SUMMARY:

• Over 15 years analyzing, designing and re - engineering Security Access Rights and Roles and Compliance on the ERM platform SAP ECC 6.0, GRC, 5.3 and GRC 10, SAP BW 7.0, CRM and NetWeaver.
• Managed all flows of Implement, Develop, Support and Maintain access and compliance
• SAP Security Re-Design/Re-Engineer, Configure to Organizational Policies, Role Allocations, Access Administration and Appropriate Segregation of Duties in Role Design.
• Sensitive Access Control, Compliance, Change Management functions and House Keeping.
• Assisting Security Audit to include segregation of duties, delegation of authority, and other access restrictions placed by process owners, as well as running monthly/quarterly reports.
• Over 17 years of industry experience to include 15 years in SAP Security with New Dimension technologies to include ECC 4.7 and 6.0, GRC 5.3 and 10.0, BI 7.0, HANA, BOBJ, CRM 5.0, SCM (APO), HR, NetWeaver 2004S, Enterprise Portal, Central User Administration (CUA) and Solution Manager 7.0.
• Hands-on expertise in Security administration, maintenance and trouble-shooting, as well as, implementing/upgrading GRC VIRSA/5.3/10 .
• Develops and documents security policies and procedures, user and role maintenance using profile generator, and security redesign strategies, as well as, delivering/maintaining documentation to include Matrix of Rules.
• Worked with Remedy, AtTask, Unicenter, Remedy, HP Service Management, Atlassian JIRA ticketing systems.
• Implements ‘Role Based’ and ‘Position Based’ security, based on Segregation of Duties to be compliant with Sarbanes-Oxley act.
• Responsible for managing and administering SAP Security requests and reports.
• Industries: Pharmaceuticals, Consumer Goods and Electronics, Media, Food, Services, Advertising and Marketing.

TECHNICAL SKILLS:

ERP: ECC 5.0, ECC 6.0., GRC 5.3, 10, HANA 2.3, SCM/APO, BI / BW Security, BOBJ, Enterprise Portal, NetWeaver, HR ESS/MSS, SAP R/3 Enterprise 6.0, 4.7B/4.6c/4.0bDatabases: Oracle, SQL Server, MS Access, HANA

Testing Tools: Quick Test Pro, Mercury Quality Center 9.0/HPQC

SSO/AD: Kerberos, SAML

PROFESSIONAL EXPERIENCE:

Confidential, New York, NY

Security/Compliance Lead

Responsibilities:

• This is the third project with IPG in delivering and supporting different waves of deployment. This particular project involved Australian deployment of Vantage.
• GRC 10.1 implementation involving User Provisioning, Compliance and Emergency Access.
• Implement HANA security using HANA Studio and HANA IDE, Content, Catalog and Provisioning.
• Administered, maintained and supported role design and development in ECC, HANA, BI, GRC and Solution Manager Modules.
• Managed mitigation control, SoD analysis and management reports for GRC for existing access.
• Actively involved in deployment activities relating to Mass Role Mapping at deployment sites.
• Co-ordinated with development team for custom transactions, programs, objects and testing.

Confidential, New York, NY

SAP Security and Compliance Lead

Responsibilities:

• Securing Roles, User Access and compliance for overall security functionality of SAP systems
• Role re-design in ECC incorporating new org levels, Segregation of Duties and Sensitive Data Access Control and Privilege Access procedures
• System study for HANA deployment.
• Role mapping, Derived Roles, UAT testing, data load support, Change Management activities and Post Go-Live, design and deployment activities
• Design, Configure, implement and maintain GRC 10.1
• Configuring and setting up the Security as per the Best Practices guidelines
• Co-ordinate on-shore and off-shore activities for deliverables
• Design the activities and time lines for generate Security Logs, User Activities Logs, User Reports and internal security audit set up
• Implemented SAP PLM module for project management
• Advised and lead the team in all conversion activities of getting new agencies and under the Ogilvy fold
• Worked on Position Based security in HR/HCM
• Migrated BI 7.0 to 7.3 versions and configuration of CMC in Business Object and security access.
• Design and Implement Analysis Authorizations in BI 7.0 based on info level authorizations
• Advise the board in license analysis, optimal role design and assignments for licensing.
• Conducted meetings and updated on progress of the projects to the Directors

Environment: SAP ECC, HR/HCM, BI 7.0/7.3, HANA 2.0, Business Objects, PLM, Solution Manager 4.0, NetWeaver 7.4.

