SUMMARY

• Over 7 + years of experience as SAP Security Consultant in testing, support, monitor and implementation of business applications SAP R/3 4.6C, 4.7. ECC 5.0, 6.0, BW 3.5, BI 7.0 and Enterprise Portal 6.0. Involved in multiple lifecycle Implementations.
• Upgraded SAP R/3 4.6C to ECC 6.0 and BW 3.5 to BI 7.0.
• Extensively worked on Authorizations and troubleshoot authorizations.
• Offered a dynamic professional skill - set that includes standard Authorizations, HR Structural Authorizations and SOD/SOX (Sarbanes Oxley) considerations.
• Experienced in setting up SOD (Segregation of Duties) matrix and performed SOD analysis and risk.
• Worked on FI CO, MM, SD, PP, PM, HR, IM, WM, AP and AR projects.
• Worked on Central User Administration (CUA).
• Worked on BW/BI Authorizations and created consumer roles, analyst roles, developer roles, administration roles.
• Extensively worked on Authorizations, role built in SAP ECC 5.0/6.0, and SAP BI 7.0.
• Worked and maintained VIRSA Firefighter, GRC tools Access Enforcer, Role Expert and Compliance Calibrator.
• Worked on HR authorizations for Time Management.
• Used QTP, SECATT script for mass user maintenance, role maintenance.
• Excellent problem solving skills, Customer Service skills, team player with good communication skills.
• Worked on SAP Security inbox to resolve daily SAP Functional, developer issues and authorization defects.
• Worked on call tickets on Remedy tool, OVSD (HP) to support end users more than 20,000.
• Created and maintained roles and userids on more than 70 plus SAP instances.
• Experienced in implementing GRC 5.2 Access control suite including Access Enforcer, Compliance Calibrator, Firefighter and Role Expert to reduce security risks.

TECHNICAL SKILLS

SAP Skills: SAP R/3 4.6B, 4.6C, 4.7, SAP BW 3.1, 3.52, SAP BI 7.0, SAP EP 6.0, SAP CRM, SAP SRM,SAP SM, SAP HCM, SAP EP, SAP ECC 5.0, ECC 6.0, SAP Netweaver 2004, SAP Netweaver 2004s

Operating Systems: UNIX, Windows XP/2000/ 98 / 95, SUSE/ Linux 8.0, HP-UX.

Microsoft Office Tools: MS Office word, MS Office Excel.

Tools: ITG (Mercury IT Governance), Remedy, OVSD (HP) and QTP.

PROFESSIONAL EXPERIENCE

Confidential, Federal Way, WA

SAP Security Consultant/Administrator and Analyst

Responsibilities:

• Went through multiple integration and Production readiness testing cycle and GO-LIVE support.
• Worked on multiple projects in dual configuration mode.
• Created and maintained developer, support (testing, configuration) roles.
• Created transports and mass transports requests of roles.
• Upgraded 4.6C to ECC 6.0 and BW 3.5 to BI 7.0.
• Troubleshoot and resolved upgraded issues.
• Troubleshoot and fixed authorization issues.
• Created and maintained testids in Training, Development and QA instances through standard approval process.
• Used QTP (Quick test professional) to create script for mass user and role maintenance.
• Created developer keys, object keys, OSS IDS.
• Created and maintained Firefighter roles, FireFighter IDs, Owners and Controllers.
• Worked on GRC 5.2 tools (Access Enforcer 5.2, Role Expert 5.2, and Compliance Calibrator 5.2).
• Configured and maintained Access Enforcer 5.2.Created and maintained Access Enforcer connectors, workflows and other configuration tabs.
• Used Role Expert to create roles.
• Worked with internal auditor for SOX conflict.
• Worked on Compliance Calibrator 5.2.Upload static text, Upload authorization objects, Created rules using rule upload, Upload business process, functions, risks and rules.
• Created configuration entries, Setup mitigation process and scheduled background jobs.
• Worked with Functional team, ABAP Developers and business for roles creation and maintenance.
• Created portal roles and assigned portal roles to groups and users. Transport package.
• Worked oncall support.
• Worked on SAP Security inbox to resolve daily SAP functional and developer issues.
• Created and maintained authorization group.
• Worked on Security Inbox as administrator to complete users request and to resolve support user issues
• Worked on authorization issues/defects for projects and support in SAP R/3 and SAP BI.
• Worked on SAP BW 3.5 (Netweaver 2004) & BI 7 (Netweaver 2004s) authorization issues.
• Maintained reporting or analysis authorization object and analysis error logs in SAP BI.
• Checked for authorization relevant InfoObjects.
• Trace authorization error for Query in SAP BI.
• Worked as SAP Security Analyst. Did risk analysis or mitigation process through Compliance Calibrator.
• Worked with functional team, developer team and security administrators for SOD conflicts among HR, SD, IM, WM, MM, PP, FI-CO, AP, AR and PM roles.
• Minimized mitigation or risk through object level.
• Worked with internal auditors, internal control and business to reduce SOD conflicts in HR, SD, MM, IM, WM, FI-CO, AP, AR, PP, PM modules.
• Worked on HR authorizations. Created new roles TM roles (Time approval, time entry, payroll processor and EMDM roles).
• Role assignment via HR org structure.
• Maintained structural authorization profiles and user assignments.
• Used functions/reports for HR authorization checks.
• Updated Infotype to personnel number to connect User master data to HR master data.
• Maintained company security parameter standards.
• Worked on CUA.
• Maintained developer keys, object key and OSS ids.
• Worked on monthly Security Audit reports.

