SUMMARY

• SAP Certified Technology Associate - SAP Authorization and Auditing for Net Weaver 7.31
• SAP Certified Application Associate - SAP Business Objects Access Control 10.
• Experience in the GLOBE implementation (RBAC Approach) of large scale, complex SAP systems along with supporting large ERP implementation teams consisting of varied SAP skilled and non-skilled resources.
• Support of SAP GRC CC/FF/EAM 10.1 & Configuration of SAP GRC EAM 10.0 & ARA 10.1
• Strong knowledge of transactions pertaining to SAP modules like FICO (AP, AR, AA, GL), MM/SRM etc.
• Security concepts’ ‘big picture' thinking in a Mix of BAU & Project Work for e.g. Migration, Roll-Outs etc.
• Core SAP security design, analysis, configuration, compliance, and implementation
• SAP Security Basics, SAP Authorization Concept, Roles/Activity Groups, and User Administration Role based access controls, distributed systems administration, and distributed system recovery
• SOD conflict resolution SAP v4.6, ECC 5.0/6.0 environments Creating technical documentation
• Testing & Validation of the impact of implemented break fixes, support packs, upgrades or new functionality.
• Familiarity with configuring SAP NW Identity Management, SAP Single Sign-on, SAML, APIs, X.509 certificates
• Security knowledge in Application Security (ABAP, HANA, JAVA…) and Infrastructure Security
• Project Monitoring and Tracking & SOX Compliance Control Activities by conducting as per System Audits.
• Troubleshoot; investigate security defects to provide resolution as per incidents & service/change requests.
• Work with the Global security team to create derived/local roles from the template/master and then create composite roles by following naming conventions.
• Design of security controls & internal controls within business processes (OTC, AP, AR, GL, P2P etc.)
• Ability to assist in implementing processes with regards to records management (RM)
• Maintaining the Risk register & taking actions as required ensuring compliance with regards to RM
• Maintaining Business Continuity Plan & Embedding Inter-departmental SLA's in the operations.
• IT General controls, application controls & Segregation of duties assessment for key business processes.
• Enterprise GRC-Access Control v10 implementation: Risk Analysis as per Global rule-set & Creation of Risks based on customized transaction, Defined and configured GRC-AC SOD rule sets & carrying out Risk Analysis, SAP GRC 10.1 Connector setup, Modifying Access Control User Interface, End User Personalization Restriction, Applied User Exit in SAP systems, Configured Decentralized EAM.
• Familiarity with CyberSec/InfoSec for integrating SAP logs etc to SIEM tools for achieving the corporate goals

PROFESSIONAL EXPERIENCE

Confidential

Risks Remediation/Mitigation Project in Suite-on-HANA

Responsibilities:

• SOD Role/User Analyis in Security-Weaver’s (SW) Sepration Enforcer (SE) tool.
• Re-Designed Security Roles in SoH to reduce number of Risks count in SW’s SE
• Clean up of SOD Risks based on SE’s findings from GO CLEAN perspective
• Enable core BASIS team to build their competency in SAP security/authorizations from STAY CLEAN perspective for adherence to continuous compliance.
• Periodic (quarterly) review of security and segregation items including development of reports and verification process
• Reviewing existing security and profiles within SAP,referencing previous audit findings and provide recommendations for changes to production and non-production environments
• Risk Management maintain user master records as groups etc. within agreed service levels.
• Reporting on vulnerabilities from batch processes, batch entry and related processes with recommendations to remediate

Confidential

SAP S/HANA Security Architect

Responsibilities:

• My role as SAP Security Architect is End-2-end Implementation of S/4HANA for Finance & Logistics
• SAP Modules: FICO, MM, LE-SHP/WMS, PP, SD & Variant Configuration (VC)
• End-2-end Implementation of S/4HANA (Logistics including Direct Procurement)
• Extensive participation on implementing end-to-end security solutions, undertaken roles in all key phases from Project Preparation, Business Blueprint, Realization, Final Preparation, Go Live & Support
• SAP VMS/SD/P2P/EWM//WTY/LE-SHP/LE-IM
• BOBJ & Alteryx enabled SAP BW/4HANA 1.0 &
• SAP IBP & HCI (Cloud Platform Security) or SAP Analytical Cloud (SAC)
• Experience in HANA 2.0 DBMS Security in configuring Users(Standard, Technical and Restricted) working with Privileges (System, Object, Analytic and Package)
• SAP Web IDE user authorization/authentication
• Assignment of CDS views in HANA Studio across HANA 2.0 landscape
• Fiori based Security including Fiori Tile Catalog definition
• Responsible for 1709 Upgrade from 1610 from security perspective
• SME for Support issues pertaining to S/4HANA (Finance & Indirect Procurement)
• Led TCI’s implementation of S/4HANA and Fiori for Logistics (SD, EWM/IM, P2P, WTY, VMS), providing Security feedback to TCI on Best Practices, and coordinating various Team resources globally (Egypt, India, Pakistan, Halifax)
• Worked in a leadership role to ensure alignment to Security Industry Best practices, with a successful on-time delivery of S/4HANA System.
• Responsible for defining testing strategy for FUT/SIT/UAT in S/4HANA and BW/4HANA for extensive focus on Authorizations.to minimize access issues.
• Participation in Integration Testing, troubleshooting and technical issue resolution
• Managed each Security Test Phase ensuring quick turnaround on defects, and minimal impact on Go-Live
• Worked with TCI to provide SOD mitigation and resolution suggestions using GRC ARA 10.1
• Provided Security KT to support team and Confidential resources, to ensure full security coverage for Project and Production.
• Understanding of workflow solutions and ABAP/programming
• Assisted CyberSec Team in integrating SAP logging & auditing to SIEM process.
• Reviewed systems & user-stories from security perspective & Documented ricef for custom code/objects
• Team leading experience with respect to work assignment, work prioritization, mentoring, knowledge transfer.

Confidential

SAP Security Senior

Responsibilities:

• Global Implementation of SAP S/4HANA (MDM/RTR/CTC/P2P/Treasury/Tax /BOBI/BPC), SAP Fiori & SAP GRC 10.1 Access Control (ARA/EAM) with integration to SAP GRC 10.1 Process Control and non-SAP products.
• Assist in design, document and continually enhanceIDMadministration
• Experience in configuringIDMapproval workflows
• Exposure to Concur
• Experience in connectingIDMwith multiple systems
• Configuring ImportSAPDelivered Packages
• Troubleshoot and knowledge ofIDMlogs and workflows
• Understand, and exposure to context based user provisioning inIDM
• Work with integration of GRC 10.1 for SOD Analysis
• Good knowledge of MS SQL policies, processes, and procedures

Confidential

SAP Security/Authorizations Team

Responsibilities:

• My role as SAP Security Lead is to resolve the AMS issues in SAP systems
• Insurance Domain for 2 Landscapes of nearly 300 users in production
• Providing Level 2 / 3 for resolving all authorizations issue
• Assisting Helpdesk during Level 1 Support in CUA enabled Landscapes

Confidential

SAP Security/Authorizations

Responsibilities:

• Implementation Lead for SAP Quality Management (Audit/Inspection/Calibration), SAP xECM (OpenText) & SAP QIM (NWBC Architecture) with Integration to Portal & Micro strategy via Reporting (Teradata database)
• Exposure to SAP Ariba
• SAP GRC-SPM set up in newly implemented SAP Quality Issue Management
• Resolving Post Go-Live issues in SAP PLM under Hyper care
• Remediation as per findings based on Penetration Testing & Vulnerability Scan
• BAITs SAP
• Resolving BAU issues in SAP (RE-FX) Real Estate
• Single Sign-On (SSO) Enterprise Portal Security administration via Microsoft (MS) Windows Active Directory (AD) groups.
• Positioned SAP user sign-on to align with SSO and linking to MS Active Directory

Confidential

SAP Security/Authorizations

Responsibilities:

• My role as SAP Consultant is to resolve the post Go-Live issues in SAP systems
• Analysis Authorizations in SAP BW/BI
• PBS in BW/BPC/SRM/ SAP ECC (HR & Payroll) based upon SAP IDM 7.2
• Authorizations in Enterprise Portal
• Assets & Works, EHS, Procurement etc. as business processes
• Role changes and resolving the incidents raised as per ITSM.
• Configuring IDM provisioning, user Interface and related system tasks.
• IDM integration with core SAP modules HCM, GRC, AD and other SAP and non-SAP Systems.
• User and Business role administration using the SAP IDM UI and mass maintenance (automated loads) using the IDM Management Console.

