We provide IT Staff Augmentation Services!

Specialist Sap Security Resume

OBJECTIVE:

Looking forward for challenging and rewarding position as SAP GRC Security Consultant with state - of-art technology where my analytical, trouble shooting skills, experience in technical knowledge can be put in for the successful execution of the projects in both implementation as well as the production support and be a part of the team that excels in work towards the growth of the organization and gives the satisfaction thereof.

PROFESSIONAL SUMMARY:

  • 15+ years of SAP Security& GRC experience. My main area of experience has been in the domain of SAP Security, GRC AC(ARA,ARM,EAM), GRC PC, GRC IAG-Ariba, SAP audit and SAP project management.
  • 6 plus SAP Implementations, Go-Live, hyper care and production support experience
  • Managing SAP Security in HR Position based, MFG, PL,PM, MM, QM, HR, FI, BI, SCM, Portal, Solution Manager, EM,TM,SRM,Ariba, PO,CRM, and GRC - AC,PC, SAP mobile solutions (Fiori),HANA, Lumira and BOBJ.
  • Currently working in projects and production support
  • Leading SAP GRC Security projects and team
  • Have worked in various industry verticals like Healthcare, Retail, Manufacturing, high tech, Oil&Gas,Transport industry
  • Self - motivated, highly organized and dedicated with a positive attitude.
  • Expertise in maintaining, supporting and troubleshooting in the production environment.
  • Passed SAP Security Certifications
  • SAP Certified Technology Professional - SAP System Security Architect
  • GRC - SAP Certified Application Associate - SAP BusinessObjects Access Control 10.0
  • SAP Certified Technology Associate - SAP Authorization and Auditing for NetWeaver 7.31
  • Completed SAP Security internal trainings organized
  • Completed self-learning GRC material
  • Completed compliance and audit training
  • Completed ITIL course.
  • Strong analytical and problem solving skills
  • Ability to adapt to fast changing technical environments and upgrade and integrate to latest development
  • A highly creative, energetic, and growth oriented software professional with excellent communication skills
  • Ability to work as Lead SAP Security Specialist. Experience includes ECC, GRC release 12,10.1, and 5.2,SOX Virsa Tools,, BI/BW, Ariba, SCM,APO 4.10/5.0,Enterprise Portal, CRM, BOBJ,BPC integration, Transportation management(TM), Event management(EM),Process Integration(PI) PO,PI,XI, Solution manager
  • Ability to work in GRC 12, 10.1 and 5.2 (EAM, ARA and ARM) and worked GRC 10.1 AC,PC to GRC 12 - AC,PC upgrade projects.
  • Worked on Cross SOD rule set for ECC-TM system in GRC 12. Built Functions, Risks and validated through GRC ARM, ARA, and Mitigation control assignment.
  • Ability to work in change request for different landscapes in SolMan Security.
  • Ability to work on various SAP upgrade projects including ECC, TM, EM, CRM, SRM, Portal, Netweaver gateway
  • Assisting various SAP SOX audits reports and remediation in SOX systems ECC, GRC, TM, EM, for Deloitte, PWC, EY requests.
  • Experience in business process study &analysis, requirement gathering & analysis, gap analysis, gap identification &Gap resolve.
  • Experienced in preparation of Business blue print with Business scenario documents and Business process documents and design and development and change requests
  • User master position assignment through SAP HCM
  • Webdynpro security access in EM and TM systems
  • Cutover access to project team
  • Providing SAP Hana/Lumira support through SAP HANA Live Authorization Assitant
  • Portal access and AD group
  • BOBJ security.
  • Worked on BMC Remedy, HP Service Manager, Solman, IBM ticketing tool
  • Worked on HANA security for ECC,BW,TM,EM,FSPER HANA,CRM,GRC, HANA audit for SYSTEM user.
  • Worked on GRC-ARM,ARA(SOD),EAM, UAR and GRC-PC FOR disclosure surveys.
  • Adding/changing/deactivation for user/mass users through SAP HR
  • User deactivation
  • Firecall request
  • Portal groups and assignment
  • AD groups (contract management, vendor groups,etc)
  • Preparing various SOX audit reports
  • User access request
  • Firefighter log reports
  • Running SOD analysis
  • SOX custom tcodes, SOX remediation to finance team
  • Preparing Audit reports to internal auditors
  • Preparing Audit reports to external auditors (Price water house coopers, EY, and Deloitte)
  • Created SOP/WI/Job aid/Process improvement documents
  • Change management requests
  • SOD conflicts analysis by eSOD tool and mitigation approval from business.
  • Solving tickets through Solution Manager.
  • Attaching & detaching CUA,SCUL management
  • Creating RFC and logical systems.
  • ARM, ARA, EAM, UAR, GRC-PC disclosure surveys.
  • SOD Analysis
  • EAM/Firefighter access
  • Rule set Configuration
  • User provisioning through ARM,ARA
  • Creating GRC request
  • Approving GRC and mitigate in ECC,TM,BW, GRC Satellite systems.
  • Position matrix mapping through leading and trailing role in GRC.
  • Working on GRC - Identify access governance (IAG) project in hybrid cloud environment to connect Ariba for user provision using ARM, ARA.
  • Once security role is moved to prod, importing in GRC and mapping to satellite systems and setting role owner for automated user position ARM.
  • Mass password reset
  • Mass business partner creation and assignment
  • LDAP group management with SAP
  • Citrix management with SAP
  • SOD Analysis in virsa compliance tool
  • Maintaining OSS ID and providing ABAP developer key
  • Restricting transport of copies(TOC),creating/releasing transport access
  • Solution Manager (CHARM access)
  • Interacting with QA for all validation requirements
  • Security Knowledge in ECC,R3, BW, SCM APO,XI,CRM, Portal, Solution manager
  • Security access request in BMC tool.

