Sap Senior security/BW consultant

Summary

Over 27 years of IT and Business experience, with over 17 years of SAP experience in Security and Archiving, including extensive work within BW (over 8 years) and SEM. SAP Security experience includes work within R/3 Release ECC 6.0

• Specializing in SAP R/3, BW and CRM Security and Archiving
• Responsible for implementing SAP BW Security in versions 2.0B to 7.0
• Principal Security Consultant on numerous projects, responsible for all Security, Authorizations, training of the Security Administrator, Architecture, Creating Security Project Plans and Documentation.
• Extensive experience with designing and implementing extended security in all modules of SAP.
• Experienced with Authorization Variables, Authorization Objects, and Security on infocubes, Creation of Roles and Users.
• Extensive use of Profile Generator and ITS, CATT scripts and Security upgrades
• Extensive use of CUA
• Risk management and Segregation of Duties issues
• Performed Quality Assurance in the area of Security and Authorizations, documenting problems and risk areas.
• Excellent interpersonal, leadership, and communication skills.

PROFESSIONAL EXPERIENCE

APRIL '09 to present Confidential SENIOR SAP R/3, BW, SEM SECURITY CONSULTANT

• Responsible for developing and implementing Basis Team access in DEV, QA and PROD, to replace SAP_ALL
• Reviewed current SAP security access for Developers, Super Users, Configurators and End Users.
• Reviewed Custom Table, Programs and Transactions authorization checks.
• Reviewed Policies and Procedures
• Reviewed Change Management System.
• Reviewed SOD
• Reviewed current roles
• Reviewed internal processes and identified problems.
• Reviewed Business Resumption Planning (BRP)
• Presented findings to the Steering Committee with recommendations

JAN '09 - FEB '09 Confidential SAP LEAD SECURITY CONSULTANT

• Upgrade to ECC 6.0 from 4.6B
• Reviewed and documented the existing Security and Authorization area to ascertain risks and identify areas of concern.
• Created SAP Security Strategy document.
• Compiled a project time line / plan on how to approach the task and designed a structure on which to build the Security and Authorization required by the Holding company and to satisfy the Auditor's concerns.

NOV '08 - DEC '08 Confidential

SAP LEAD BW SECURITY CONSULTANT

• Upgrade to BI7 from BW3.5
• Did conversion from reporting authorization to Analysis Authorization in Sandbox.
• Documented process and steps.
• Did conversion in DEV client testing process and steps.
• Handed over documentation to client and contractor on site to complete upgrade
• Project was successfully completed

SEPT '08 - OCT '08 SAP LEAD BW SECURITY CONSULTANT

• Assisted sales team with presentations, talks and bids with various clients
• This was time consuming because of the bidding process

OCT '07 - AUG '08 Confidential SAP LEAD BW SECURITY CONSULTANT

• Multiple R/3 releases 4.0B, 4.5, 4.6, ECC6
• BI 7.0 / SEM release 3.5
• CRM 5.0
• GTS
• Landscape of 69 instances with 134 clients
• Designed new Global Naming Convention and Standards for roles for Becton Dickinson as an single entity
• Identify levels of Information Classification Eg. Secret, Confidential, Restricted, Public and identify the information per category
• Developed Security Requirements for Information Classification
• Created custom authorization objects for reporting in R/3 4.0B
• Tested, documented and implemented successfully
• Responsible for implementation of Global Trade Services Security (GTS)
• Gathering of requirements, creation of roles, testing and changing until complete and successfully implemented in production.
• Implemented security for Special Ledger, Royalties, Reporting
• Responsible for day to day support for R/3, CRM, BW,SEM and HR production environments
• Responsible for ensuring that all SAP areas were Sarbanes Oxley compliant
• Supported a current user base of 11 000 user plus multiple projects personnel
• Responsible for security implementation for the CRM 5.0 upgrade project
• Gathering of requirements, creation of roles, testing and changing until complete and successfully implemented in production.
• Create Backend roles in BI for Portals and implemented / mapped them in the portal for CRM upgrade project.
• UME user creation

March '07 - OCT '07 Confidential SAP Lead BW Security Consultant

• BW Release 7.0
• SEM 3.5
• ECC 6.0
• Technical upgrade to BI 7.0
• Review of current R/3 Security system - Working on SOX compliance
• Security implementation for acquisitions, reporting, new GL.

