SUMMARY

• More than 10 years of work experience as SAP Security / GRC consultant
• Proficiently maintained and configured GRC Access Controls - Firefighter SPM, GRC RAR 5.3, CUP 5.3, ERM and GRC 10 EAM and ARA, Internal Controls for UAR and SOD.
• Extensive experience in SAP ERP and all aspects of SAP Security Administration - including implementation, upgrade and production support on different landscapes and SAP R/3 versions 4.6C, 4.7, ECC 6.0, ECC 5.0, Solution Manager 7.0, SRM, SCM, PI, BI, BPC, CRM. Designed and worked on security for FI, MM, SD and HR modules.
• Full implementation cycles by task based design strategies as per SOX compliance.
• Worked closely with the KPMG/E&Y audit teams and resolved the deficiencies in the production system through roll out projects.
• Experience as leadsecurityanalyst on SAP Roll out projects.
• Performed Unit testing and User acceptance testing along with the different functional teams during the implementation phases.
• Extensively used CATT Scripts during security implementations.
• Maintained and configured Central User Administration (CUA), monitored user activities, troubleshoot user level problems to properly access the servers and managed security throughout the SAP landscapes.
• Basis activities - performance monitoring, transports, developer keys, object keys etc.
• Solution Manager: Rev Track tool, Change Request Management (CHARM), Incident Management, Project Administration, Test Management, E-learning, Solution Manager Security.
• Pre Go-Live, Post Go-Live Support and providing Technical solutions during the roll outs for North America and UK.
• Worked for different Clients in Retails, Public and CPG domain.

TECHNICAL SKILLS

ERP: SAP ECC 6.0, ECC 5.0, BI 7.0, SRM, SCM 7.1, CRM, GRC 10.0, XI, Solution Manager 7.1

Operating Systems: Windows NT, Windows 2000/2003 & HP-UX 11.0 & 11i, AIX, SunOS, Linux.

RDBMS: Oracle 8i/9i/10g/11g, MS Access.

Programming Software: C, Visual Basic 6.0

GUI: Developer 2000 & SAP.

PROFESSIONAL EXPERIENCE

Confidential, Kansas

SAP Security/GRC Analyst

Responsibilities:

• Designed roles for ECC 6.0 and SCM APO/DP as per the requirements of the functional teams with respect to SOX compliance based on transaction usage data.
• Implemented task based roles for ECC 6.0 and SCM APO/ DP based on tier1, tier2 and tier3 approach for the FI, MTI, STP, QM, SCP, Basis and SAP COE.
• Worked closely with the Business Process teams and resolved the deficiencies in the production system.
• Tested the new task based roles along with the functional teams and transported through the landscape.
• Redesigned GRC 5.3 Access controls SPM, RAR and CUP.
• Proficiently implemented and configured GRC tools - SPM, GRC RAR 5.3, CUP 5.3.
• Customized the rule set and made it as default rule set for the production systems.
• Included the custom critical transactions in the rule set and modified the risk id’s based on requirement.
• Customized risk id’s to the Z naming space to differentiate between sap default risks and activated the risk ids based on the business risk level.
• Redesigned the CUP workflows and updated the new task based roles in the workflows, defined the new role approvers, access review.
• Designed the Standard operating procedures for new roles, GRC 5.3 access controls.
• Redesigned the portal security and developed new portal content roles.
• Worked on HCM security and provided production support on HR issues.
• Implementation of CRM 7.0, Created business roles and mapped to the PFCG roles.
• Worked with the SAP Consultants in defining the roles for CRM 7.0.
• Worked on Real Tech Manager of Solution Manager 7.0 EHP1 and developed roles.
• Creation and execution of ECATT/LSMW scripts for mass user creation, deletion, Password resetting, role assignments and adjusting derived roles.
• Pre Go-Live, Post Go-Live Support and providing Technical solutions during the roll outs for North America and Asia
• Performed User classification (USMM) based on the roles.
• Worked Real Tech manager tool of Solution Manager for change management process.
• Worked on CPS scheduler in Redwood tool for submitting jobs.
• Worked along with the KPMG/Protiviti auditors in extracting the reports from GRC.
• Worked on implementation of GRC 10 version of Emergency Access Management component and ARA.
• Worked on Remedy tool for resolving the incidents.

