PROFESSIONAL SUMMARY:

• SAP GRC Certified Consultant with over 12+years of work experience in IT Industry with strong expertise in designing, developing, implementing, and supporting SAP GRC and security systems for large scale projects covering global locations which includes around 9+ years of experience in implementation of SAP security, structures and controls 5.3, 10& 10.1configuration and maintenance activities.
• Experience in managing team sizes of 5 - 10. Skilled in effort and budget estimates for project.
• Excellent communication and verbal skills in handling clients and team members with business knowledge. Act as a liaison between internal and external auditors for smooth and fair auditing.
• Working closely with SOX and Internal security controls team in helping and defining controls in line with Sox compliance.
• Prepared Standard operating procedures (SOP’s) and job aids
• Experience in participating Business proposals, Project kick off meetings along with stakeholders meeting and business process owners to identify project scope and planning.
• Experience as GRC and Security Architect in various phases of ERP and GRC Implementation, Migration, Redesign and Roll-outs, SOX Audit, defining security controls and involved in development of business plans, Blueprinting, strategies, policies, standards, processes, and procedures to enable security and compliance.
• Has good International Experience and Exposure in project discussions, requirements gathering, data collection, customization requirements, status tracking and progress monitoring purposes.
• Has involved in System Security Design and Configurations of SAP R/3, ECC, XI/PI, BI, CRM, SRM, BPC, BOBJ Admin, Hana Admin, Solution Manager, Fiori and Security customs tools.
• Expertise on various GRC Tools like ApprovaBizrights, and 10.0 Access control suite (Compliant User Provisioning (CUP)/Access Request Management (ARM),Risk Analysis & Remediation/ Access Risk Management (RAR/ARA), Super User Privilege Management(SPM)/Emergency Access and Enterprise Role Management(ERM)/Business Role Governance(BRM) tools.

EXPERIENCE:

Confidential

SAP Modules: GRC 10.0, ECC 6.0, SRM, XI/PI, Portal, BPC

SAP Versions: SAP ECC Net Weaver 7.0

Ticketing Tool: Service Now

Responsibilities:

• Extensive interaction with Business Organization Managers to understand User and Role Mitigations and Critical Transactions
• Checking RFC destination of the target system on data queuing up and creating the system and communication users as per Business Needs.
• Creating S- user id and opening the systems at service market place.
• Supported user administration for the production, development, and test environments.
• Updated Licensing for all SAP systems. Compiled Licensing reports for SAP.
• Under user Administration Analyzed trace fields and tracked missed authorizations for user access problems
• Reviewing Cleanup of roles for the critical authorizations as per the reports from GRC.
• Setting up System users as per the new projects for running the background jobs.
• Creating user group in the CUA system for all the SAP users.
• Creating and modifying master/derived roles, using the Profile Generator (PFCG) tool.And Moving roles to QAS & PRD as per the CAB Approval. After testing
• Reviewed, validated, tested, and transported the generated rule set to QA and PRD
• Approved GRC requests for provisioning of roles, created mitigation controls, performed risk analysis, checked for critical risks to determine if mitigations are required.
• Uploaded roles and role owners and controllers as per the organization.
• End to End upgrade activities (Re design, build, test, support) of SAP GRC Access control 10.1&ECC Upgrade
• Creating Functional and Technical design documents for the new business security roles.
• Creating new MSMP workflows in GRC 10.1 (SP06).
• Led the Role Redesign project on ECC to address large number of SoDs conflicts within SAP security roles, as identified due to the SOD through GRC
• Defined and documented SOP's for SAP Security and GRC for day to day operations
• Involved in Monthly User Access Review activity with the internal auditors
• Involved in SOX testing and Audit with the compliance team and provided the required reports from SAP. Also provided the evidence for the requested changes
• Setting up new workflow process for new users as per newly acquired business needs
• Setting up security roles for newly acquired business
• Restricting security access for newly acquired business and restricting not see each other business data and Meta data.
• Clean up of security roles
• Creating new custom functions and risks as per new business requirements

Confidential

SAP Modules: ECC, BW, BOBJ, SRM, GRC 10.1

SAP Versions: SAP ECC Net Weaver 7.0

Sr. Associate

Responsibilities:

• Lead, facilitate, coordinate, and track day-to- day activities required to ensure the project is completed on time, successfully, and in a manner consistent with organizational goals, departmental policies, established processes, and/or the standard terms and conditions.
• Oversees and directs the Security Administrators in the creation and maintenance of required master and derived security roles and the administration of users.
• Testing with test coordinator while being responsible for managing both Integration testing and UAT test cycles
• Providing solutions to Break Fix authorization issues in all SAP environments.
• Proposing best security strategy aligned with SAP Best Practices and the business process requirements.
• Excellent problem-solving skills, team player with Great communication and interpersonal skills.
• Designing and maintaining Security in ECC, PI, SRM, HR, Portal, BOBJ, BPC & BI
• Providing Specific application level access right/permissions to BPC users.
• Determines what type of activities or tasks a user or team can perform in BPC.
• Creating the Team Through web Interface and adding to user to enable the access.
• Creation of a task profile in BPC system.
• BOBJ User Management, Creation of Access levels &Creation of Groups
• Assigning the roles in BW ABAP system to the users as BPC users Requirement.
• Worked extensively with the area of Authorization checks using transaction SU24 and maintained check indicators for Transaction codes.
• Managing assignment of mitigating controls for specific Segregation of Duties (SOD)violations
• Security Requirements Collection, Re-design of Roles, Administration of Roles, Testing of Roles
• Acting as a liaison between internal and external auditor for smooth auditing.
• Review and analyze SOX/GRC and SOD reports and act accordingly.
• System opening & Maintain the user update at service market place,
• Creating user & License Key at service market place.
• Moving Transport request.
• Security Role Changes, New or Existing
• Worked on SAP Check Indicator Defaults and Field values
• Worked extensively with the area of Authorization checks using transaction SU24 and maintained
• Check indicators for Transaction codes.
• Performed SU25 activities after SAP Upgrade for ECC and BW Systems.
• Performed post installation tasks such as Client copy validation, Activated the GRC AC applications in clients,
• Checked and activated ICF services, activated BC sets and generated standard SAP profiles
• Setting up Approvers and alternate approvers in GRC for roles
• Involved in Monthly User Access Review activity with the internal auditors
• Worked extensively in area of Firefighter implementations (EAM)
• Mapped the FFIDs to Owners and Controllers
• BEx queries to simulate/validate of user administrator

Confidential

SAP Modules: ECC, BW, BizrightsApprova,BOBJ Admin,Hana

SAP Versions: SAP ECC Net Weaver 7.0

Sr. Associate

Responsibilities:

• Design and build security roles for SAP systems like ECC, BI, BO, Portal, SOLMAN and SRM systems, adjust SU24 check indicators for initial setup, maintain the security profile parameters per existing domain policy.
• Responsible for Security administration. Defining the roles and providing authorizations as per the functionalities of all the ECC Financial & BI associates single roles, derived and composite roles.
• Mapping financial transactions through the business processes defined. Tested transaction codes for their authorized functionalities and resolved defects through configuration changes. Maintained and configured Internal Controls for business, authorization object restriction controls via creating and changing roles within SAP systems as per requirements
• Created SOX roles for all the Finance related roles
• Created Enabler role as per the Authorization object access
• Involved in role administration of specialized custom product which is known as Royalty Ledger. This product involved 2 major components as Artist Ledger and Copyrights Ledger
• Assigning authorized access/roles to user accounts in SAP systems as per the Matrix in ECC/Approval
• Design and document for the new projects with Roles and Users
• Updating the roles as per SOX compliance
• Performing the UAT Testing of security roles to ensure proper implementation and accuracy of security roles
• Worked on Role build for SAP BW on Hana for security related.
• Worked on Role design for BPC and user creation from the Backend.