OCT '06 - JAN '07 Confidential SAP LEAD BW SECURITY CONSULTANT

• BW release 3.5
• Responsible for implementation of Security in BW
• Reports secured for Company Codes, Plants, Controlling Areas, Sales Organizations and Purchasing Organizations using Navigational Attributes.
• Initial testing was done by security all further testing done by the BW Team in the Development Instance and then the Quality Assurance Instance prior to transfer to the Production Instance.
• Signoff obtained for every Instance prior to transfer to next Instance and release to Production.
• Prepared for a future state of 1500 plus users spread over multiple continents
• Created naming Conventions and Standards for Roles, Info Cubes, Key Figures, and Custom Authorization Objects.
• Hierarchical security discussed and knowledge transferred to client for Phase 2
• Segregation of queries/reports
• Securing of info areas, info objects and key figures
• Protecting and securing of Financial and Sales information for reporting
• Restricted access for report Developers.
• Restricted access for Ad Hoc report authors.
• Change management procedures rigorously applied.
• Responsible for ensuring Sarbanes Oxley compliance
• Assisted SAP R/3 security team with guidance in all modules on a ongoing basis
• Responsible for providing guidance to BW team members.
• Created Roles for End Users, Super Users, Report Authors, Developers, and Extractors.
• Setup testing and correction procedures for Security.
• Provided guidance and training to Security Analyst's.
• Worked very closely with the Business Team to ensure that all parties were on the same page at all times
• Documented the various steps.
• Prepared the Project plan for the implementation of the BW Security

APR '05 - SEPT '06 Confidential Lead SAP R/3, BW, SEM SECURITY CONSULTANT

• R/3 release 4.7 Enterprise
• BW / SEM release 3.5
• Landscape of 37 instances with 69 clients
• Responsible for implementation of Security in R/3 Enterprise, SEM/BW
• Responsible for day to day support for R/3 and BW production environments
• Responsible for ensuring that all SAP areas were Sarbanes Oxley compliant
• Responsible for answering external and internal audit reports.
• Responsible for 4 different trouble ticket environments for 3/4 of the globe (Europe, Japan, Asia-Pac, South America, US, Mexico, Korea, Thailand, Africa)
• Secured custom tables, transactions and ABAP's with authorization groups and authorization object checks
• Supported a current user base of 8500 user plus 120 project personnel
• Prepared for a future state of 12 000 plus users spread over multiple continents
• Created naming Conventions and Standards for Roles, Info Cubes, Key Figures, and Custom Authorization Objects.
• Hierarchical security
• Segregation of queries/reports
• Securing of info areas, info objects and key figures
• Protecting and securing of HR information for reporting
• Protecting and securing of Financial and Sales information for reporting
• Securing and controlling access to HR data for SEM BPS
• Securing and controlling access to Financial data for SEM BPS
• Restricted access for report authors.
• Restricted access for Ad Hoc report authors.
• Change management procedures
• Responsible for providing guidance to functional team members.
• Created Roles for End Users, Super Users, Report Authors, Developers, Extractors, Authors
• Setup testing and correction procedures for Security.
• Provided guidance and training to Security Analyst's.
• Administrator Help Desk tickets
• Worked very closely with the Basis Team to ensure that all parties were on the same page at all times
• Roll out of ongoing projects
• Responsible for the CUA
• Providing guidance and developing standards and procedures
• Implementing SAP Security for files to UNIX layer

FEB '05 - May '05 Confidential SAP LEAD SECURITY/BW CONSULTANT

• R/3 release 4.6/BW / SEM release 3.2/APO release 3.1
• Responsible for implementation of Security in R/3 ,SEM/BW and APO
• Secured custom tables and ABAP with authorization groups and authorization object checks
• Prepared for a future state of 2000 plus users spread over multiple continents
• Created naming Conventions and Standards for Roles, Info Cubes, Key Figures, and Custom Authorization Objects.
• Worked with Hierarchical security, Segregation of queries/reports and Securing of info areas, info objects and key figures
• Protecting and securing of HR information and Financial and Sales information for reporting
• Securing and controlling access to Financial data for SEM BCS
• Restricted access for report Developers and Ad Hoc report authors.
• Change management procedures
• Created Roles for End Users, Super Users, Report Authors, and Developers
• Setup testing and correction procedures for Security.
• Provided guidance and training to Security Analyst's.