Confidential, New York, NY

SAP Security and Compliance Lead

Responsibilities:

• Role re-design in ECC incorporating new org values and role derivations.
• Configure and set up BOBJ and GRC 10.0 Access Controls
• Administer, Maintain and Support Role design and development in ECC, BI, BOBJ, GRC, BPC, CRM and Solution Manager Modules.
• Configure GRC AC components ARA, EAM, ARM and BRM
• Analyze and troubleshoot issues, change management activities, update and set up policies as per the best practices.
• Role Mapping, Integration / UAT Testing, Dry-Run, Data Load Support and Post-Go-Live Support.
• Work closely with the Product Design and Testing teams to ensure that roles are configured according to Requirements and within scope.
• Upgrade activities including analysis, impact study, Processing and Go-Love activities
• Securing access and User Administration using Access levels, Groups, Role Import using Central Management console in Business Objects (BOBJ) security.
• Mitigation Control, SoD Analysis and Management reports for GRC for existing access
• Actively involved in Deployment activities relating to Mass Role Mapping at deployment sites.
• Trouble shooting, security checks, reports, change management and monitoring
• Co-ordination with development team for custom transactions, programs, objects and testing

Environment: ECC 6.0 / EHP7, CRM 5.0, BI 7.0, BOBJ 4.0, BPC, GRC 10.0, NetWeaver, Solution Manager 7.1

Confidential, Collegeville, PA

SAP Security Lead

Responsibilities:

• SAP Security responsibilities in administering and maintaining access and access roles in ECC, CRM, BI, SRM, GRC and Portal
• Framework for SAP IDM and GRC 10.0 Access Controls.
• Mapped roles using Import functionality and User assignments.
• Configured Rights, Authentication, Access Levels, User creation set up, Launch pad etc. in the Central Management Console.
• Responsible for development, maintenance and support of security roles in the SAP systems including BOBJ 4.0
• Executed configuration and implementation of BOBJ Security
• Configuration LDAP, SAP or SSO authentication with BOBJ

Environment: ECC 6.0, GRC 10.0, BI 7.0, BOBJ 4.0, CRM, SRM/APO, NetWeaver, Solution Manager 7.0, HPQC

Confidential, Dickinson & Co. / CapGemini, Franklin Lakes, NJ

SAP Security Lead

Responsibilities:

• SAP Security responsibilities in administering and maintaining access and access roles in ECC, CRM, BI, SRM, GRC and Portal.
• Re-design of existing roles to in corporate newer functionality in terms of nomenclature, derivations and compliance
• Configure GRC 10 components of ARA, EAM, ARM and BRM
• Create connectors, RFC and Logical connections, BC sets activation
• Create Modify MSMP workflow to suit the planned process
• Build new roles as per set guidelines, ensuring compliance as per SoX and audit regulations.
• Analyze and troubleshoot issues, document changes, update documentation as per the procedures and policies adhering to the FDA regulations and best practices.
• Assist in UAT testing and go-live activities
• Securing access and User Administration using Access levels, Groups, Role Import using Central Management console in Business Objects (BOBJ) security.
• Mitigation Control, SoD Analysis and Management reports for GRC for existing access
• Trouble shooting, security checks, reports, change management and monitoring
• Co-ordination with development team for custom transactions, programs, objects and testing

Environment: ECC 6.0, GRC 5.3, GRC 10.0, BI 7.0, BOBJ 4.0, CRM, HR/HCM, GTS, SRM/APO, NetWeaver, Solution Manager 7.0, HPQC.

