SUMMARY

• SAP GRC Certified Consultant with over 11+years of work experience in IT Industry with strong expertise in designing, developing, implementing, and supporting SAP GRC and security systems for large scale projects covering global locations.
• Worked on multiple SAP systemswhich Include R/3 ECC (FI, SD, PS, MM, PP, HR, WM), BW, BI, EP, CRM, GRC, MDM, SAP Net weaver Gateway, HANA and S/ 4 HANA
• Full cycle project Implementations of security from design to post implementation phase and upgrade of R/3 landscape from 4.7 to ECC 6.0
• Administrative tasks related to HANA Security and S/4 Hana Security.
• Organizing workshops with Compliance & Process Team, Change Management and the Technical and functional team members to define custom security solutions across the landscape while establishing SOX and Segregation of Duties by revamping the existing set of internal controls and security requirements that need to be built from an end user access perspective.
• Setting up user access and profiles across Fiori systems to get the application views in the Launchpad
• Experience in SAP GRC design and implementation, administration of the SAP GRC 5.3, 10.X in AC: ARA, EAM, ARM and security concepts such as SOD, SOX.
• Experience in creating and assigning FF ID's and extracting Fire Fighter logs
• Worked on HANA Database user security and permissions.
• Involved in SAP system audit activities and SAP system cutover activities
• End User Administration and access requirement functions of creating R/3 business users, system users and managing them using standard R/3 System transactions to trace user activity and transactions, verify authorizations and display user authorization
• Worked with FIORI consultant in development system to create and fix roles related to FIORI.
• SAP Security Administration, managing/designing Authorization Standard & Custom including Activity Groups, Profile Generator (PFCG), Role/Content Administration (incl SU24) and User Administration.

TECHNICAL SKILLS

SAP Environment: ECC, BW / BI, SRM, Solution Manager (SolMan), Enterprise (NetWeaver ) Portal, APO/SCM (DP, SNP, PPDS), PI (Process Integration), GTS, HCM/HR, CRM, IDM, BPC, MDM, BOBJ, S/4 HANA, NetWeaver Business Client (NWBC), Fiori App, SAP NetWeaver Java and ABAP stacks, ESS/MSS, BPC.

GRC: 10+/5.3/5.2/Virsa 4 Access Control

Ticketing Tools: Service Now,Remedy,HPQC and Panaya for SAP Upgrade

PROFESSIONAL EXPERIENCE

Confidential

Sr. SAP Security Consultant

Responsibilities:

• Security for SAP R/3 ECC, GRC, BI, SRM, MDM, Fiori and HANA systems by resolving the ticketsraised through ticketing tool Service Now.
• User maintenance(User creation /modification / activation / Password management)
• Using CUA for User creation, Password management and locking and unlocking of users
• Used SU53 and ST01 extensively for analyzing users access problems, and assign missing authorizations.
• Maintaining SU24 for custom transaction codes and update authorization objects.
• Following SOX process to identify the users roles/users with SOD conflicts
• Creation/maintaining of Fire Fighter ID’s in EAM.
• Update GRC rule set as per the requirement.
• Extensively Worked on Profile Generator (PFCG) in creating/Modifying single roles, composite roles, derived roles effectively analyzed trace files and track missing authorizations for user access problems
• Created new roles in MDM repository as well as perform user administration activities in MDM system.
• Created new roles for Fiori simple finance (S/4 HANA)
• Worked on role redesign
• Worked on multiple rollout projects.
• Worked with Internal Audit team and provided required reports to fulfill the audit requirements.
• Worked extensively with project managers/business users to determine the requirements for creation of new roles, modification of roles
• Worked on multiple rollouts, created mass roles and assisted in go - lives.
• Following established standards, processes and procedures.
• Worked with portal user / role administration
• Followed Charm process for Change Requests
• Built Analysis Authorizations using the transaction RSECADMIN
• Maintained Access data for OSS messages in SAP service market place
• S-User ID creation and maintenance in SAP Service market place
• Creation of developer keys and object keys for Developers
• User creation/maintenance in HANA.
• Roles creation/maintenance in HANA.
• Used USMM to measure user licensing
• Adhering to the support SLA’s.
• Upload roles in ARM and update approvers for roles.
• Trouble shooting users issues for SSO login

Confidential

SAP Security/GRC Consultant

Responsibilities:

• Security for SAP R/3 ECC6.0, GRC and BPC system by resolving the ticketsthrough in ticketing system Service Now and CRM Helpdesk
• Created new CAD in GRC CUP for new work flow.
• Defined new company codes, process and sub process in CUP for new roll out projects
• Update of RAR functions for new roll out projects
• Created Mitigation Controls as per the business/audit requirements
• Cleanup of Invalid mitigation controls
• Implemented Password self service for Non- Production systems
• Provided audit documents/reports
• Performed GRC upgrade from GRC 5.3 SP11 to GRC 5.3 SP20
• User maintenance(User creation /modification / activation / Password management)
• Using CUA for User creation, Password management and locking and unlocking of users
• Used SU53 extensively for analyzing users access problems, and assign missing authorizations.
• Effectively analyzed trace files and tracked missed authorizations for users’ access problems
• Extensively Work on Profile Generator (PFCG) in creating/Modifying roles, profiles, composite roles, derived roles effectively analyzed trace files and track missing authorizations for user access problems
• Following SOX process for SOD conflicts
• Using GRC 5.3 for generating the repots for SOD conflicts
• Simulating the users with roles and roles with transactions
• Mitigating the SOD Risks for user
• Assigning access to users through Access Enforcer
• Creation of Fire Fighter user ID’s
• Working on Role Review for every Quarter
• Working on User Access review for every Quarter
• Working on ESS/MSS portal.
• Users Account creation & assigned role/activities to users for Go-Live, post go-live support.
• User Administration in BPC