Environment: SAP R/3 4.6C/4.7, ECC 5.0, ECC 6.0, SAP BW 3.5, EP 6.0, BI 7, HP-UNIXNetweaver 2004s, MS Office word, MS Office Excel.

Confidential, Milwaukee, WI

SAP Security Consultant/Administrator and Analyst

Responsibilities:

• Went through implementation phase of SAP R/3 (4.6C, ECC 5.0, BW 3.5).
• Worked on multiple released projects.
• Maintained SOD/SOX (Sarbanes Oxley) consideration.
• Secured roles by constraints, authorization objects and their fields.
• Built and maintained single, composite roles of SD, MM, PM, HR, FI-CO, AP/AR modules and fixed authorization issues.
• Performed single and mass transport of roles
• Created and maintained mass users.
• Created and maintained authorization objects in SAP R/3 4.6C, ECC 5.0.
• Established security policies and procedures.
• Worked with business, functional team and Developer team to create new roles and fixed authorization issues.
• Worked on HCM, CRM 4.0, SM (built new roles and fixed authorization issues).
• Extensively used QTP (Quick test professional SAP), SECATT to create script for mass user and role maintenance.
• Used and Maintained VIRSA tools VIRSA Firefighter (/VIRSA/VFAT).
• Worked also as SAP Security Analyst to resolve SOD conflicts in HR, SD, MM, FI, CO, AP and AR modules.
• Worked with functional team, business and internal auditor or control to maintain SOD Matrix.
• Worked on CUA (Central User Administrator).
• Traced authorization error and fixed authorization issues in SAP 4.6C, ECC 5.0, BW 3.0/3.5.
• Worked and maintained authorization groups.
• Created and maintained SAP BW reporting authorization objects.
• Created reporting, developer, Analyst, Consumer roles in BW 3.5(Netweaver 2004), SAP 4.6C, ECC 5.0.
• Created roles for restricting access to queries, infoobjects, infocubes etc.
• Maintained system profile parameters to maintained business process.
• Worked on Structural Authorizations. Created and maintained structural authorization profiles.
• Role assignment via HR org structure.
• Maintained HR roles using PFCG.
• Created portal roles and transport package to QA & Production systems.
• Created developer keys, Object keys and OSS ids.
• Worked to prepare audit reports.
• Worked oncall support.
• Also used user information system, table view (data browser, ABAP dictionary) transactions to troubleshoot.
• Performed Mass HR, FI, MM, CO, SD, and BW roles transport requests.
• Setup and maintained printers. Scheduled and maintained background jobs.
• Maintained BW Security by restricting InfoArea, InfoCube, InfoObject, Hierarchy in BW.

Environment: SAP R/3 4.6B/4.6C/4.7,ECC 5.0, BW 3.0/3.5, SAP CRM 3.0/4.0, HP-UNIX, MS Office word, MS Office Excel.