Confidential, New York, NY

SAP Security Lead

Responsibilities:

• Advice and plan for total security re-design and GRC
• Create design and scope for the project and project plans.
• Advice, plan and impact study for migrating to GRC 10
• Users Role assignments, SoD Analysis and conflicts mitigation, role library
• Build and modify Roles, trouble shoot issues, User administration, Role and User Analysis, Management reports for GRC and adhering to SoX compliance rules
• Basis functions like client copy, Logical systems, trusted RFC connections
• Test environment performance.
• User transfers from connected child systems to the parent system
• Documentation, training and knowledge transfer.

Environment: ECC 6.0, CRM 5.0, BI 7.0, BOBJ 4.0, BPC, GRC 10.0, NetWeaver, Solution Manager 7.1

Confidential, Englewood Cliffs, NJ

SAP Security Lead

Responsibilities:

• Complete re-design of the SAP security methodology, concept and process
• Implemented GRC for Compliance, Provisioning and Emergency Access.
• Mitigation Control, SoD Analysis and Management reports
• Create new roles and modifications, Objects assessments and testing adhering to SOX and EU Compliance requirements
• Imparted methodologies and strategies for role building, management and trouble shooting
• Off-Shore team management, delegation and guidance
• Develop security roles and user provisioning in ECC, CRM, SRM and BI systems
• Extensive functional team interaction for design and development
• Implement Security Weaver for Provisioning and Compliance.
• New process development, support in Security and GRC activities
• Created HR Roles and updated HR objects data
• Assisted Auditors for reports, changes and analysis
• Trouble shooting, security checks, reports, change management and monitoring
• Co-ordination with development team for custom transactions, programs, objects and testing
• Leadership, strategies, reporting and recommendations for forward growth of project and management
• Communications with technical managers, management, board and end-users

Environment: ECC 6.0, GRC 10.0, CRM 5.0, Solution Manager 7.0, BI 7.0, SRM/APO/SCM, HRM

Confidential, King of Prussia, PA

Lead SAP Security Administrator

Responsibilities:

• AC 10.0 and monitoringUpgrade GRC AC 5.3 to GRC
• Role and User Analysis, Management reports for GRC
• SUPM (Fire Fighter) user and Role management and reports
• ECC role modification and support
• HR role re-design and creation, structural authorizations
• Users Role assignments, SoD Analysis and conflicts mitigation, role library
• Co-ordination testing of new and modified roles
• Assist Audit with reports
• Daily Security Checks
• Co-ordinate with business users with trouble shooting, testing and technical assistance.
• Coordinate with Controls Board for Role mitigation and assignments

Environment: ECC 6.0, GRC 10.0, NetWeaver 5.0, BI, Portal, HR ESS/MSS, Solution Manager

Confidential, Mahwah, NJ

Lead SAP Security Administrator

Responsibilities:

• ECC Upgrade 4.7 to 6.0, GRC AC5.3 and Upgrade to 10.0
• GRC 5.3 and 10.0 Access Controls, Comply with SOX and JSOX (Japan SOX) regulations
• Role and User Analysis, Risk Analysis, Audit and Security reports, Rule Architect and Monitor
• Set up SUPM (Fire Fighter) users, Manage access, Transaction usage reports, change log and other reports
• ERM Role Library and Owners upload and reports,
• Mitigate Users, Roles and Risks, manage Control Library,
• Upgrade activities and SU24 changes for ECC 6.0
• New roles creation and modifications
• Co-ordinate testing in Quality system and troubleshooting any access errors
• Used LSMW / QTP Scripts for mass user creation / upload
• Trouble shooting and identifying solutions using tracing (ST01)
• Migrated roles from R/3 and BI into Enterprise Portal.
• Involved in development of services and role tree in Portal Content Directory (PCD).
• Administrating and maintaining password and authorizations in Portal.
• Created new users and user groups in Enterprise Portal
• Create new business specific roles, re-design of existing roles and Planning Book access.
• Create other access roles like remote and back up roles.
• Coordinate testing and resolve issues
• User assignments and go-live coordination
• Business security requirements and role design
• Create Business roles, provide test user access in quality systems
• Create SUPM roles (Fire Fighter) for IT and Business
• Daily production support
• Used Profile Generator for creating and modifying role changes for production support
• User administration including creating and maintaining user, approvals for user and role management.
• Trouble shooting user issues and role deficiencies using SU53 and tracing user authorization with ST01 and resolving issues.
• Run Compliance simulation, identify SoD conflicts using compliance calibrator
• Performed extensive role redesign for the IT and business users in the system.
• Every day interaction with business users for approvals and resolving issues.
• Day to day interaction with Basis and Technical teams for technical fixes and resolutions.
• Worked with Audit to establish new security policies and procedures.
• Maintained role owner database.
• Executed reports in production to restrict create/change access for people who have configuration access in development.
• Performed daily security checks, monitored unsuccessful logons, inactive users and locked inactive users in Production system
• Managed transactional security (SU24)
• Performed mass changes to user master records using SU10, QTP and LSMW scripts
• Simplified User Groups for easy administration & maintenance
• Supported users for the security issues in all functional modules
• Worked directly with users, functional analysts, and developers to identify security requirements and translate requirements into Security Designs