Confidential

SAP Security/GRC Consultant

Responsibilities:

• Performed Pre- Upgrade steps (Client was using only CC and FF in GRC 5.2)

Confidential

SAP Security/GRC Consultant

Responsibilities:

• Creating SAP accounts for users through IDM
• User maintenance(User creation /modification / activation / Password management)
• Extensively Work on Profile Generator (PFCG) in creating/Modifying roles, profiles, composite roles, derived roles effectively analyzed trace files and track missing authorizations for user access problems and inserted missing authorizations manually
• Assignment of various roles user groups to users accounts
• Used SU53 extensively for analyzing users access problems, and assign missing authorizations.
• Effectively analyzed trace files and tracked missed authorizations for users access problems
• Following SOX process for SOD conflicts
• Using GRC 5.3 for Generating the repots for SOD conflicts
• Custom user group creation for Mass user SOD violations check
• Simulating the users with roles and roles with transactions
• Mitigating the Risks for user
• Users Access review for roles assigned to users
• Role Review for transactions assigned to roles.
• Assigning ESS/MSS access to users.

Confidential

SAP Security/GRC Consultant

Responsibilities:

• Defining Request types and initiators for CUP requests
• Stage and Workflow Configuration for CUP requests
• Integration of CUP with RAR and ERM
• Defining Connectors for LDAP and R/3 systems
• Request form customization
• Defining number Ranges in CUP
• Request Priority configuration
• Defining Authentication source and Detailed data source in CUP, by using LDAP & UME
• Defining (SMTP) Email notification in CUP
• Upload role master data to CUP
• Defining connectors in ERM
• Defining methodology for role workflow process
• Integration with CUP and RAR
• Defining naming convention for roles
• Mass upload of roles for R/3 to ERM
• Removal of old mitigation controls for users and roles
• Mass upload of new mitigation controls as per client requirement
• Clean up of invalid mitigation controls
• Assisted in Go-Live and Hyper care support
• Prepared administration documents for CUP and ERM
• Trained client team on CUP, ERM usage and administration

Confidential

SAP Security Consultant

Responsibilities:

• Security for SAP R/3 ECC6.0, APO, and BW system by resolving the ticketsthrough in ticketing system Propweb and CRM Helpdesk
• User maintenance(User creation /modification / activation / Password management)
• Using CUA for User creation, Password management and locking and unlocking of users
• Assignment of various roles user groups to users accounts.
• Used SU53 extensively for analyzing users access problems, and assign missing authorizations.
• Effectively analyzed trace files and tracked missed authorizations for users’ access problems
• Extensively Work on Profile Generator (PFCG) in creating/Modifying roles, profiles, composite roles, derived roles effectively analyzed trace files and track missing authorizations for user access problems and inserted missing authorizations manually
• Following SOX process for SOD conflicts
• Using GRC 5.2 and Virsa 4.0 for Generating the repots for SOD conflicts
• Simulating the users with roles and roles with transactions
• Mitigating the SOD Risks for user
• Assigning access to users through Access Enforcer
• Creation of Fire Fighter user ID’s
• Vendavo 5.3.1.9 Security
• User creation in Vendavo, Assigning Roles and user groups
• Password management for Vendavo
• Locking and unlocking of users in Vendavo
• Working on Role Review for every Quarter
• Working on User Access review for every Quarter
• Working on ESS/MSS portal.
• Users Account creation & assigned role/activities to users for Go-Live and Hyper care support.

Confidential

Security Consultant

Responsibilities:

• Securities of SAP R/3, APO, and BW system by resolving the ticketsraised in Remedy 4 and 6.
• User maintenance(User creation /deletion/ modification / activation / Password management)
• Assignment of various roles, profiles, user groups, and Transaction codesto users accounts.
• Used SU53 extensively for analyzing users access problems, and assign missing authorizations.
• Effectively analyzed trace files and tracked missed authorizations for users’ access problems.
• Creation of OSS accounts, password resets, deletion of OSS accounts, and changes to existing OSS accounts.
• Worked directly with users, user managers, functional analysts and developers in identifying security requirements and implement the same.
• Extensively Work on Profile Generator (PFCG) in creating roles, profiles, composite roles, derived roles effectively analyzed trace files and track missing authorizations for user access problems and inserted missing authorizations manually
• Following SOX process for SOD conflicts
• Also run the security reports for critical transactions/objects and users who never logged on.
• Worked on production role modification for backlog users and roles cleanup in production system