SUMMARY:

• SAP Certified Security professional with expertise in SAP Security and GRC administration. Over 10 years of global Implementation, rollout, upgrade and support experience in SAP Security & GRC Security management. Seek technology savvy organization where SAP Security and GRC Specialization are held at a premium and where these skills and experience will create a powerful and engaging value proposition
• Successfully delivered 12 projects, which includes 4 SAP Life cycle implementations starting from design phase to post implementation, 6 Upgrade and Rollouts in ECC / GRC / BW / SCM modules.
• Very good experience in Production support of SAP R3 / ECC modules (Finance(FI), CO, Sales and Distribution(SD), Order to Cash(OTC) Material management(MM), Production Planning (PP), Ware House management(WH), Procure to Pay( PTP)), HR / HCM, BI /B W modules (BW 7.X, BPC 7.0/7.5.10.0 , BOBJ 4.X), GTS, Supply Chain ( SCM), CRM, and GRC10.
• Developed and Documented Security Policies and Procedures,
• User Provisioning, Role Provisioning, Role maintenance using profile generator, Security Redesign Strategy in various new implementations and upgrade projects.
• Experience in Design, develop and implement security matrix, roles & Authorization
• Designed and prepared the SOP’s and periodic review and Updates when there is a change in process.
• Experience in Creation of Master role, Composite roles, and derived roles for various Streams\Modules such as SD, MM, FIN, HR, Solution Manager, Portals.
• Clean up of existing SOD’s and maintaining single / Composite roles using GRC & Security Weaver.
• Configured and maintained Central User Administration (CUA) to handle and distribute users & profiles.
• Good knowledge on Single Sign On ( SSO ) in all the systems
• Excellent understanding of Change Management processes.
• Configuring the RFC Connections between different applications to Central Systems.
• Extensive knowledge in SAP GRC Access Control 10 (ARA, EAM, ARM )
• Configured SPRO settings and activated the default rules in the RAR with specific Business Processes, Functions, Risks, and Rules etc.
• Experience in MSMP workflow configurations and customizations.
• Experience in create BRF+ expressions for different Process IDs.
• Created Mitigation Controls and configured FF Owners, Controllers and notification process in Super User Privilege Management to enforce firefighter access controls.
• Worked on Segregation of Duties (SOD) conflict resolution and helped process experts build the SOD matrix using Security Weaver / GRC
• Created the Risk ID and assigned Risk Owners and Control Monitors.
• Built Analysis Authorizations using RSECADMIN, securing queries down to Info Object level in BI/BW
• Created roles restricting access to Info cubes, ODS objects, specific queries and workbooks.
• Troubleshoot authorizations related problems using RSECADMIN, RSRT, SU53 and ST01
• Created Profiles and implemented security at Groups and Folders level in BO.
• Designed security methodology on indirect role /Structural profile assignment at Job /Position based and Context Sensitive structural authorization in HR.
• Assigned structural authorizations’ using OOSB / PO13 to the users in HCM.
• Created Task Profiles and restricted them by different interface tasks in BPC 7.5 & BPC 10.0
• Created Member / Data Access Profiles and restricted the Read / Write access to applications in BPC.
• Well Trained on HANA Studio SP11 and Security Management
• Having knowledge on restricting user access to Analytical / System / Objective / Package Privileges
• Providing access to Business Objects Dashboards in HANA to view the necessary reports
• Restricting Application privileges to the HANA XS applications
• Running Monthly & Yearly user licensing activity using USMM and SLAW in all the SAP Systems.
• Supporting Internal / Externa Audit all the evidences on approval process and document them.
• Running Periodic reviews of User access / Sensitive tcodes / SOD reports and sending to Audit Management.
• Clean up of obsolete roles and conflicts as per the Audit Guidelines.
• Worked interactively with Internal Auditors & External Auditing teams and implementing audit recommendations for Sarbanes Oxley (SOX) Compliance

PROFESSIONAL EXPERIENCE:

Confidential, Long Beach, CA 

Senior SAP Security & GRC Consultant

Responsibilities:

• Designed, developed and implemented SAP Security in LATAM countries.
• Supported Post Go - Live & production issues on ECC, BI & Portal, PO, GTS, SCM modules
• Maintaining user master records though Central User Administration (CUA).
• Created over 3000 single/derived roles and 40 composite roles for implementation in LATAM.
• Designed and developed BOBJ security by restricting users to various groups and folders.
• User Administration and Role Administration (ECC, BI, SCM, GTS, AND XI).
• BPC Migration done from Microsoft version 7.5 to NetWeaver 10.0 and production support.
• Creation/Maintenance of Task Profile & Member Access / Teams in BPC.
• Migrated BI System from 4.1 to 7.1.and continuing the post upgrade support.
• Extensively worked on creating analysis authorizations and troubleshooting user issues using RSECADMIN.
• Extensive supporting in BOBJ user administration. Creating new roles for based on plant / Company Codes. Creating reporting / Data roles.
• Sabrix Tax Calculation System support and User Admin & Security access.
• Enterprise Portal Security and PI / PO User access and role creation & maintenance.
• Resolving the Production issues / Incidents using BMC Foot Prints tool.
• Post-installation of Configuration of GRC AC 10.0 Components.
• Configuration of Connectors, Connector Groups and Integration Scenario Frameworks.
• Activating BC Sets and Applications in Client
• Configuration of Workflow using MSMP.
• Scheduling of Synchronization jobs for ARA and EAM.
• Configuring security reports to perform User & Role analysis to identify existing SoD violations Risk.
• Analysis on the Firefighter ID’s requirement and designed the Fire fighters accordingly in GRC
• Maintained Owners and Controllers in Central Owner Maintenance in GRC.
• Assigning Owners, Controllers to Firefighter IDs in GRC.
• Worked with business to define various risks and mitigating controls for the violations.
• Monthly / yearly running and updating the user license using USMM.
• Working on SOX, Audit issues and Segregation of Duties (SoD) issues.

Environment: ECC 7.0, BI 7.2, BOBJ 4.0, BPC 10.0, Security Weaver, PI 7.3 / PO 7.5, SCM, Sabrix, Hybris,Solution Manager, 7.2, Enterprise Portals.

Confidential, Plymouth, Michigan

Senior SAP Security & GRC Consultant

Responsibilities:

• Managed the offshore team and ensured project deliverables are achieved on time.
• Create new users and maintaining on day to-day basis.
• Creating and maintaining of single, Composite / Position and Derived roles and transport them.
• GRC 10.0 Implemented successfully by defining and Create Connectors and maintaining Connector settings.
• Maintained Owners and Controllers in Central Owner Maintenance in GRC.
• Run SoD reports for users based on GRC ARM requests.
• Risk ID creation and assignment to appropriate approvers and monitor for the risk
• Design & manage MSMP work flows
• Create, maintain, and manage Rule Sets, Functions and Risks used to generate Rules in GRC.
• Created the mitigation controls to minimize the SOD violations in GRC.
• Maintaining FF ID owners, provision of FF access, Assigned owners/controllers to firefighter ids.
• Scheduling of Synchronization jobs for ARA and EAM.
• Produced SOD Analytical Reports (both Summary and Detail) against Users using ARA.
• Performed the mapping of mitigation controls to the risks of respective users in Access Risk Analysis.
• Configuration of Emergency Access Management.
• Risk ID creation and assignment to appropriate approvers and monitor for the risk.
• CUA resides on Solution Manager and the child systems are ECC, BI, SCM, GTS, PI / PO integration to Central system is in process.
• Analysis authorization concept has been used in Business Intelligence (BI) in order to control the reports based on company code.
• Debugging missing authorizations using trace in BW.

Environment: SAP R/3 ECC 6.0, SRM, CRM, BPC 7.5, BI/BW, HR, Solution Manager, Portal, SAP GRC10.0 (AC).

Confidential, Columbus, OH

Senior SAP Security Consultant

Responsibilities:

• Migration from the BW (4.0) to BI 7.1 version.
• Gathering the Information from Business Owners as per their new requirement.
• Complete redesigning the roles and Creating Analysis authorizations.
• Creating Reporting roles & work bench roles.
• Testing of each role using HPQC Testing tool.
• Resolving the post upgrade issue using ST01 & RSECADMIN Logs.