Confidential

SAP Modules: ECC, BW, CRM, Fiori, GRC

SAP Versions: SAP ECC Net Weaver 7.0

SAP Security and Authorization, Tech Lead

Responsibilities:

• Creating new roles and modifying existing roles based on new requirements.
• Provides user administration support in all SAP systems and landscapes; daily processing of user requests through Remedy Ticketing tool.
• Communicates with the IT and business users globally to facilitate questions, resolve issues, and request feedback on access issues.
• Resolve end-user production support security issues in a timely and accurate manner; monitor and self-assign incoming tickets related to security and user administration.
• Creating and adjusting roles within SAP systems as per business requirements and security guidelines
• Assigning authorized access/roles to user accounts in SAP systems (Java, Portal, Data Services)
• Assist in design, document, and continually enhance SAP security administration policies, processes, and procedures for the SAP environment
• Participate in the implementation and support of SAP GRC (Governance Risk & Compliance) Access Controls 10.0 including ARA and EAM; assist with technical deployment of future rollouts.
• Setup Emergency Access Management for auto firefighter provisioning, setup Firefighter IDs in GRC and SAP systems. Enable configuration settings for Access Risk & Analysis, User Access Management, Emergency
• Access Management and Business Role Management as per functional specification and technical design document.

Confidential, Detroit, MI

SAP Modules: CRM, APO, Fiori.

SAP Versions: SAP ECC Net Weaver 7.0

SAP Security and Authorization, Team Lead

Responsibilities:

• Primarily responsible for requirement gathering, design and implementation in SAP Role Design, Creation of Users in CRM, APO
• Understanding the business requirements and functional specifications of the client.
• SAP Security and Authorization management.
• Creation and management of roles in SAP systems
• Assigning authorization objects to roles working with business to define role design
• Testing & documentation related to the new roles created
• Create and assign new users groups as per the requirement.
• SAP Fiori Setup of admin and developer roles
• SAP APO Create and Change user roles and assignment of new roles to existing and new business users
• Created composite role by selecting the Module specific (DP, SNP, PPDS, CIF)
• SAP ECC Create and Change user roles and assignment of new roles to existing and new business users
• User administration in SAP systems.
• Planning the test activities and preparation of test scenarios as per customer requirements.
• Identify customer process gap, provide recommendations in security area to get clean chit from Audit.
• Develop enhancements, system documentation, and production support and implement procedures for quality
• Improvement and development. Managing & Mentoring team of 4 Security and Authorization consultants
• Creating new roles and modifying existing roles based on new requirements

Confidential

SAP Modules: SAP ECC, BI &GRC

SAP Versions: SAP ECC Net Weaver 7.0

SAP Security and Authorization, Team Lead

Responsibilities:

• Involved in implementation and support of SAP GRC (Governance Risk & Compliance) Access Controls 10.0 including ARA, ARQ and EAM; and Worked on Fiori for ESS and MSS Tiles Configuration assist with technical deployment of future rollouts and Upgrade of ECC .
• Implementation and Testing of SAP GRC Access controls 10 including RAR (Risk Analysis & Remediation),
• CUP(Compliant User Provisioning) and SPM (Super User Privilege Management) Â Responsible for Complete end-to-end implementation & deliverables of GRC Access Control 10.1 Handling client meeting and Gathering business requirements
• Comparing SAP GRC 5.3 Access Control for GRC 10.1 implementation primarily responsible for requirement gathering, design and implementation in SAP Role Design, Creation, Modification in SAP GRC and SAP systems (ECC, BI, CRM, and SRM). Understanding the business requirements and functional specifications of the client. Prepare High level design documents, Detail design Documents, Design specification and time estimation. Baseline configuration of GRC
• 10.1 (ARA, ARM, and EAM). Design technical landscapes and configuration of workflows in SAP GRC. Perform Risk Analysis user level and role level in SAP GRC 10.1. Create Business owner, Risk Owner, and Mitigation Owner to manage access risk. Manage Access Risk, Provision and Manage Users, Design and Manage Roles, and Centralized Emergency
• Handling SAP Security authorizations. Expert in performing User administration, role development using Profile Generator (PFCG) .
• Worked on creating Tile configuration for ESS and MSS users in Catalog
• Activating the Odata Services and creating the roles with selecting the Fiori Templates.
• Configuring Roles with Launchpad Start Authorizations.
• Assigning the Groups for Fiori Users through LDAP.
• Configured the Parameters for USERS Setting only in Fiori System.
• Providing solutions to Break Fix authorization issues in all SAP environments.
• Proposing best security strategy aligned with SAP Best Practices and the business process requirements.
• Excellent problem-solving skills, team player with Great communication and interpersonal skills.
• Designing and maintaining Security in ECC, PI, SRM, HR, Portal & BI
• Worked on SAP Check Indicator Defaults and Field values
• Worked extensively with the area of Authorization checks using transaction SU24 and maintained check indicators for Transaction codes.
• Performed SU25 activities after SAP Upgrade
• Managing assignment of mitigating controls for specific Segregation of Duties (SOD)violations
• Proposing and executing the possible enhancements to systems via CR’s
• Security Requirements Collection, Re-design of Roles, Administration of Roles, Testing of Roles
• Expert in Automated scripts to update Org levels.
• Periodic reviewing of assignment of Business roles to IT users
• Part of internal Audit controls team in periodic reviewing of security controls
• Acting as a liaison between internal and external auditors for smooth auditing
• Preparing and Ensuring checklists for the Quality procedures
• Participating in periodical business meeting.
• Running PFUD for updating User Master Records on daily basis in all Systems
• Review and analyze SOX/GRC and SOD reports and act accordingly

