OBJECTIVE:

I seek a SAP Security Administrator or Consultant position to utilize my 6 years’ experience in SAP Security (for ECC 6.0, Bobj, Hana, HR and GRC.) Good understanding of Sarbanes - Oxley (SOX) Compliance- Strategy management related to SAP business processes and Segregation of Duties (SoD).

PROFESSIONAL EXPERIENCE:

Confidential

SAP SECURITY administrator

Responsibilities:

• Developed ECC and BI/BOBJ roles.
• Updating SAP HANA and its components.
• Design and Implement HANA-BI Security
• Created and assigned repository roles to users
• Implemented Kerberos authentication and Single Sign-on for HANA and its ODBC and JDBC clients.
• Created custom roles in HANA DB for Developers, Modelers, Data Base Administrators and Business End User Roles
• Monitoring and Troubleshooting of SAP HANA using HANA Studio
• Implemented HR security
• Performed backup and recovery of SAP HANA Database using HANA studio.
• Troubleshoot of HANA Performance issues.
• Created a GRC BRFplus rule for an HR Trigger. This allowed Organizational Management updates to automatically create GRC requests which assign roles and create IDs in ECC and EP.
• Creation of custom authorization objects in GRC 10
• Developed SAP Security for the ECC, SCM, BW/BI, BOBJ, Portal/Java, GRC 10.1 systems
• Created GRC Connectors for ABAP and Portal systems.
• Created the Business roles (BRM).
• Created all roles and test IDs.
• Worked on Remediation of over 500,000 role and ID SOD violations
• Created and assigned GRC 10.1 Mitigating Controls
• Created and maintained IDs and Roles.
• Setup GRC 10.1 ARA Ruleset.
• Created and maintained Firefighter IDs.
• Maintained and assigned LDAP Groups for IDs used in Java/Portal environment.
• Create OSS IDs for IT team.

Environment: SAP R/3 6.0, BW, GRC 10.1, HR, CRM, SAP Solution Manager 7.0, HANA SPS12, Windows, Unix AIX, MaxDB 9

Confidential

SAP Security Consultant

Responsibilities:

• Developed SAP Security for multiple customers in their R/3, ECC, BW, and Solution Manager systems.
• Monitored Security ticket queue and resolved requests according to SLAs.
• Created scripts to create and maintain security in all SAP environments.
• Created and maintained IDs and roles for R/3.
• Design and Implement HANA-BI Security
• Created role and ID related reports based on SAP tables.
• Traced and researched authorization issues.
• Used SU24 to associate objects and their field values with transactions to reduce role maintenance.
• Used transaction PFUD to set up a daily job to do User Master Record comparisons.
• Created transports for roles. Moved transports using STMS and SCC1.
• Upgraded an SAP R/3 system's security from 4.5 to 4.7
• Assigned SAP License types to user IDs and created SAP License reports using transaction USMM.
• Created and maintained Security documentation for policies and procedures based on SAP Security best practices.
• Used CUA to administer user IDs.

Environment: SAP R/3 6.0, BW, GRC 10.1, HR, CRM, SAP Solution Manager 7.0, HANA SPS10, Windows, Unix AIX

Confidential SAP Security Consultant

RESPONSIBILITIES:

• Created and Assigned Roles/Profiles to Users.
• Created Authorizations and Profiles based on the Job Profiles.
• Created and Maintained User Master records.
• Checking the locked users and as per rules and releasing them.
• Monitored Security ticket queue and resolved requests according to SLAs.
• Created scripts to create and maintain security in all SAP environments.
• Created and maintained IDs and roles for the R/3 system.
• Used CUA to administer user IDs.
• Created role and ID related reports based on SAP tables.
• Traced and researched authorization issues.
• Used SU24 to associate objects and their field values with transactions to reduce role maintenance.
• Used transaction PFUD to set up a daily job to do User Master Record comparisons.
• Created transports for roles. Moved transports using STMS and SCC1.
• Supported Go Live of recent SAP R/3 implementation.

Environment: SAP R/3 6.0, SD, HR, CRM, SAP Solution Manager 3.2, Windows server, MS SQL

Confidential

Network Engineer

Responsibilities:

• Write scripts to resolve AOTS Remedy tickets issued by NOC team.
• Developed and implemented network test plans, protocols, and strategies
• Perform responsibilities of testing network performance as well as develop test case and plan for systems
• Responsible for generating charts and drafting technical reports, and documenting testing requirements
• Handle responsibilities of applying testing methodologies for testing various networking platforms
• Conduct network security vulnerability assessments using tools to evaluate attack vectors, identify system vulnerabilities and develop remediation plans and security procedures.
• Utilized Security Information and Event Management (SIEM), Intrusion Detection & Prevention (IDS / IPS), Data Leakage Prevention (DLP), sniffers and malware analysis tools.
• Create Change tickets on Avis Budget Change Management tool (Maximo)
• Perform quarterly security health checks on all network devices to make sure they adhere to security recommendations
• Implement network changes during change window.
• Attend change script review meetings.
• Upgrade device IOS for over 60 Cisco routers and switches.
• Conduct routine social engineering tests and clean-desk audits.
• Configure network devices for AAA
• Decommission network devices and erase their configurations.
• Upgrade access layer switches from Cisco 3750s to two Nexus 5k and four Nexus 2k.
• Weekly on-call rotation per month and perform any service assurance duties involved
• Carried out network monitoring and troubleshooting using Vitalnet and Wireshark
• Update of ticketing system (Remedy) with change ticket from Maximo
• Participate in a 24x7 on-call rotation.