Confidential, Atlanta

Lead SAP Security Analyst

Responsibilities:

• Designed roles for ECC 6.0, BI 7.0, BPC, SCM 5.0, SRM 5.0, HR, CRM 7.0, XI 3.0 as per the requirements of the functional teams with respect to SOX compliance.
• Implemented task based roles for ECC 6.0 based on tier1, tier2 and tier3 approach based on transaction usage data.
• Lead SAP Security team during the redesign project Roll out.
• Worked closely with the KPMG audit team and resolved the deficiencies in the production system through roll out projects
• Worked on Solution Manager 7.0 and used the Rev Track tool for change management procedure.
• Maintained BI custom analysis authorizations through RSECADMIN Tool.
• Worked on BI Business Objects (BOBJ) and designed roles as per the design.
• Worked on CRM 7.0 production support and resolved issues for users.
• Implemented HCM security and provided production support on security and structural authorizations (MSS). Resolved issues after go live of structural authorizations for users.
• Trouble shooting authorization problems using Repository Information System and tracing authorizations during security roll outs.
• Experience in Business Planning and Consolidation (BPC).
• Worked on Biz rights (Approva tool) for SOX violations and GRC 10.0 Access Controls proposal as part of Internal Controls.
• Performed User classification (USMM) based on the roles.
• Created authorization groups using SE54 and inserted into the tables.
• Creation of users and J2EE roles thru UME.
• Creation and execution of ECATT scripts for mass user creation, deletion, Password resetting, role assignments and adjusting derived roles.
• Worked on the Early Watch Alert reports and implemented sap security Hot News in all sap production systems as recommended by SAP.
• Worked on Biz Rights during what-if analysis and Emergency Access Management (EAM).
• Day to day Basis activities like Transports and registration of developer and object keys.
• Worked sap netweaver Identity Management (IDM 7.1) and provided support on IDM issues.
• Maintenance of profile parameters through RZ10.
• Pre Go-Live, Post Go-Live Support and providing Technical solutions during the roll outs for North America and UK.

Confidential, Chicago

Lead SAP Security/GRC

Responsibilities:

• Lead SAP security team during North America release in designing the roles for ECC 6.0, BI 7.0, Solution Manager, SCM 5.0, SRM 5.0, XI 3.0 as per the requirements of the functional teams with respect to SOX compliance.
• Maintained BI custom analysis authorizations through RSECADMIN Tool.
• Worked on Solution Manager and downloaded patches from MOPZ and configured alerts for Work Center.
• Worked on CHARM for change management process and customized the roles for compliance manager, developer, Monitor.
• Single handedly leaded SAP upgrade BI Ehp1 NetWeaver 7.1 through post processing steps of SU25.
• Troubleshooting authorization issues after Ehp1 upgrade.
• Worked on HCM security and provided production support on HR issues.
• Created authorization groups using SE54 and inserted into the tables.
• Proficiently maintained GRC tools - SPM, GRC RAR 5.3, CUP 5.3 for remediation of Segregation of Duties (SOD) and provisioning.
• Performing risk analysis for the transaction codes in GRC 5.3 using RAR and looking for any SOD conflicts.
• Performed mitigation at the user level by applying mitigation control id. Analysis of the roles in Compliance Calibrator by simulation for remediation.
• Updated the rules by creating new risk id for conflicting functions and transported through the landscape of GRC RAR.
• Creation of users and J2EE roles thru UME.
• Creation of request in Access Enforcer for user provisioning.
• Role Expert release 3.0: Created roles and performed risk analysis.
• Maintained users in Central User Administration (CUA) and changed SCUM settings as required.
• Creation and execution of ECATT scripts for mass user creation, deletion, Password resetting, role assignments and adjusting derived roles.
• Day to day Basis activities like Transports and registration of developer and object keys.
• SAP Systems checks, Monitoring and Tuning and implemented TDMS (Test data migration server).
• Installed Identity Management (IDM 7.1).
• Maintenance of profile parameters through RZ10.
• Completely handled Post Implementation activities like Kernel Upgrades, application of Support Package Stacks and SAP Notes, Local and Remote Client Copy, Client Export-Import, Printer Configuration, STMS and tasks of monitoring.
• Pre Go-Live, Post Go-Live Support and providing Technical solutions during the roll outs for North America and UK.