Environment: ECC 5.0, ECC 6.0, CRM 5.0, NetWeaver 5.0, BI 7.0, SCM/APO/SRM 5.0, Solution Manager, GRC AC 5.3, GRC AC 10.0, IDM, GTS.

Confidential, St. Louis, MS. & Downers Grove, IL

SAP Security Administrator

Responsibilities:

• Developed Security roles for implementation of NetWeaver 7.0
• Worked extensively on BI 7.0 security, Analysis Authorizations, RSECADMIN
• Supported CRM security and its portal integration.
• Working on Enterprise Portal security, iViews, Roles, Worksets, assigning iViews to roles and user, roles and groups maintenance.
• User Maintenance using CUA, and Global Composites in the CUA.
• Created and maintained new ECC roles, trouble shooting, extracting data from the desired tables and analyze data for presentation.
• Supported migration, new development, role testing, cutover activities during the implementation stage.
• Handled Virsa, SOD and Fire Fighter IDs and requests.
• Trouble shooting report errors in BI and Portal.
• Expertise in working with Producer, Consumer and Federated Portals.
• Good understanding of BI Workbench, Cubes and Multi-Cubes, Queries and Reports in BI.
• Used QTP to run test scripts.
• Handled OSS requests.
• Worked on LDAP Active Directory.
• Handled transports creation and movement,

Environment: ECC 6.0, NetWeaver 5.0, BI 7.0, CRM 5.0, ESS/MSS, HR, CUA, Solution Manager.

Confidential, White Plains, NY

SAP Security Administrator

Responsibilities:

• Worked on Implementing SAP CRM project from the start.
• Created and configured CRM roles.
• Created Security Matrices and interacted with the client management team for inputs.
• Created Business Partners assign them to org levels.
• Trouble shooting BI report errors, good knowledge on Cubes and Multi Cubes.
• Developed, created and maintained security profiles and roles using profile generator.
• Troubleshooting authorization problems by setting up analyzing system trace and authority check.
• Implemented role based security based on segregation of duties for SOX compliance.
• Generated various reports using SUIM to provide customers with detailed list of users in their controls.
• Mapped composite roles to the end user positions and derived roles for various business units in the company.

Environment: SAP CRM 5.0, ECC 6.0, BW 7.0, and Solution Manager.

Confidential, NJ

SAP Security Administrator

Responsibilities:

• Info-Object level roles, reporting authorizations, security, BW web reporting are supported
• Studied the Organization structure, jobs, roles and the segregation of duties matrix for the Security developed in SAP and handled SOD conflicts for Sarbanes-Oxley Compliance.
• Worked with profile generator (PFCG) in creating roles, profiles, composite roles, derived roles, and global roles
• Constructed job roles in accordance with departmental standards, testing structural construction of roles, assignment of authorizations to technical team users in the non-production clients, performed segregation of duty analysis of existing and new roles
• Created and maintained roles on multiple system / clients.
• Troubleshoot security/authorization related problems using SU53, ST01, RSSM (for BW) and SUIM

Environment: SAP R/3 4.6D/4.7, SAP HR, BW, ESS, SRM, SCM APO.