Confidential

SAP Security/Authorizations

Responsibilities:

• My role as SAP Consultant is to support the SAP systems (SRM, BI 7.3 with BPC 10.0, Duet, PI/XI, ECC 6.0 with HR/PY) during Implementation is as follows-
• Business Process Consolidation (BPC) Security.
• My role as SAP Consultant is to support the SAP systems (BI 7.3 with BO, PI/XI, ECC 6.0 with HR/PY) & project work due to joint venture is as follows-
• ECC Security with General Authorizations n SAP HR/HCM
• Analysis & Hierarchical Authorizations in SAP BW/BW
• BI/BO Authorizations based on composite roles
• SAP GRC 10.1 Access Control Support along with setting up email for sending logs to controllers.
• Authorizations in Enterprise Portal
• CRM Security SAP Business Objects BI 4.0 Support & Exposure to Fiori Authorizations
• Imparted Training to SAP Service Desk Team for Level1 User Admin Work
• SAP GRC ARA 10.1 Proof of Concept

Confidential

SAP Security/Authorizations

Responsibilities:

• My role as SAP Consultant is to support the SAP systems (SRM, BI 7.3 with BPC 10.0, Duet, PI/XI, ECC 6.0 with HR/PY) during Implementation is as follows-
• FI & SRM Project related Work (including unit testing) for upcoming Go-Live.
• Mass users’ creation (>14000) via LSMW in training & production systems.
• System Testing, System Integration Testing, User Acceptance Testing, Functional and Regression Testing, Product Verification Testing, Performance and Release Testing, Security Testing etc on HP Quality Centre.
• Position based Security & Risk Analysis based upon GRC Access Control 5.3
• Gap Analysis between existing & new SAP Implementation in Corporate sector.
• Human Resources Mini Master record maintenance & Work Flow Administration.

Confidential

Senior Team member

Responsibilities:

• My role as a Senior SAP Security is to support the SAP systems (CRM, Solution Manager, ECC 6.0 with PM, PS, EHS, CV, HR/PY) within the business is as follows
• Liaising with stake holders for changes in system.
• General HR Authorizations
• OSS Connections set up for SAP.
• ERP Support & Project.
• Taking care of additional Landscape for upcoming Migration due to Merger.
• Indirect Role Assignment Using Organizational Management (OM)
• Structural Authorizations in OOSB

Confidential

Technical Lead

Responsibilities:

• My role as Senior SAP Security Consultant is to support the SAP systems (ECC 6.0, BI 7.0, APO 5.0 & PI 7.0) within the business is as follows-
• Practical experience and knowledge of SAP Authorization Concept including role design builds and transport, custom objects, custom development across all functional and technical listed components including SAP Java UM (Portal).
• GRC EAM 10.0 POC for the Confidential (EAM module)
• Change Management Processes for Project Go-Live (Migration) & Support.
• Exposure to SAP CRM 7.0 (Web Confidential UI) Security.
• Routine SAP Security Maintenance & Roles/Profiles/User Administration.
• EWA Reports Analysis as per System Assurance.
• SAP Security Notes: ABAP and Kernel Software Corrections.
• Develop and Maintain excellent working relationships with Functional Consultants and SAP users & liaise with SAP Regional Security Solution Architect/Consultant.
• Identify and evaluate complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement.
• Knowledge of SDLC, information security management and standards.
• SAP User License Audit in order to minimize licensing costs.
• Act as Main Point of Contact for business processes, risks & any other SAP business clarifications required by project team.
• Assess clients' security and control readiness and provide appropriate security assistance & provide information to internal & external auditors.
• Competence in high-end Usage of Central User Administration/CUA, SAP Security key Transactions (e.g. Profile Generator/PFCG, SU24, SUIM, SU01) & SAP Security key Tables (e.g. AGR*, USR*, TDDAT).
• Worked upon BI Analysis Authorizations during migration project.
• Execution of Security support/administration activities for SAP environments through full lifecycle along with prevention and detection of internal controls.
• Organized and coordinated UAT (User Acceptance Testing) of new SAP processes or upgrades after developing & implementing changes.
• Develop and maintain open transparent working relationships between internal and external customers by the timely (or adhoc) transmission of informed & accurate system advice by delivering reports to management as per reporting processes laid by Confidential .
• Ensure that standardized methods and procedures are adhered to and used for efficient and prompt handling of all changes and day to day operations.
• Communicate effectively with SAP users to ensure they are aware of the status of all issues - conducting appropriate ‘RCA’ of incidents.
• Analyze and monitor deviations from service levels and determine improvements.
• Demonstrate advanced understanding of business processes, internal control risk management, IT controls and related standards.
• Work with SAP Functional Consultants (heterogeneous) and dedicated business resources to ensure a fully secured ERP system.
• Understand complex business and information technology management processes.
• Execute advanced services and supervise staff in delivering basic services.
• Assist in the selection and tailoring of approaches, methods and tools to support service offering or industry projects.
• Highlighted and analyzed reports in SAP, to deliver SAP solutions to the business.
• Understand clients' business environment and basic approaches.
• Developing the training materials for the end-users to achieve the desired training outcomes.
• Actively participated in decision making engagement management and seek to understand the broader impact of current decisions.
• Generated innovative ideas and challenge the status quo.
• Build and nurture positive working relationships with clients with the intention to exceed Confidential expectations.
• Opening system connection to SAP for resolving issues.
• Providing Developer and Object Keys to the ABAP team.
• Challenged business requirements, propose alternative solutions
• Delivered Service and Performance Management activities
• Proactively identified service users or sites that are not utilizing SAP to a satisfactory level and provide targeted training as required.
• Loggedand maintained all support calls in a help desk database.
• Ensured that all SAP users can operate SAP proficiently and comfortably
• Developed SAP skills and knowledge across the business.
• Provided remote support and training to all SAP users.
• Facilitated and deliver training for key SAP users across the business.
• Reviewed help desk calls and address repeat or high frequency issues.
• Created and maintained SAP training documentation.
• SAP SCM Upgrade from 5.0 to 7.0 (ehp2)
• Reporting and remediating recommendations on common security issues, access vulnerabilities and segregation of duties issues within SAP environment including:Connections to non-SAP systems, developer access,maintenance access (transports and table maintenance),custom code and objects, etc
• Participated in and actively supported mentoring relationships within practice like Pre-sales work for multiple prospecting clients across the globe, delivering SAP training material & imparting in-house trainings etc.

Confidential

Senior SAP Consultant

Responsibilities:

• Worked upon Change Requests related to General Authorizations in SAP HR.
• Deletion of unused roles across the SAP ECC Landscape.
• Parallel Support in Finland Roll-Out for the Confidential & AMS for Baltic Nations.
• Worked rigorously upon Authorization issues in SAP ECC 6.0 during go-live.
• Provided assistance with post go-live support for new sites or acquired service businesses.
• Proactively and operationally deliver consultancy services that support IT needs for ERP program of work.

Confidential

SAP Consultant

Responsibilities:

• SPM & Compliance tool experience: Biz Rights (Approva).
• Assignment of Fire - Fighter IDs (Version 5.3) to the users based on approval.
• Roles Administration/Maintenance, User Management & Authorization issues.
• Cleanup of unassigned roles and in used user IDs in systems.
• Redundant and Expired roles removal form user assignment.
• Auditing of users, generating security audit reports and analyzing audit logs.
• Synchronization to fix the business partner function error (German Error) in SRM.
• Developing Fire Fighter roles in all SAP systems & Review of periodic logs
• Writing SECATT scripts for mass creation & changes in the system.
• Validated the SAP Systems of Development environment.
• SAP CRM, Internet Sales, Biller Direct User Administration

