PROFESSIONAL SUMMARY

• 9 years of experience in SAP R/3 security, GRC Implementation and administration.
• Implemented preventative, mitigating and compensation controls to ensure the appropriate level of protection and adherence to the goals of the overall SAP security strategy
• Strong proficiency in the GRC VIRSA suite Role Expert, Compliance Calibrator, Access Enforcer and Firefighter.
• Worked on VIRSA systems Sarbanes-Oxley SOX Compliance tools Access Control Suite
• Extensive expertise in the areas of ECC/R/3 Security, CRM Security, SRM/EBP security, BW/BI 7.0 security, APO Security, upgrade activities and compliance issues.
• Used compliance calibrator to identify the business risks and worked with audit and business with the remediation process to meet the Sarbanes-Oxley section SOX 404 compliance.
• Worked with Audit in creating mitigation control and worked custom control review reports.
• Created Firefighter IDs for each business process areas and assigned necessary roles and profiles to carry out Fire Fighter Tasks
• Extensive Knowledge in SAP Portal, UME.
• Developed security strategy as per SOX compliance
• Analyzed SOD conflicts and worked with developers in correction methods.
• Worked on authorization security using custom T codes
• Expertise in managing user groups and table security
• Used SAP Profile Generator to create, generate and assign authorization profiles
• Created and maintained users using SU01 and SU10
• Designed and Assigned Derived roles, Composite roles and Single Roles using Profile Generator PFCG for FI, SD, MM, PP, PM,APO,SCM,BI, CRM modules
• Expert in user administration, end user support, transporting roles and computer aided test tools CATT
• Performed integration and Implementation of SSO in Enterprise Portal with R/3 4.6C, 4.7 5.0 and ECC6.0 EHP6, CRM, BI7.0
• Maintain User administration and System administration for Portal systems UME .
• Worked on BW security
• Provided day to day security support and administration for all security modules
• Excellent problem solving, analytical, technical and trouble shooting skills, team player with good communication skills
• Designing/Implementing/upgrading/managing VIRSA, SAP GRC Access Control 10.0 and 10.1 Access Risk Analysis ARA , Emergency Access Management EAM , Access Request Management ARM and Business Role Management BRM
• Designing/Implementing/upgrading/managing SAP GRC Risk Management 10.0, 10.1 Risk Planning, Risk Identification, Risk Analysis, Risk Response, Key Risk Indicators KRIs , Risk Monitoring. Performed integration with SAP GRC Process Control

Work Experience

GRC

• Providing deep hands-on, while leading the team, to document, design, build, test, implement and deliver SAP security and GRC 10.1, using standard SAP security roles and authorization concepts, for the large global implementation of multiple SAP products
• Compared the Role based and ID based approaches for implementing GRC Firefighter and recommended the best approach
• Reviewed and analyzed the deficiencies in the existing security processes and recommended process improvements.
• Streamlined the User Access Request process by clearly defining the appropriate access for each functional team.
• Define User Roles and role Management Procedures Role Owners, etc.
• Did user analysis for all users and cleaned up users from SOD violation 60,000 users
• Helped and suggested client for identifying custom T-codes and programs which have SOD impact and how to remediate conflict for custom T-codes
• Worked with Internal Audit in designing mitigating controls and assigned users.
• Setup SOD weekly batch job's that for all parts of the business.
• Worked with Audit in providing SOD reports for SOX audit.
• Worked with BPO's and Senior Management on mitigation/remediation of SOD conflicts.
• Assign Firefighter ID's to owners and fire fighters.
• Design, write and implement security related standard procedures for the user administration, roles and profile generation
• Train User and Authorization Administrators Ongoing user admin support
• Established Naming convention and developed Support, Dev Production roles
• Role Analysis Object level security to build Production security roles
• Created a Functional Spec for Security Automation program for Business approval
• Identified Built Functional controls in each business process with the help of audit team
• Quarterly pulled audit reports for systems via Approva Bizrights