SAP PROJECT EXPERIENCE;

Confidential

Specialist SAP Security

Responsibilities:

  • Various SAP system security includes ECC-HCM,MM,FI,PP, BW, TM, EM, CRM, Yard Logistics< Netweaver gateway, PO, SRM, Ariba and Solman security.
  • HCM position based security through P ORGINCON and P PERNR and Fiori security through tiles, groups in Tier 1,2,3,4 security roles.
  • Managing 10+ production system and 90+ non-prod systems and maintain over 14k+ users in different systems and helping cutover activities.
  • HANA Security
  • Supporting 100 ABAP and HANA system.
  • Assisting HCM yearend HRSP upgrade and various SAP systems cutover.
  • ECC,BW position change to user community through SAP HCM
  • Webdynpro security access in event management(EM) and transportation management (TM) systems
  • PI, CRM, portal, AD group security design and built for projects and sustainment
  • Meeting with project team for high level functional requirements and implementation
  • Implementation, cutover, go-live, hyper care and sustainment support
  • Audit assessment for user, role access and take appropriate action
  • Mentor junior team member.
  • Handling all complex and highly escalated issue
  • Lead for projects and sustainment work
  • Representing security changes in CAB meetings
  • Defects handling in HP ALM
  • GRC Firefighter access, SOD analysis in GRC 12, 10.1
  • Implementing innovative ideas to reduce the cost and secure the system
  • Supporting 16000+ production users and 100+ SAP systems
  • ISIM integration with SAP for user deactivation for 80 SAP, HANA systems.

Confidential

Lead SAP Security Consultant

Responsibilities:

  • BW Upgrade from 3.0 to BI 7.3
  • Production support in ECC,SAP HR, BWP, Solution Manager, Portal and Virsa Compliance Calibrator
  • Meeting with client for high level functional requirements
  • Role designing through Change Request
  • Change management weekly meeting
  • Handling security request in BMC remedy tool
  • Security design for Solution Manager EWA alert
  • Fixing BW errors in portal environment
  • RolebBackup and sync
  • Technical upgrade of BW3.0 to 7.3 in SU25,SEC MIGRATION
  • Running Virsa compliance calibrator for SOD/ mitigation
  • Responsible for security weekly transport
  • Approving IT change request for business
  • Managing internal and external audit reports
  • User access request
  • HR termination
  • Inactive users clean up
  • Monthly, quarterly, yearly audit review

