SUMMARY

SAP Security and GRC consultant with strong analytical, energetic and goals oriented professional with an entrepreneurial drive, experienced in financial and strategic planning, P L management, business valuation and corporate finance. Core skills include: SAP Security GRC, Financial modeling, forecasting and valuation, excellent presentation and communication skills, and ability to troubleshoot and solve problems.

professional Experience

BIODATA TECHNOLOGIES, Dallas, Texas

• SAP Security and GRC implementations, design, redesign, upgrade, production support Projects at: Cal Utilities, T-Mobile, ASUG, Ralph Lauren.
• SAP GRC Security experience encompassing a wide range of skill set, strong background in design, implementation/configuration of business process control to meet SOX compliance requirements.
• Extensive experience in SAP R/3 Security Administration 4.7b,ECC 5.0 AND 6.0 and worked on the security and controls implementation involving all major releases of SAP including ECC 5.0/6.0, GRC Release 4.0,5.0,5.2,5.3 and 10.0
• Strong hands-on experience on GRC 10.0 configuration.
• Worked with clients during pre and post implementation of SAP in identifying and designing control points and preparing working documents in readiness for external audit assessments.
• Work with business managers in changing SAP roles and ensuring appropriate work flow in GRC User Provisioning ARM .
• Reviewed critical and sensitive authorizations, implementing improvements to meet audit requirements, made suggestion for security policies and standard/best practices.
• Customize permission level SOD violations in roles for various business processes and functions.
• Recommended and created mitigation controls in SAP GRC 10.0.
• Configured Emergency Access Management EAM to capture firefighter audit logs and trigger alert to Firefighter Controller during usage of the Firefighter ID. Subsequent assignment of thefirefighter Id's to support users in order to resolve provisionally broad issue.
• Make use of Role Creation Role Change Request form in order create a new role or make changes to an existing role Change Request Board approvals mandatory for transports. Simulate the role using GRC before moving the changes to quality environment.
• Worked with the SAP Security team and business process owners to identity Fire fighter ID FFID controllers, administrators and Owners and mapped these in SAP GRC EAM10.0.
• Supported SAP GRC 5.3 tool for Access control involved Risk Analysis and Remediation, Fire-fighter, and Compliant User provisioning.
• Proficient in analyzing and translating business requirements to technical requirements in SAP.
• Experience with Archer Risk Management tools.
• Experience in coordinating within team and with other teams.
• Possesses great communication skills, interpersonal skills, self-motivated, quick learner and a great team player.
• Understanding of End Point security solutions.

Confidential

• SAP Security and GRC implementations, design, redesign, upgrade, production support Projects at: 3M, Goodyear tires, Walmart, Johnson Controls, Dealtrack Technologies, Hyundai, Chase, Coca-Cola Enterprises, Motorola.
• SAP Security and Compliance experience.
• Good understanding of Information Security practices and applying them to SAP systems.
• Experienced in working on Implementation, Go-Live, Post Go-Live, Production Support, Security Re-design, and segregation of duties SOD remediation projects.
• Collaborated extensively with SOX, Internal Audit, and External Audit teams for SAP systems compliance activities.
• Full life-cycle implementations: SAP ECC 5 , HR/HCM 5 , BI/BW 2 , BOBJ 3 , BPC 1 , CRM 2 , SRM 1 , APO 2 , GRC 5.1 / 5.3 2 .
• Upgrade projects: SAP ECC 1 , APO 1 , GRC 10.0 proof of concept .
• Implemented and supported SAP security and GRC solutions for Global / Large / Medium / Small companies.
• Robust background in architecting, requirements gathering, design, re-design, development, and maintenance for SAP applications security.
• Handled security workshops and acted as the focal point for SAP security and compliance actives.
• Interfaced extensively with clients to gain insight and develop solutions to meet customer business needs across the entire SAP landscape.
• Experienced in supporting complex SAP environments with large user base and SAP systems.
• Ability to manage multiple tasks and projects simultaneously.
• Experienced in adhering to the Change Management Processes for transporting roles, tables, security objects, GRC configuration, and maintaining the change documents.
• Extensive experience with resolving ticket issues and troubleshooting security authorization problems while adhering to Service Level Agreements SLA .
• Experienced in providing security authorizations and GRC training to the client personnel.
• SAP user and role single, composite, and derived maintenance.
• Central User Administration CUA configuration and maintenance.
• User maintenance utilizing LDAP/Active Directory and single sign-on SSO for SAP GUI
• Single Sign-On SSO from enterprise portal to backend systems using SAP logon tickets.
• Designed and developed Role Based and Position Based security models.
• Portal UME Administration.
• HR / HCM Structural Authorizations design and development.
• BI / BW Analysis Authorizations design and development.
• Handled security for various modules: FI, CO, MM, SD, WM, LE, PM, PP, HR / HCM, ESS, MSS, BI / BW, BOBJ, BPC, APO / SCM, SEM / BPS, CRM, SRM, EBP, Travel Management TV , Succession Planning, Performance Management, XI / PI, Enterprise Portal EP , Solution Manager.
• Understanding of SAP Identity Management IdM 7.1 / 7.2 and Non-SAP IDM solutions.
• Analyzing security reports in SAP.
• GRC upgrades support packages and versions experience.
• Experienced in working with business owners and auditors to coordinate development of mitigation reports.

Confidential

SAP Security Specialist

• Developed LSMW, ECATT, and CATT scripts for user and roles maintenance.
• Extensive user and role remediation support for Sarbanes-Oxley Act SOX - Section 404 using VIRSA / GRC Compliance Calibrator / Risk Analysis and Remediation / Access Risk Analysis, Fire Fighter / Superuser Privilege Management / Emergency Access Management, Access Enforcer / Compliant users Provisioning / Access Request Management tools.
• Broad experience in working with Auditors in keeping the SAP systems audit compliant.
• SAP security Technical Auditing and Remediation experience in highly demanding and complex environments.
• Manage day-to-day activities of the SAP Security group including the scoping and planning of security deliverables.
• Directs efforts in defining the overall architecture of the SAP security model, covering complex integration points between SAP and non-SAP areas.
• Provides technical solutions for business teams to design/implement SAP Security upgrade in areas of SAP ECC, BI/BW, SRM, CRM, CUA, and Portals supports SAP implementation for the post Go-live support and manages security for next phases of SAP deliveries.
• Re-designed user roles and classification according to system usage to improve maintenance.