Confidential, Philadelphia

Sr. SAP Security/GRC Analyst

Responsibilities:

• Lead the redesign of SAP GRC Firefighter 5.2 project.
• Configured Firefighter 5.2 and assigned the roles to the Firefighter IDs. Created Firefighter ID owners and Controllers. Created a list of critical transaction codes in the critical t-codes table.
• Performing risk analysis for the transaction codes in compliance calibrator 5.1 and looking for any SOD conflicts.
• Creation of JAVA roles for Access Enforcer 5.2.
• Worked on role Expert release 3.0, created roles and performed risk analysis.
• Worked on HR security and provided production support on HR issues.
• Creation and modification of roles for (ECC 5.0, BI 7.0, SCM APO 4.1, SRM) according to the requirements of the functional teams.
• Trouble shooting authorization problems using Repository Information System and tracing authorizations.
• Worked on SCM APO security, promoted authorization fields like planning book to the organizational levels.
• Worked on Position based HR security through Organization Management.
• Transporting the roles from DEV -> TST -> PRD by following the change management process.
• Maintained users in Central User Administration (CUA), monitored user activities, troubleshooting user level problems to properly access the servers and managed security throughout the SAP landscapes.
• Worked with the testing team in creating a test script (QTP) and rectified the errors in the roles.

Confidential, Allegan, Michigan

SAP Security Consultant

Responsibilities:

• Worked on BW Security and provided access to users to make better business decisions.
• Configured and maintained Info Area, Info Cube and ODS. Queries and Reporting authorizations.
• Created and maintained custom Authorizations.
• Involved in implementation of SCM Demand Planning project RADAR. Creation and modification of Roles and profiles as per the requirement using PFCG. Troubleshooting authorization problems.
• Building the Roles using the transaction codes and implementing these Roles for the client organizational levels creating derived Roles and authorization profiles.
• User creation using UME (User Management Engine) on JAVA side in XMII Systems. Created Roles and assigned java Authorizations.
• Extensively worked with Team members in Unit testing and Integration testing.
• Worked on XI (Exchange Infrastructure and Process Integration) Assigned JAVA authorizations in XI (PI).
• Worked on GRC Compliance Calibrator 4.0 for defining mitigation controls.
• Daily Basis activities like Transports and registration of developer and object keys. Restriction of clients using SCC4. Maintenance of Profile Parameters through RZ10.
• SAP Systems checks, Monitoring and Performance Tuning of Database growth. System refreshes on Dev and QAS systems. Performed client copies and client deletion activities in the systems.

Confidential, WI

SAP Security Analyst

Responsibilities:

• Building the Roles using the transaction codes and implementing these Roles for the client organizational levels creating derived Roles and authorization profiles Allocating system storage and planning future storage requirements for the database system.
• Worked on GRC Compliance Calibrator 4.0 for defining mitigation controls.
• Daily Basis activities like Transports and registration of developer and object keys. Restriction of clients using SCC4. Maintenance of Profile Parameters through RZ10.
• SAP Systems checks, Monitoring and Performance Tuning of Database growth. System refreshes on Dev and QAS systems. Performed client copies and client deletion activities in the systems.
• Worked on IBM ITM Tivoli Identity Manager for provisioning roles to different systems.
• Worked on V-PASS Admin for user provisioning.
• Daily SAP Audit checks.