company policies, etc.
• Provided reports to the internal and external auditors and created custom audit roles based on audit needs
• Supporting multiple ongoing audits for KPMG, PWC on Confidential internal and external accounts.
• Generated various reports for SOX compliance and various business requirements.
• Worked with SAP project teams to anticipate and proactively meet their implementation needs while adhering to internal controls.
• Worked with Business Process Owners in creating a strategy in implementing ECC 6.0 security.
• Experienced in working on many Full Life Cycle Implementation/upgrade; Go-Live, Post Go-Live and Production.
• Have Strong technical background in post Implementation of authorization security and updating of roles to comply with SOX and company policies. This includes designing, deployment, testing, transporting of role changes and documenting them appropriately. I have the above experience in R/3 4.7, ECC 6.0 and GRC in testing roles in RAR environment and cleaning them up.
• Resolved day-to-day operational issues submitted by customers through Remedy, Impact and Maximo (ISM/TSRM).
• Monitoring requests queue in the bolt-on, Remedy, Manage now, Maximo and WR database to resolve the issues.
• Participated in on-call rotation 24X7 and provided support for clients at night /extended shift independently worldwide.
• Maintained & Administered Enterprise Portal security for Internet/Intranet Users.
• Created, maintained and deleted user IDs, roles in Java and portal systems.
• Implemented & Configured IDM and also worked on Confidential ’s internal Bolt-on tool (UAWeb) for User administration, running Health checks (HC), Quarterly Employment re-verification (QEV), Continuous Business need (CBN) and Privileged Authorization Review (PAR).
• Support Disaster Recovery Exercise (DR).
• Support internal and external (Pearson, Kubota, GBC, HESS) Confidential clients in user and role administration in ECC, BI/BOBJ, HR, CRM, PI and JAVA systems.
• Supported implementation of Access Control, Super user Privilege Management, Risk Analysis and Remediation
• Experienced in working on SAP GRC 10.0 &10.1 Access Control Module.
• Supported configuration of Access control (Common component settings, BRM, CUP) for GRC 10.0 upgrade project.
• Collaborated on GRC 10.1 implementation project, upgrading GRC 5.3 application to GRC 10.1, configuring Access Control and Process Control modules in new GRC 10.1 environment and supporting client ECC, BI and HANA modules as target systems.
• Improved many processes for SPM ID request, Privileged ID requests, Configured Confidential 's bolt-on and added/changed delegation requests to covering manager for approvals.
• Maintain and assign Privileged IDs like, SAPLOOK, HOTPACK, DDIC, SAP* etc as needed.
• Provide training to new SAP Security Team members and trained SAP Security Administrators on outsourced accounts in other countries.
• Conducting and attending weekly meetings of various projects over the phone and web to evaluate the progress, improve the processes and set up the future direction.
• KT sessions, team huddles and conference calls with clients are conducted on regular basis.
• Used Lotus notes, QMX data base for documentation and Confidential Sametime (Messenger) for business communication.
• Documented procedures and maintained in Lotus Notes team room.
• OSS Management for project requirements including OSS id administration, issuing developer keys, object keys
• Creating privileged Ids for SAP logins to resolve issues in OSS request.

Environment: SAP 4.6, 4.7, ECC 5.0, 6.0, Windows, AIX, Lotus notes, UA Web, Web Commerce Application (WCA), Ticketing systems include Mange-now, Impact, ISM/TSRM Unicenter Service Desk etc. Portal, GRC 10.0, GTS, SCM, CRM2007, UNIX

Confidential

SAP Security Consultant

Responsibilities:

• Analyze existing role design, identify gaps and recommend solutions according industry best practices.
• Create new and modify existing security roles.
• Perform UNIT testing on created roles
• Transport security changes to test environment and production (SE01 & STMS).
• Perform daily user administrative tasks (SU53, ST01, PFCG etc).
• Effectively analyzed trace files (ST01) and tracked missed authorizations for users access problems and inserted missing authorizations and objects manually
• Generate various reports for SOX compliance and various business requirements.
• Completed various projects of converting JDE locations to SAP at various global regions.
• Actively involved in upgrade of 4.6c to ECC6.
• Studied the Organization structure, jobs, custom transactions, roles and the SOD matrix for the Security developed in SAP.
• Supported audit team for generating audit reports (SM18, SM19) using security Audit Logs.
• Worked with process experts, head of departments, and engineers for SOD conflicts
• Configured SAP Security via SU24 by maintaining authorization objects checks for both custom and Standard transactions.
• Transport SU24 changes within landscape.
• Worked on a remedy ticket system as per Audit purpose for any authorizations issues and user management issues.
• Provided BI production support.
• Trouble shoot BI issues including reporting Roles update based on changes to Auth changes to info providers.
• Running BI trace for authorization issues RSECADMIN.
• User ID creation and Roles maintenance in CRM 2007.

Environment: ECC6, NW2004S BI7.0, BO, XI, GRC 5.2, Approva, cFolders, GTS, SCM, CRM2007,HR, ESS, TnE

Confidential, Chicago, IL

SAP Security Consultant

Responsibilities:

• Worked closely with SAP Functional team
• Set project plans/activities to meet ‘Go Live’ deadline
• Created new role based security and role design according to functional layout, and segregation of duties.
• Creation of role based authorizations
• Created templates and documentation for activity groups and user profiles
• Maintained Roles and Authorizations
• Creating new users and maintaining users on day to-day basis (Single roles, Composite roles (jobs) and Derived roles)
• Creation of custom activity groups
• Developed security procedures and process for end users
• Provision of solutions to user requests according to business requirements
• Implementation and documentation of SAP security policies and procedures
• Creation of forms and change documents
• Creating and maintaining SAP user policies
• Involved in complete upgrade cycle of SAP.
• Use CATT script for mass user creation and mass roles creation for global implementations as a team lead for security
• Assist users with access problems and questions using SUIM and SU53.
• Analyzed user SU53 outputs and corrected security deficiencies.
• Separated regional roles based on their own Sales Organizations, Company codes, Purchasing Organizations, Warehouses, and Plants and their own unique access to certain SAP transactions.
• Created Transports for moving the roles within the landscape.

Environment: SAP R/3 4.7 ECC6, ABAP, BEx Analyzer, Oracle 8.0