Summary:

An experienced SAP Security consultant with a demonstrated record of accomplishments with a variety of clients across various industries in SAP Security design, architecture, implementation, steady state support and control implementations of Governance, Risk and Compliance GRC initiatives. Possess hands on technical security experience in the SAP NetWeaver suite and across various SAP modules. Have extensive experience in leading and managing global SAP security engagements and implementation both off shore and onsite. Possess quality experience in incorporating segregation of duties SoD analysis, testing and SoX compliance. Have experience establishing process documents, leveraging the IT security SoX compliance process to design SAP Security architecture. Have hands on experience in performing Information Technology Security Audit. Has managed various team sizes, resource allocation and staying align with project plans.

Technical:

• SAP Technical Security Consultant Technical:
• Hands on experience of 9 years in SAP Security Application Architecture and implementation.
• Extensive Security experience on various SAP solutions such as, ECC, SRM, CRM, BW/BI, HR, FI/CO, SM, MDM, GDS and BPC.
• SAP Security Architecture, Configuration and Upgrade implementation
• Hands on experience on GRC/Virsa Tools and Configuration
• Expert in Java Stack Enterprise Portal Security and configurations
• Expert in SAP Security Authorization and User Administration using CUA, IDM and Portal
• Hands on experience in MDM/GDS Security and Enterprise Portal integration
• Proficient in establishing Blue Print technical documentation
• Expert in establishing test scripts for different test phases
• Expert in establishing SAP standard of operating procedure documents for Center of Excellence
• Experience in performing IT security audit, reports and recommendations
• Experience in writing Request for Proposal and establishing Statement of Work
• Working knowledge of third party tools HP, BitzRights, Mercury, SM7, eSurf, Remedy, RevTrac, Nimbus

Professional Experience:

Confidential

Role: Sr. SAP Security Consultant

Applications: SAP, ORACLE, MS

• Prepared questionnaire for different scenarios
• Reviewed former audit reports
• Reviewed application architecture and facility architecture
• Interviewed key personnel to determine compliance with company's policies and other regulations
• Physically reviewed and observed security processes to assist in audit report
• Physically reviewed and observed data center facilities to assist in audit report
• Presented final audit report with findings and follow through recommendations

Confidential

Role: Lead SAP Security Consultant.

SAP Modules: ECC, BW, BOBJ, BPC, GRC

• Worked with functional and basis team for BPC 10 installation and post installation check list
• Prepared blue print through work shop collaborations for new BPC10 implementation
• Prepared test scripts for functional and end user security testing for BPC 10
• Prepared test scripts and test scenario for SAP FICO/BW reports testing
• Supported the entire implementation phases
• Prepared and lead cutover scenarios for go-live
• Established goal matrices for individual team members and followed up with reviews
• Managed resource allocation, project deliverables and timelines

Confidential

Role: Lead SAP Security Consultant.

SAP Modules: ECC Business processes: PTP, PTR, QTC, RTC, HTR, OCM and BI EP

• Analyzed SAP Global Security design for Cameron
• Established new SAP security design blue print and architecture for new acquisition
• Lead security impact analysis with various business process leads
• Implemented new security design for new acquisition into Global landscape
• Schedule transports through the landscape
• Designed test scripts with security true test scenarios and supported different test phases
• Established detailed cut-over plan and implementation
• Supported a successful go-live and stead state including knowledge transfer

Confidential

Role: Lead SAP Security Consultant.

SAP Modules: ECC, SRM, CRM, BW, SUS, EP, SolMan, XI, SLD

• Teamed up with other business and functional leads to establish Request for Proposal
• Established Statement of Work for SAP security project
• Analyzed current SAP ECC security design
• Led workshops with Business process leads for security requirements gathering
• Led security impact analysis with various business process leads
• Led requirement gathering with functional leads to understand points of integration
• Established new SAP security design blue print and architecture for new SAP modules in the landscape, SRM, CRM, SUS,
• Established blue print for Re-design for SAP ECC security with SAP FI modules

Confidential

Role: Lead SAP Security Consultant

SAP Modules: CRM, ECC, EP

• Performed Gap analysis for new SAP Security design and recommended design tune up
• Supported the entire warranty phase for the new CRM security implementation
• Resolved security defects in production with approved change request by business
• Led business initiatives and meetings with process owners to improve user requirements for production steady state
• Worked and resolved back logged security incidents and reviewed the change request process
• Established process documentation with client security team and business teams
• Prepared detail knowledge transfer documentation and conducted a well-informed walk through with client security team and off-shore support team
• Managed resource allocation, project deliverables and timelines
• Reviewed individual team performance ratings

Confidential

Role: Lead SAP Security Consultant.

SAP Modules: ECC Business processes: PTP, OTC, PTS, BTC, BI, EP, SolMan

• Established the Statement of Work for SAP security project and resource allocation
• Analyzed SAP Security design documentation for process improvement
• Led workshops with process owners for process improvement
• Established new SAP security design blue print and architecture
• Incorporated new Security design with integration of GRC for SoD resolution and business work flow process definition
• Supported SAP Project System implementation for the different test phases
• Designed SolMan security roles for functional and support teams

Confidential

Role: Lead SAP Security Consultant.

SAP Modules: ECC FICO HCM, BI, EP

• Performed a Gap analysis on the Global SAP security architecture template
• Analyzed SAP Global Security design for Universal Music Group
• Established new SAP security design blue print and architecture for North America roll-out
• Led security impact analysis with various business process leads
• Implemented new security design for new acquisition into Global landscape
• Scheduled transports through the landscape
• Designed security true test scenarios and supported different test phases
• Established detailed cut-over plan and implementation
• Supported a successful go-live and steady state including knowledge transfer

Confidential

Role: Lead SAP Security Consultant.