MAR '03 - JAN'05 Confidential SAP LEAD SECURITY/BW CONSULTANT

• R/3 release 4.7 Enterprise/BW / SEM release 3.2/CRM release 3.1
• Landscape of 21 instances with 56 clients
• Responsible for implementation of Security in R/3 Enterprise, SEM/BW and CRM
• Phase 1 went live with 55 cubes in July '04 and Phase 2 went live on 3 January 2005
• Responsible for ensuring that all SAP areas were Sarbanes Oxley compliant
• Secured custom tables and ABAP with authorization groups and authorization object checks
• Prepared for a future state of 25000 plus users spread over multiple continents
• Created naming Conventions and Standards for Roles, Info Cubes, Key Figures, and custom Authorization Objects.
• Worked with Hierarchical security, Segregation of queries/reports, Securing of info areas, info objects and key figures, Protecting and securing of HR and Financial and Sales information for reporting, Change management procedures
• Securing and controlling access to HR and Financial data for SEM BPS
• Restricted access for report authors.
• Created Roles for End Users, Super Users, Report Authors, Developers, Extractors, and Authors.
• Setup testing and correction procedures for Security.
• Provided guidance and training to Security Analyst's.

JUL '02 - NOV '02 Confidential SAP SENIOR SECURITY CONSULTANT

• Release: Upgrade from 3.1H to 4.6C
• Performed Profile Generator conversion and setup routines
• Created documentation for Functional Teams listing old transactions and new transaction per role
• Setup testing and correction procedures for Security and provided guidance and training to Security Analyst.
• Implemented procedures for conversion and acceptance testing for Super, Power and End users
• Documented all changes and requirements.
• Worked closely with Functional Teams identifying high risk and areas of concern
• Corrected and tested roles
• Created unique user id's for testing and training
• Held strategy sessions with the Functional Teams on how to approach and identify unique requirements re IS_OIL.
• Responsible for the seamless transition of security to 4.6C

SEP '01 - JUNE '02 Confidential SAP SENIOR BW SECURITY CONSULTANT

• Release: 4.6C
• Total redesign of SAP R/3 Security, conversion project
• Roll out of ongoing projects
• Training of SAP Security Analyst's and day to day support on 42 Instances
• Providing guidance and developing standards and procedures
• Design of hierarchical security for CO
• Implementing SAP Security for files to UNIX layer
• Administrator Help Desk tickets
• Support 15000 named users on 3 continents
• Responsible for implementing the SAP BW SECURITY version 3.0A including Conventions and standards for BW Reporting and BW Security and Security on Info Cubes and ODS Objects
• Authorization Variables for reports and Authorization Objects for specific access to Info objects
• Restricted access for developers, extractors
• Creation of roles and users
• Security in APO, B2B, R/3 4.5B, 4.6C, Workplace
• Use of CATT scripts
• CUA

JUN '01 - AUG '01 Confidential SAP SENIOR BW SECURITY CONSULTANT

• Responsible for implementing the SAP BW SECURITY version 2.1C
• Security for Web Reporting accessed via ITS
• Authorization Variables for reports and Authorization Objects for specific access to Info objects
• Security on Key Figures and Info Cubes
• Restricted access for report authors.
• Creation of roles and users

JUNE '01 - AUG '01 Confidential SAP SENIOR BW SECURITY CONSULTANT

• Responsible for implementing the SAP BW Security version 2.1C
• Authorization Variables for reports and Authorization Objects for specific access to Info objects
• Security on Key Figures
• Restricted access for report authors.
• Security on Info Cubes
• Creation of roles and users

APRIL '01 - MAY '01 Confidential SAP SENIOR BW SECURITY CONSULTANT

• Responsible for providing guidance to functional team members.
• Identifying requirements for BW security, Naming conventions, Standards and Creation of authorization objects

MARCH '00 - APRIL '01 Confidential SAP SENIOR BW SECURITY CONSULTANT

• Principal SAP BW and R/3 Security Consultant
• Responsible for implementing the SAP BW Security version 2.0B
• Security for Web Reporting accessed via ITS
• Authorization Variables for reports and Authorization Objects for specific access to Info objects
• Security on Key Figures and Info Cubes and Restricted access for report authors.
• Created naming Conventions and Standards for Roles, Info Cubes, Key Figures
• Created Roles for End Users, Super Users, Report Authors, Developers, Operators,
• Help Desk, Trainers and Project Team.
• Creation of User Id's
• Utilized CTS to move roles from DEV to QA and PROD.
• Responsible for problems with BW queries and reports and resolving of issues related to them.
• Implemented change control procedures for stabilizing of landscape in regard to queries and reports.
• Documented configuration for Security Trained Security Administrator.
• Responsible for reviewing current SAP R/3 Security and presenting a solution to management.