Environment: SAP ECC, BW / BI, SCM 4.0, Virsa Firefighter, Oracle 10.1, Active Directory.

Confidential, Westlake, OH

Senior Security Consultant

Responsibilities:

• Upgraded ECC system from 4.7 to ECC 6 and continuing the post upgrade support
• Gathered Information and Customized CUP Workflows leveraging clients existing process.
• Defined critical transactions to be used for SPM.
• Configuring SPM on user based firefighter ID's, to capture the logs from firefighter ID's usage.
• To provide production support, to end users functional and technical users.
• Configured system audit reporting/ audit log
• Handled Mitigation and Remediation process in RAR.
• Creating and maintaining template roles, derived roles, global roles and composite roles using Profile Generator (PFCG) in SAP R/3, BW and HR environments.
• Maintaining organizational values as and when required while creating / modifying roles.
• Understanding and implementing the Change Control process to for any enhancements or operational changes required.
• Supporting BPC 10.0 and creating new teams / Tasks / Data Access profiles.

Environment: ECC 6.0, BI, GRC 5.3, SCM, HR, Portal, BPC10.0

Confidential, Tampa, FL

Senior Consultant

Responsibilities:

• Responsible and active in the analysis, design, implementation and deployment of full software development life-cycle (SDLC) of the project. 
• Prepared impact analysis of code change and commit the code changes in the project.
• Implementing spring based on MVC Architecture, used simple Java Beans as a Model, JSP-UI Components as View and Action Servlet as a Controller
• Involved in Multi-tiered J2EE design utilizing spring MVC architecture Framework and simple JDBC template to perform

Environment: ECC 5.0, B I7.0, Virsa (FF ID), SOX, Portal, AD

Confidential

Senior Consultant

Responsibilities:

• Implemented SAP for Asia Pacific region on designing the new roles for ECC, APO & BW systems by taking the inputs form the BPO’s and Business Managers.
• Create, maintain and delete user profiles in SCM 5.1 / BI (7.0) / ECC / XI systems.
• RAR & CC using VIRSA calibrator and Super-User Privilege Management
• Good experience in creation and maintenance of Fire Fighter (VIRSA) user IDs for Critical Authorizations for Project and End Users.
• User Defined Background Job management, Standard Jobs management thorough RSPC & SM37.
• Monitoring of all RSPC jobs & Scheduling and Monitoring of Control-M Jobs.
• Co-ordinate with Functional consultants to resolve functional / configuration issues with SAP support through OSS Message.
• OSS Id Creation & Maintain the Service connection in Market place.
• RFC Integration between R/3 and APO systems.
• Support to EGATE, PI & Control-M third party tools and Maintaining background jobs using Control-M.
• Monitoring of lock entries, dump analysis, batch input monitoring, System Logs and process overview

Environment: SAP ECC, BW, HR, Virsa Firefighter, SCM, Portals, Control-M.

Confidential, Neenah, Wisconsin

Senior Consultant

Responsibilities:

• Roles creation, deletion and modification based on requests.
• Single and mass roles transportation.
• Adding the standard and customized t-codes into the roles.
• Authorization groups creation and maintain authorization groups in the roles.
• Creating the new authorization objects and maintain as per request.
• Assign authorization objects to transactions.
• Adding the roles for existing users based on request.
• Passwords reset and lock/unlock the users.
• Increasing the validity period for users.
• Resolving the authorization issues using authorization check.
• Used system trace to trouble shoot authorization problems.

Environment: SAP R/3 ECC 5.0, SRM, CRM, BW, HR, Solution Manager, Portal, Virsa, IBM Mainframes, Linux, AD / LDAP.

Confidential

Senior Consultant

Responsibilities:

• User Administration by creating and user and assigning roles.
• Creating work book roles in BI.
• Monitoring of background BW jobs.
• Preparing weekly reports and send it to all the Managers.
• Running audit reports.
• Updating the OSS information in the Market place.
• Derived & single role creation.

Environment: SAP ECC, BW, Solution Manager. SQL Server, AD.