Confidential

SAP Modules: SAP ECC, BI/BW, CRM, APO

SAP Versions: SAP ECC Net Weaver 7.0

SAP Security and Authorization, Team Lead

Responsibilities:

• Managing & Mentoring team of 4 Security and Authorization consultants
• Creating new roles and modifying existing roles based on new requirements
• Analyzing Security notes and Early watch reports
• Receiving Handover from projects
• Approving FFID’s and analyzing usage of transactions used
• Suggesting process changes for better customer experience
• Creating corrective changes and make sure it is closed.
• Performing B & C Password Reset activity Bi-Annually.
• Transfer & termination of users Review.
• Operational Monitoring SOD Checks Offline risk analysis using GRC5.3for not connected system.
• Quarterly controls of ICS365, 366, 372,378
• Creation of work instructions
• Handling the cross-sector issues on one way of working
• Preparation and verification of TOD and TOE document

Confidential

SAP Modules: SAP ECC, BI/BW, CRM, APO & GRC

SAP Versions: SAP ECC Net Weaver 7.0

SAP Security and Authorization, Team Lead

Responsibilities:

• Monitored Security parameter settings and standard SAP users
• Worked on updating the missing attributes in user master records
• Analysis of self-role assignment and preparation of RCA document to determine the impact of the assignment.
• Analyzing the various samples of user creation, profile assignment, other user changes and password changes
• Checked the FFID validity, FFID review request and provided process improvement plans to reduce the count of FFID’s.
• Ensured timely password change for B&C users in SAP kernels
• Worked on termination and transferred users.
• Analyzed the quality of roles
• Monitored various SAP standard profiles assigned to the users
• Worked on non-allowed and limited allowed critical access assigned to users.
• Monitored IT SOD reports from GRC RAR and took corrective actions
• Reviewed System opening and documented the details in the SharePoint
• Co-ordinated with external audit teams like KPMG, CSU to ensure that audits were closed on a timely basis.
• Conducted ICS awareness sessions to the project team-members.
• Handled the team of 6 members to reduce the usage of FFID’s.
• Completeness & Timeliness of deliverables
• Understanding and application of industry best practices & standards.
• Demonstrable client business impact. Prove ability to build and sustain client relationships.
• Played a vital role in cleaning up of business update access assigned to IT users to ensure SOD is being followed.

Confidential

SAP Modules: SAP ECC, CRM, BI, Secure info

SAP Versions: SAP ECC Net Weaver 7.0

SAP Security& Authorization, Consultant

Responsibilities:

• OSS ID maintenance, authorization assignments, connections IDES, XEM Active Directory (PRD & Non-PRD) EP group
• Assignments Contribution in the Project as a senior team member loading data from SECURE INFO to SAP (vice versa).
• Daily PD Profile Assignments to users and positions. Creating roles in SECUREINFO and importing into SAP systems.
• Create multiple workflows for automated approval process and configuration for approved, reject and escalated email notifications.
• Provided second and third line support for all SAP CRM and SAP BI roles and authorization
• Monitoring the tickets, Answering the helpdesk calls for resolving SAP Roles and authorization issues
• Providing the report for outstanding tickets and adhering to the support SLA for resolving tickets and also escalating issues if it is not resolved.
• Created BI Analysis authorization using RSECADMIN to restricted BI query according to the plant.
• Troubleshooting missing authorization using SU53 and run trace ST01 / RSECADMIN.
• Created mass user load using LSMW scripts.
• Setup and generate audit logs using SM19 and SM20 for Auditors.