JAN '00 - APRIL '00 Confidential SAP BW AND R/3 SECURITY CONSULTANT

• Responsible for complete SAP Security upgrade to version 4.5B

OCT '99 - DEC '99 Confidential SAP R/3 SECURITY/ARCHIVING CONSULTANT

• Created an archiving plan after meeting with the client and identifying the critical areas.
• Identified amount of space that would be freed up with archiving.
• Performed the required archiving in the production system.
• Performed Quality Assurance in the area of Security and Authorizations documenting problems and risk areas.
• Documented the system changes in SAP R/3 FI and CO and created scripts.

SEP '99 Confidential SAP R/3 ARCHIVING CONSULTANT

• Devised and implemented an archiving plan.
• Tested, measured and documented the findings.
• Successfully performed required archiving in the production system.

AUG '99 Confidential SAP R/3 SECURITY CONSULTANT

• Reviewed and documented the Security and Authorization area to ascertain risks and identify areas of concern.
• Designed a Policy and Procedure memo, which served as the basis for their official guideline document.

JUN '99 - JUL '99 Confidential SAP R/3 SECURITY CONSULTANT

• Reviewed and documented the Security and Authorization area to ascertain risks and identify areas of concern.
• Designed a Policy and Procedure memo, which served as the basis for their official guideline document.
• Compiled a project plan on how to approach the task and designed a structure on which to build the Security and Authorization required by the board of Directors and to satisfy the Auditor's concerns.

MARCH '99 - MAY '99 Confidential SAP R/3 SECURITY CONSULTANT

• Responsible for all Security, Authorizations and training of the Security Administrator.
• Created documentation and project plan.
• Worked closely with the Functional team members, modules MM, SD, HR, FI, CO, PP, ascertaining requirements and providing advice and guidance

JUL '97 - FEB '99 Confidential SAP R/3 SECURITY CONSULTANT

• On assignment to various clients provided SAP R/3 Security consulting in MM, PM, PP, QA, SD, FI, CO, AM, HR. Using Profile Generator and ITS.

JUL '96 - JUL '97 Confidential SAP R/3 SECURITY CONSULTANT

• Principal SAP R/3 Security Consultant on multiple Fortune 500 companies projects.

MAR '82 - JUN '96 Confidential SAP BUSINESS INTEGRATOR, PROJECT MANAGER, PRINCIPAL ANALYST

• Responsible for Analysis, Programming, Production support, Operational scheduling and support, Security and Control for the SAP R/2 and SAP R/3 systems.
• Responsible for control and support of the technical side for the
• Promat Project SAP R/3
• Infrastructure Project SAP R/3
• Rolling Stock project SAP R/3
• SPACE Project SAP R/2
• Management of the SAP R/2 production environment
• As a Project Leader responsibilities included the following:
• Promat Project (Procurement and Warehousing Division of Transnet Limited) SPACE Project (Spoornet Profit and Cost Evaluation)
• Liaison for the Analysis and Programming team and project trouble shooting. Also assisted in analysis.
• Stand in for the Head of the Department in his absence.
• Management of three direct reports and a staff of thirty-five countywide.
• Formal in-house training to the Regional System Controllers.
• Responsible for all aspects of change management and control.
• Responsible for all controls and procedures for SAP R/2 and SAP R/3 systems.

Sap training

• ASAP Certification
• BW205 (Queries/Reports)
• BW210 (Data Extraction)
• BW220 (Security/Authorizations
• BC660 (Archiving)
• MY301 (SAP Workplace)
• BC940 (Security and Technical Auditing Including Workplace)
• BC040
• HR050 (Human Resources)
• HR305 (Configuration of Master Data)
• HR307 (Configuration of HR System Controls)