HR Security

• SAP security role design , end to end development for ESS and MSS
• SAP security role design and development for Employee Interactive system
• Enterprise compensation management role design and development
• HR Authorizations for PA , Time , Benefits and Payroll area
• HR role design for new user provisioning IDM
• Developed HR custom authorizations when needed
• Knowledge on Structural authorizations

Major and minor release Projects

• Defined complete security process
• Requirement gathering
• Educating Security access governance team on requirements
• Submitting requirements to SAG for Risk Analysis before SAP security changes or Developments in SAP
• Helping SAG in identifying risk analysis
• Remediating or Mitigating risks identified
• SAP security developments in SAP systems
• Weekly updates from IDM , SAG and SAP security development teams
• cutover planning lead for multiple SAP systems
• User provisioning for Business Go-live through IDM
• Projects
• ECC Ware house management, Inventory control, OTM, PM, Finance, Read soft Invoice management
• CRM Trade promotion management, Survey, Coupon Portal
• SRM SRM Shopping cart, Bidding, Sourcing Cockpit, Invoice management, SRM 5- 7.0 upgrade,
• HR ESS and MSS role design, Employee Interactive system, Compensation, HR system build for CONA
• SNC Freestyle VMS
• BI- BI role re-design for IDM migration
• APO-DOIP Demand Planning
• Portal- HR ESS and MSS, SRM IMS and Shopping

Production Support Lead

• Knowledge transfer to offshore team
• Provided information to auditors when required
• Created AD-hoc reports in SAP for auditors when required
• Onsite contact for any emergency production issues
• Define Production support process
• SAPSUP IDS process for SAP
• Manage off shore team
• Submit weekly SLA status reports to client
• Create user groups for non-dialog users
• Trouble shoot production issued though SU53 and ST01
• Helping client for any development work when needed

SAP security consultant

Confidential

• SAP Security role design project according to SOX
• Designed deliverables and proposals that addressed client's business requirements
• Engaged for CRM and HR module to re-design the technical Roles for BASIS/Security/ABAP teams and also involved in collection of base data to design structural authorization for HR Module as a part of first phase of this project
• Designed a dynamic methodology to re-design the roles without interrupting the legacy environment till GO-LIVE of this project .Design includes configuration of SAP Security system to help both business/technical customer requirements
• As per the methodology scheduled regular meetings with SAP Technical Users/Administrators about the current issues with AS-IS roles and getting the future requirements for TO-BE roles.
• Production Support tasks as User creation/termination/modification, pulled the Daily/Weekly/Monthly reports for SOX audit purpose and reviewed virsa violation using VRAT/VFAT tools on part time basis about 3 months without interrupting main tasks.
• Documented each and every process throughout the project of SAP Security/Technical and Audit reports.

SAP Security and ABAP consultant

Confidential

• ABAP Production support in SD and LE
• Code development, code review and performance enhancement activities
• Developed various reports in SD, MM and FI
• Extensive experience in ABAP dictionary, module pool programming, BDC, report programming, performance tuning, ALV grid, SAP query, ABAP Objects, RFC, BAPI, IDOCs, user Exits
• Management of user and authorization.
• New user group creation and new role group creation using PFCG.
• Analyzing SU53 screen shots.
• Assignment of Authorization Objects to Transactions using SU24.
• New custom authorization objects creation.
• Authorization group creation for securing critical tables and custom transactions/programs
• Trained team members on security, documenting the new security processes.
• Create SCAT scripts to make mass changes in the system
• Review critical and sensitive authorizations, implement improvements to meet audit requirements
• Experienced in coordination with Audit team for SAP Security Audit and generated Audit Information Systems logs as per Audit team requirement
• Creation of profiles, users, granting authorizations, monitoring batch jobs
• Set up of central user administration CUA in multi-system environment.
• Educated client personnel in R/3 Security and general basis knowledge