SAP Modules: ECC FI/CO, SD, MM, PLM, SRM SolMan, GRC 5.3, EP

• Performed Gap analysis on SAP Security design documentation for process improvement
• Established new SAP security design blue print and architecture
• Incorporated new Security design with more integration with GRC for SOD resolution
• Integrated more GRC functionality with SAP landscape
• Led working sessions with business process leads and owners to define work flows and role owner for process improvement

Confidential

Role: Lead SAP Security Consultant.

SAP Modules: ECC PLM, FI/CO , SM, cFolders, SRM, CRM, GRC, BI, EP, and SNC.

• Established blue print and Security matrices for SAP PLM wave 2 implementation
• Established true test scenario for Roles, authorizations and SoD analysis
• Carried out FUT, UAT and cutover activities for new plant integration into JCI SAP landscape
• Successful Go-live for new plant integration into JCI SAP landscape
• Gathered Business requirement for fine tuning SAP PLM wave 1 implementation
• Provided production support for current SAP applications in JCI
• Scheduled Batch jobs for GRC and backend ABAP systems synchronization
• Monitored and ran frequent tests for CUA integration with other Child systems
• Established a roadmap for SAP security standards for Center of Excellence
• Led business workshops including functional teams to establish SAP standard process documents
• Gathered business information and established process documents following SAP standards
• Reviewed SAP Standard process documents with business for final sign off and publishing
• Worked with other SAP security teams to ensure SAP standard processes where integrated into all SAP implementation within JCI

Confidential

Role: Sr. SAP Security Consultant.

SAP Modules: ECC PLM, FI/CO, PM , HR, SRM, CRM, MDM, GDS, XI/PI, SM, BI, and EP.

• Established blue print and Security matrices for biggest SAP MDM/GDS implementation ever
• Established true test scenario for Roles and authorizations
• Gathered Business requirements and established Strategy for EP 7.0 integration
• Set permissions on all Portal Environments to meet SOD for different User environments
• Created project folders and Iviews to meet client's expectation for Enterprise Portal
• Fully implemented EP 7.0 integration with clients active directory for UME utilization
• Created test script with true test scenario for MDM/GDS Portal integration and end user utilization
• Successfully archived three full cycle implementation and Go-lives of MDM and Portal
• Analyzed error logs in the production environment and attained a stable production environment
• Worked with Internal Controls to establish change management processes and SOP for SAP systems
• Supported other SAP modules ECC, SM, SRM, HR, PM, XI/PI, BI, CRM , other production and development portals for clients North and South America environment.

Confidential

Role: Lead SAP Security Consultant.

SAP Modules: GRC

• Feasibility studies of GRC implementation and information gathering standards for PWC
• Led Meeting with business and other department heads to understand and define requirement

Confidential

Role: Sr. SAP Security Consultant.

SAP Modules: BI, EP, ECC, GRC

• Analyzed the blue print technical documentation for BW 3.5 upgrade to BI 7.0
• Upgraded BW 3.5 reports and Workbooks to BI 7.0
• Gathered Business Information and established Strategy for EP 7.0
• Fully implemented EP 7.0 and fine tuned EP for better performance
• Created a true test scenario for cycle three testing on BI 7.0
• Adjusted blue print documentation after cycle three testing for production environment
• Fine tuned Analysis authorization and new BI authorization objects to move into smoke testing
• Created a true test scenario for smoke testing before production and made necessary security adjustments based on logged errors before production
• Analyzed error logs in the production environment and attained a stable production environment for business processes and business users.
• Met with internal auditors to gather requirements for audit on R/3 system
• Prepared R/3 system for internal auditors
• Did table dumps and ran reports on R/3 for further analysis by internal auditors
• Ran reports on Compliance Calibrator 4.0 and Fire Fighter for SOX compliance on R/3 and for further analysis by internal auditors.

Confidential

Role: Part time Sr. SAP Security Analyst.

Clients: Home Depot.

• Examined current SAP landscape for client
• Worked with business and other teams to determine team size, resources and length of SAP projects
• Established standards for technical documentation and blue print for upgrade
• Reviewed clients' Standard Operating Procedure and Work Flow to meet SOX compliance
• Utilized GRC/Virsa Tools to meet SOX compliance and SoD analysis
• Did power point presentations and knowledge transfer to on-site team

Confidential

Role: Sr. SAP Security Architect.

• Evaluated BW 3.5 Security Roles
• Developed BI 7.0 Security conversion Roadmap and Strategy
• Put together documentation of a step by step Upgrade strategy
• Created corresponding BI 7.0 Roles from BW roles and Analysis Authorizations
• Did prototype of a real scenario to prove concept
• Did Information transfer to in-house security team
• Had daily meetings with Project lead, BW developers, Basis team and Security team.

Confidential

Role: Sr. SAP Security Architect and GRC Expert.

• Evaluated BW 3.5 Security Roles and established blue print documentation
• Developed BI 7.0 Security conversion Roadmap and Strategy
• Ran authorization trace using trace tools during testing and Production
• Created and Transported roles and Analysis Authorizations using Solution Manager
• Generated authorization profiles, Assign roles and profiles to Users in CUA
• Maintained transaction selections and authorization data in roles
• Did User administration and maintenance using IDM configured with LDAP
• Updated and Regenerated ECC 6.0 roles from previous ECC 5.0
• Developed a BI Security Test Approach and true test scenarios for all functional areas
• Worked on the roadmap and development of EP 7.0 Global implementation
• Created corresponding BI 7.0 Roles from BW roles and Analysis Authorizations
• Applied functions of GRC/Virsa tools for Role creation, Workflow and SOX compliance