SUMMARY

• SAP Certified Solution architect with over 17 years of SAP professional experience, which includes 3 years of SAP GRC Security Architect role, 2 years of SAP GRC Managing consultant role, 3 years of SAP project experience in security/technical PMO role, over 5 years of SAP Security Lead - IT Risk Management role and 4 years of Senior SAP Security Consultant.
• Experienced and excellent understanding of Enterprise Resource Planning (ERP) systems Development and Project Life Cycles in S/4 HANA, SAP ECC 6.0, ECC 5.0, R/3 4.x, EP 7.0, EP 6.0, SCM 7, SRM 7, BI 7.0, B.W 3.5, and BO 4.1
• Experienced and expert knowledge of GRC 12.0 Access Control, Process Control & Risk Management, GRC 1.2 Audit Management and GRC 10.1 AC Implementation
• As an experienced security administrator designed security policies and procedures, user authorization, creating and adjusting roles including composite and derived roles, making them SOX Compliant and maintaining CUA landscape
• Good understanding and experienced in user management and security management in Enterprise Portal (EP) UME, SRM, BI, BOBJ, BPC, Fiori, ISU, SAP HANA and cloud solutions such as Success Factors, C4C and C4M hybris solutions.
• Experienced in leading the requirements gathering workshops, documentation and conducting training
• Developed security policies and procedures, created templates and forms, created, and maintained roles using Profile generator, Testing and Transporting roles, Reconciliation of Roles and User Master Record, involved in user acceptance, involved with security related issues during integration testing, sign off on roles etc.
• Highly detail and process oriented along with good documentation and project planning skills.
• Skilled in designing and implementing security for various SAP products and 3rd Party Software and contributed to improvements in overall design and implementation of new applications
• Good understanding of the productivity management techniques, Strong Communication, Co-ordination, facilitation, and liaison skills. Combined with strong technical and security knowledge is excellent in problem solving and analytical skills
• Maintained good relationship with client highly motivated and works well in teams
• Excellent communication, documentation, analytical and problem-solving skills
• Global SAP projects experience in USA and KSA

TECHNICAL SKILLS

SAP Products: SAP S/4 HANA, ECC 6.0 / 5.0, SAP R/3 Enterprise release 4.7, 4.6C, SRM 7.02, Enterprise Portal 7.0, 6.0. Solution Manager, Process Integration PI7.0, Fiori, C4C, C4S, C4M, CPI, Data Services 4.0, 3.0, SAP GTS 3.0, CRM 4.0, SRM 7.02, SCM 7 Ehp3, BW 7.5, BI 7.0, BW 3.5, B.O 4.1, BPC 7.5, BPC 10.1, HANA SPS8, SPS10, SPS12

GRC Tools: SAP GRC 12.0, 10.1 Access Control, Process Control, Risk Management, SAP GRC Audit Management 1.2 GRC Access Enforcer, VIRSA Compliance Calibrator, Firefighter, Approva Biz Rights

Tools: & Applications: Winshuttle, U Perform, MS Project, MS Excel, MS Office, MS Word, MS Power Point, MS Visio, MS Outlook, Bex Analyzer, Bex Browser, Crystal Reports, Business Objects, Test Director, Load Runner

PROFESSIONAL EXPERIENCE

Confidential

SAP GRC Security Architect Consultant

Environment: SAP S/4 HANA, BW 7.5, Fiori, GRC 12.0 AC, PC, RM, GRC AuM 1.2

Responsibilities:

• Lead the initiative and worked closely with Business & Technical team for implementing GRC 12.0 Process Control, Risk Management, upgrade Access Control from 10.1 to 12.0 & rollout of SAP Audit Management on SAP HANA
• Conduct stakeholder interviews and aligned scope with enterprise risk management strategy and assess structured risk management framework
• Facilitated workshops focusing on risk and control identification, assessment, monitoring and reporting on enterprise risks across organization
• Created and maintained project deliverables such as project charter, communication plan, weekly status report and detailed project management plan to track progress.
• Worked with owners to perform testing, identify and establish possible ineffective controls and assisted the team in remediation process
• Advises business change management team of the target state architecture and its implications and impacts for stakeholders
• Designed and reviewed the technical, authorization strategy and procedures for the S/4 HANA, Fiori and supported the implementations adhering to best practices and standards
• Managed technical issues and worked towards successful resolution of the issues without impacting project timelines

Confidential, Irwindale, CA

SAP Security GRC Managing Consultant

Environment: SAP S/4 HANA IS-U, C4C, C4S, C4M, GRC 10.1, Fiori, HANA SPS 12

Responsibilities:

• Worked extensively with the business team and functional team to design securityarchitecturebased on Business Processes and identify risk and controls, SOD required for the complete solution.
• Gathered detailed requirements for HANA reporting implementation. Designed and implemented security for SAP HANAbased onvarious privilegesfor Hana reporting.
• Closely worked with thedevelopment team and functional team and educated them in understanding security concepts. Reviewed Technical Spec. andFunctionalSpec. to ensure detailed security and controls requirementsare capturedin Business Process Design Documents.
• Designed and developed security design andimplemented security for Cloud applications like C4C, C4M and C4S utilizing CPI for on-Prem integration.
• Developed and documented multiple documents, including SAP Security strategy document, SAP Security policy and standard operating procedures according to company standards.
• Worked with the internal audit and controls team to design, implement and test of business process and IT Controls for the newly identified Business Process using automated and manual controls in SAP GRC Process Control.

Confidential - Hartford, CT

SAP Security GRC Managing Consultant

Environment: SAP S/4 HANA IS-U, CRM 7.0, GRC 10.1, B/W 7.02, SAP BOBJ, FioriSuccess Factors, Portal 6.0, HANA SPS 12

Responsibilities:

• Worked extensively with the business team and functional team to design securityarchitecturebased on Business Processes. Lead the offshore SAP securityconsultantin implementinga common securitymethodologyacross completeSAP landscape.
• Gathered detailed requirements for HANA implementation, designed and implemented security for SAP HANAbased onvarious privilegesfor Hana live reporting.
• Closely worked with thedevelopment team and functional team and educated them in understanding security concepts. Reviewed Technical Spec. andFunctionalSpec. to ensure detailed security requirementsare capturedin design approach.
• Worked with the Basis team to designandconfigureCentral User Administration and SingleSign-Onfor entire SAP landscape.
• Lead the development effort to design and implement securitystructurefor Business Objects application and provided administrative support from within Central Management Console.
• Developed and documented multiple documents, including SAP Security strategy document, SAP Security policy and standard operating procedures according to company standards.
• Worked with the project team to create specific consultant roles in various applications as per best practices and SAP standards,troubleshootand documented security issues,gaps,and resolutions.

Confidential

Sr. SAP Security GRC Technical PMO Principal Consultant

Environment: ECC 6.0, GRC 10.1, B/W 7.02, SAP BOBJ SPM, BPC 7.5, BPC 10.1, SRM 7.02SCM 7 EHP3, IS-U, PI 7.02, Solution Manager 7.1, Portal 6.0.

Responsibilities:

• Worked extensively with the Business & Vendor’s team to gather requirements, design and implemented solutions for 12 major full life cycle implementations.
• Successfully planned and executed technical project related activities including Project management within solution manager, transport management and authorization activities.
• Experience with complex project circumstances including multiple vendors, multiple projects and multiple landscapes.
• Implemented GRC 10.1 Access Control Successfully rolled out Access Request Management, Business Role Management, Access Risk Analysis and Emergency Access Management for ECC application.
• Performed Segregation of Duties (SOD) analysis in all modules and provided consultation and recommended remediation to audit team, business stakeholders and security team to make them SOX compliant.
• Gathered the requirements for master data organizational structure, customizations, designed and developed custom built rule set and mitigation controls as per business requirements.
• Designed and implemented authorization strategy, refresh strategy, established retrofitting process and Change Control Process to successfully manage dual landscape for all environments for smoother transport management and supported transport conflicts and issue resolution across all areas
• Responsible for all SAP security tasks, role design, periodic SOD - user access review, securing custom enhancements, testing and troubleshoot and resolve day to day GRC related issues.
• Provided Go-live support, production support and end user support, using ticketing on Solution Manager. Supported HR based security attached roles Positions in the Org structure and CUA

Confidential, IL

SAP Security Lead, IT Risk Management

Environment: ECC 6.0, SAP B/W 3.5, 7.0, CRM 3.0, PI 7.0, DS 3.0, 4.0, Portal 6.0Solution Manager 7.1.