Confidential, Fortwashington, Pennsylvania

Lead SAP Security Consultant

Responsibilities:

  • Ability to indentify critical GXP and non GXP tcodes in roles and position for remediation.
  • User access request for add/change and deactivate
  • 80 days user lock deactivation
  • JJEDS/HR termination deactivation
  • Providing Firecall access and attaching the logs and deactivate it.
  • Providing NEMO users lists to QA
  • Firefighter access to users
  • Firefighter table backup before system refresh
  • Providing MB1B audit quarterly reports with different movement types to QA
  • SOX quarterly reports:
  • Providing transport log
  • User access request
  • Users with SM36 access
  • Tests for password encryption, length complexity test, and password reuse, lockout, timeout test
  • User access list with SE38,SA38 and SE80
  • Deactivation testing
  • Firefighter log reports to Finance team
  • Monitoring Firefighter job and time dependency job.
  • User logs for single and multiple transactions
  • User deactivation testing to Finance team
  • Assigning users for RF devices.
  • SOP/WI/Job aid/Process improvements:
  • Created SOP, WI, Job aid for user access maintenance, Firefighter and firecall
  • Providing process improvements:
  • For example, cleaning users, Clearing SCUL and Firefighter table backup
  • Streamline positions matrix for R/3,APO and BW systems
  • Maintaining SAP intranet site by up keeping UAR forms, UAR page2 positions and other changes.
  • SOX Custom tcodes reports to finance team
  • SOX remediation to users access missing pertaining to positions
  • System trace to analyze missing security objects
  • Change Request for R/3,APO and BW systems:
  • Adding tcodes, roles to positions in R3,APO,BW systems.
  • Fixing authorization objects to roles
  • Streamline user access as per audit report
  • Performing Negative unit test, integration test, transport creation and release
  • Changing the positions in production as per CMR once transports moved to production
  • Interacting with functional team, QA for approval process
  • Creating and closing CRs.
  • Creating business partner and ICH assignment in APO/SCM systems.
  • Providing Audit reports to internal auditor.
  • Providing Audit reports to Price Water house cooper(PWC)-external auditor
  • Client-Open/close reports
  • Transports tables
  • Providing critical objects (S CTS ADMI,S TRASPRT),STMS users’ access list
  • Providing critical table dumps (AGR AGRS,AGR PROF,AGR TEXT,etc)
  • Attending weekly SAP core team meeting, SOX meeting and audit meeting.
  • Monitoring requests in Solution Manager/ McNeil SAP Security inbox.
  • Providing production support to incidents including CR(CMR), users access, firefighter, SOX remediation,etc.
  • Working closely with auditors.
  • Worked in HPQC for security scripts.
  • Go-Live support for 2500+ users and 4000+ production support users.

Confidential, Atlanta

SAP Security Consultant

Responsibilities:

  • Attaching & Detaching CUA (SCUA)
  • Clearing SCUL
  • Creating RFC connection, Logical systems(SM59,BD87)
  • Handling Defects (Development,Quality,Production)(SE01) (Temp access to users)
  • Single,Composite,Derived role authorization(PFCG)
  • Maintaining authorization object(adding Manual Objects), Org level to Roles
  • Mass user maintenance(SU10)
  • Password reset in CUA(SU01)
  • LDAP group management for R/3,BW,FI purchasing, CRM
  • (FI SAP,FI WEB REPORTING,BW CORP, CRM CORP USER,FI WEBREPORTING)
  • Citrix management for R/3 (UG SAP GUI PROD/DEVQ,BEX)
  • SOD Analysis using Virsa Compliance tool(/n/virsa/zvrat)
  • Simulation, SOD Conflicts, Manager approval in SAFE
  • Working in SAFE database to give authorization for Production users(New, Job change, inssuffient permission)
  • Maintaining OSS logon id in SAP Secure area
  • OSS id user administration,OSS connection in SAP Service market place
  • Registering Developer key for ABAP Developers
  • Assigning Authorization Objects to required users using SU53 screenshot
  • Resolving vantive tickets for production access(Authorization Security Issue)
  • Restricting TOC,Creating/Release Transport access
  • (SE01,S TRANSPORT DTRA,CUST,TRAN 01,43)
  • Creating Transports requests to move the role into production(SE01)
  • Security in R/3,BW,CRM,Portal Security(J2ee admin,
  • XI Security(SXB MONI)
  • Creating node in RESECADMIN in DJA GTS (BI Authorization) for ECC 6.0
  • Creating PreCalc Roles for BW Cost centre(PFCG)
  • Creating Cost Center in BW(RSSM, ORG.LEVEL IN PFCG, TRANSPORT(CUSTOMIZING,WORKBENCH),FINALLY TRANSPORT TO PRODUCTION) for R/3 4.7
  • Creating Fireids within 15 minutes for production access as per SLA
  • Coordinating with Auditor for SOX compliance
  • Solution Manager (ChaRM access)
  • SAP Solution Manager’s change request management (ChaRM) capabilities to monitor the changes that occur during implementation, upgrade, maintenance, and compliance projects
  • Monitoring SAP Security inbox
  • Supporting 100000+ production users

Confidential, Boston

Executive - Customer Support

Responsibilities:

  • Conducted Legato Networker 7.3 SAP Modules Pre-GA training in Confidential Southboro,Boston
  • Installed and Configured Legato RepliStor in MGA Systems,NY,US
  • Dell|EMC2 CX300 DAS Implementation
  • Installed Navisphere Agent and Navi CLI in Clark Realty, MD, US.
  • Dell|EMC2 CX300 DAS Implementation in Kirkpattrick & Lockhart,NY,US
  • Dell|EMC2 CX500 Upgrade Array Software in VAMC,NY,US

Confidential

System Administrator

Responsibilities:

  • Disabling the power-management feature in Solaris
  • Software package Administration
  • Installing and uninstalling software using Solaris product registry
  • Installing and removing patches
  • Managing user Accounts
  • Using format utility to create slices
  • Creating file system
  • Repairing File system
  • Using volume manager for mounting CDROM
  • Monitoring users and super user access
  • File access
  • Restricting root access, FTP access
  • Checking users with blank passwords
  • Checking who is logged in
  • User information using last command
  • Copying files through FTP
  • Displaying active process information
  • Using signals to terminate process
  • Recovering the root or /usr file system
  • Obtain network information
  • Displaying information about devices
  • Solstice disk suite
  • Setting up cached file system
  • Setting up NIS master server, NIS client
  • Creating user using Role-Based Access (RBAC)
  • Creating jumpstart servers
  • Installing windows 2000 server/professional
  • Promoting windows server as domain server
  • Configuring and promoting the clients to domain
  • Creating organizational units and setting up the user permissions
  • Creating users and assigning the home folder and setting up logon hours
  • Creating home folder and assigning the permissions
  • Installing the required software
  • Mapping the remote system’s drive for copying file
  • Installing ant virus software and updating latest patches from internet
  • Writing batch files for deleting temp files and user profiles
  • Installing pop mail software for email purpose
  • Worked as onsite coordinator for Successful transition and support of SAP system across all company locations
  • Prepared SAP Health Check Report
  • Working in productions Support environment, Support production configuration and assist in functional change requests.
  • Addressed any hurdles in knowledge transition through joint transition team
  • Handling Procurement and Inventory management related escalations
  • Handling Change requests and enhancements
  • Troubleshooting of the issues, which are related to Master Data, Purchase requisitions, RFQ, Quotation, Purchase Order, and Outline Agreements, Inventory Management and LIV.
  • Handling issues related to STO and in-bound delivery
  • Developed test plans and project documentation.

Hire Now