Confidential

Senior Software Engineer

Responsibilities:

• My role as SAP GRC 5.2 Security Consultant while supporting systems (ECC 6.0, BW 5.0, SRM 4.0 & GRC 5.2 FF/CC) is as follows-
• Solving S&A project assignments, changes and service/support tasks within agreed upon time lines and first time right in all SAP systems.
• Assigning role in Enterprise Portal, based on business package and parent content area, we are creating group and assigning to the users as per requirements.
• Able to translate customer requests to S&A requirements and at the same time sticking to standard baseline security levels, and in case of SOX systems: sticking to ICS standards.
• Enterprise Portal Security (Zones, Permissions & UME Actions) in based upon SSO/LDAP (Novell eDirectory)
• Identified, assessed and articulated risks with the broader SAP User Community, as they relate to managing change and logical access controls.
• Creation and maintenance of activity groups and custom authorization objects along with Reporting Authorizations objects in SAP BW.
• Acted as Shared Services Group and with the Business.
• User & Authorization Management like Creation of profiles, granting authorizations.
• Develop operational procedures, systems and processes.

Software Engineer

Confidential

Responsibilities:

• My role as SAP GRC 5.1 Security Consultant while supporting systems in Production Support (ECC 6.0, SRM 4.0 & GRC 5.1 FF/AE/CC/RT) is as follows-
• Performing weekend cut-over Activity (EURO Process).
• Attained GX Pharma Training specific to Pharmaceutical Industry.
• Ensure adherence to SOD and cGMP being Wyeth a FDA regulated site.
• Supported Critical Global Manufacturing & Supply (GMS) Initiatives
• Worked extensively in CUA environments in all landscapes with LDAP Configuration for connecting SAP system to E - directory service.
• Continuously seek ways to enhance and improve on the ways of working in support operation.
• SRM role and authorizations distribution in a multiple SAP landscape
• Resolving day to day Super-user Privilege Management (FF (5.1)) issues for various teams.
• Worked in Access Enforcer (Version-5.1) for granting access to End-users, identifying the risks involved in granting the access and assigning the suitable mitigation control ID or any risk conflicts.
• Determine and report if there are any risks associated with a group of actions or permissions and a User, Role, or Profile.
• Worked in compliance calibrator (Version-5.1) for identifying risks, mitigation control for the risks, generating various security reports using Risk Analysis and Remediation Calibrator (CC).
• Facilitate process risk assessment workshops and help to develop flowcharts as a result of process reviews
• Partner with the Business in reviewing policies and procedures
• Act as Controls Expert of the Business providing advice on risks and controls
• Determine and report if any risks will be introduced by simulating the addition of actions, Roles, or Profiles to a User ID.
• Implemented new roles for UK and Germany as per their organization level and worked upon Identity Management.
• Partner with Region, Sector Controls Team, and local BIS team in the review of Segregation of Duties (SODs) Rules in SAP GRC and identify mitigated controls
• Mitigate individual users SOD issues in the GRC
• Assist the Business during Internal Corporate Audit; be the main point of contact for the auditors
• Risk Management via SAP Identity Management 7.1

Confidential

Team member

Responsibilities:

• My role as SAP BASIS (Authorizations’) Consultant is as follows -
• Analysis, evaluation, design, build and test of the SAP security role requirements across all functional project streams including Finance, Procurement, Plant Maintenance and Property to achieve an optimal secure system.
• Worked with all functional team leads to prepare the systems ready for workshop.
• Designing and developing strategies to effectively test new role groups under Informal Integration Testing (IIT) and Formal Integration Testing (FIT).
• Involved in creation of authorization objects, Fields and Maintenance of Authorization objects & SU24 maintenance for standard/custom transaction.
• Worked on profile generator (PFCG) to create composite, derived or global roles.
• Transportation of roles (composite and single roles) via Creation of transport requests & releases (Change Control).
• Creating iView, page, role, Single Sign on to R/3 system from portal.
• Setting up Central User Administration (CUA), Creating roles, users and groups and transferring users from different systems using central system and maintaining the authorizations based on the Confidential requirements.