Responsibilities:

• Worked extensively with the Business & Functional Team to gather requirements and design security implementation for various projects like SAP WM Implementation, HR Standardization, ESS/MSS Implementation, New Distribution Center Setups, Legal Entity Rationalization - Company Code splits
• Designed and Implemented HR security on Organizational Structure to enable ECC & BW access to Retail Store Managers and encompass SAP WFD for Scheduling and Forecasting
• Designed model- based security for SAP Business Intelligence BI7.0, Upgraded security from 3.5 to 7.0, did conversion from reporting authorizations to analysis authorizations
• Handled security for 3rd Party Products like Warehouse Control System (WCS), Shortcuts Application - Enterprise Live and Enterprise Manager
• Performed daily security checks, checking the nightly background jobs, monitoring unsuccessful Log-ons, monitoring inactive users and locking inactive users in production system
• Implemented security in all sub modules of FI, HR, WM, MM and SD
• Performed cleanup of existing roles, reviewed custom development and as per business requirements and audit findings. Used Risk Analysis and what if analysis of CC to analyze existing roles and users in the system for SOD and critical access violations
• Closely worked with auditors, to implement SOD. Based on analysis of auditors, modified the roles to make it SOX Compliance. Removed Critical Access from end user roles which were violating SOD
• Extensively used various Virsa tools like Virsa Compliance Calibrator, Virsa Access Enforcer and the Virsa Fire Fighter tool
• Performed various daily, weekly, monthly and yearly audits. Managed licensing for SAP, BW
• Provided production support, solved day-to-day user problems and troubleshooting and end user support, using Ticketing on Remedy tool
• Created Winshuttle scripts for mass user maintenance, client refresh, role reaffirms and terminations

Confidential, CA

SAP HR Security Consultant

Environment: SAP E.C.C 5.0.

Responsibilities:

• Implementing Security for new HR implementation. HR Security for OM, CM, PA, and benefits were implemented
• Worked closely with the HR Functional Team members to collect role requirements and to translate their requirements into security roles based on Job function and made the roles SOX Compliant by using CC of Virsa during the Development Phase
• Developed Roles Vs Tcodes Matrix and Roles Vs Info Objects Matrix for job roles of HR
• Extensively worked on Profile Generator in creating single, composite and derived roles
• Created and modified HR Security Roles based on Personnel Area/ Sub Area, Cost centers and company code
• Involved in all aspects of SAP Security Design from setting up naming conventions for security roles, profiles, custom objects, and Test ID’s
• Created process and design documents with detail information of all security developments for future reference

Confidential - Rockwell Collins, IA

Sr. SAP Security Administrator Consultant

Environment: SAP B/W 3.1 & 3.5, SAP R/3 4.7.

Responsibilities:

• Assisted the client for an international SAP implementation and was also involved in two other full life cycle implementations
• Involved in Security Role Administration which included design, architecture of roles, user to role mapping for R3 and BW
• Performed User Master Record maintenance - Created Users, Locking/Unlocking Mass Users, deleted users, renaming users etc. as per the requirements. Created Scripts for various activities such as creating mass users, deleting mass users, renaming users, assigning roles to the users, etc.
• Supported System Integration Test and User Acceptance Test and troubleshoot authorizations using security tools like System Trace ST01, SU53 and User Information System SUIM
• Created and modified the existing role making them SOX compliant. Removed unnecessary and additional access from the existing roles, based on Audit Reports and using the VIRSA Compliance Calibrator SOX Tool
• Worked with Business Process Owners of FI, HR, MM and BW to translate their requirements into security roles based on Job functions and made them SOX compliant by using CC of Virsa during development
• Created process and design documents with detail information of all security developments for future references

Confidential, CA

SAP Security Consultant

Environment: SAP R/3 4.7 Ext. Set 1.10, SAP GTS 3.0, SAP BW 3.1.

Responsibilities:

• Designed, developed, and implemented security for a new implementation. In Design phase performed evaluation and recommendation of SAP menu vs. user menus. Determination of necessary authorizations to match business requirements for all modules
• Extensively interacted with the functional teams in the process of creation of Role Matrices for modules such as SD, MM, FI, GL, AP, AR, PS, AM etc. and created various other matrices and forms to keep track of creation and changing of roles
• Based on Security goals and structure, designed and implemented BW Security based on Info Cube and Workbook Level and involved BW lead and Business experts and implemented mixed approach of Query Name and Workbook naming convention with company standards
• Created custom authorization fields and authorization objects/classes and worked on authorization check maintenance
• Performed transports and mass transports of roles and other customization
• Established security testing procedures and tools. Supported System Integration Test and User Acceptance Test and troubleshoot Authorizations using system traces, and dumps
• Did knowledge transfer to the client’s employees and was involved in training in security administrators
• Monitor SAP application access and security violations, Identified SAP transactions, establish policies and procedures, and perform SOX documentation and testing
• Used SOX tool like Approva Biz Rights, to create new roles based on SOX