We provide IT Staff Augmentation Services!

Sr. Sap Security Consultant Resume

2.00/5 (Submit Your Rating)
Hire Now

Summary :
SAP Security Projects : Global Implementation, Upgrade(SAP 4.6C/4.7 to ECC6.0), Go-Live(Canada, Japan...), Post Go-Live, Day to day Maintenance/On Going Support, Production support.

  • Experience in SAP Security Administration tasks : Coordinating and interacting with key business users, technical and functional consultants for gathering SAP Security requirements, Security design, SOD analysis, Role Development and Custom Authorization, Auditing, Testing, Transport roles/custom authorizations to different systems,Troubleshooting authorization error and create/maintain SAP Security process documents for SAP systems.
  • Experience in SAP Security Development For - SD, MM, PP, WM, HR/HCM, FICO, Procure-to-pay(P2P), OTC(Order To Cash), SRM5.0/Ebuyer/EBP, BW3.5/BI7.0, SCM/APO, CRM, PI/XI, MDM, ESS/MSS, Enterprise Portal7.0 and Solution Manager (Sol Man).
  • Experience in solving the SOD issues with regards to Sarbanes-Oxley(SOX) Compliance requirements & standards.
  • Experience in Implementation, Configuration and Administration of SAP GRC 5.3 Access Control Suite.
  • Experience in User Administration/maintenance in all SAP(CUA) and Portal(UME) Systems.
  • Hands on experience in Creating TestIDs and managing SAP security authorizations test defects using HP Quality Center(HPQC) for Unit Testing, Integration Testing and User Acceptance Testing(UAT).
  • Setting up training environment and help training team for every phase of implementation and future enhancement.
  • Hands on experience with LSMW and CATT/SECATT tools.
  • Support more than 10,000 users and 40 SAP client systems, good judgement to resolve/Escalate security problems/issues, performed first and second level(P1/P2 tickets) production support for SAP/Portal Systems.
  • Ability to plan, organize, work well under time constraints and to handle multiple tasks, perform tasks without constant supervision, help/train other security resources on activities, techniques & knowledge transfer.
  • Communication, Coordination, and teamwork within the team and end users.
  • Report to management on the status of project efforts and anticipating/identifying issues…etc.

    • Technical and Functional Skill :

  • SAP Versions : SAP 4.0x/4.6C/4.7, ECC5.0/6.0, mySAP 2004/2005/2006, Netweaver 2004s (ABAP & Java Stack)
  • SAP Module : HR, FICO, SD, MM, PP, PM, BW3x/BI7, Enterprise Portal7.0, SRM/EBuyer/EBP, CRM, SCM/APO,

    • PI7.0, XI3.0, MDM, ABAP, BASIS, SAP Netweaver Identity Manager(IDM), Business Objects(BOBJ).

  • User Management : CUA, SSO, LDAP, Active Directory
  • Virsa/SAP GRC Access Control Suite 5.x :

    • Risk Analysis and Remediation - RAR (Compliance Calibrator), Enterprise Role Management (Role Expert),
    Superuser Privilege Management (Fire Fighter), Compliant User Provisioning (Access Enforcer)

  • Change Management/Ticketing System Tool : Remedy, HP Service Center, Solution Manager-ChaRM, Clarity, Clarify
  • Testing Tool : Test Director 8.0, HP Quality Center 9.0(HPQC), Winrunner, QTP, Bugzilla
  • Office Tools : MS Office Suite, MS-Project, Acrobat Reader, MS Visio
  • Mailing S/W : MS Outlook, Lotus Notes

    • Professional Experience :


    Confidential,CA Sr. SAP Security Consultant Jan2012 - Till Date
    SAP/Technical Environment : Netweaver 2004s(ABAP/JAVA Stack), ECC6.0, MM, SD, PP, PM, FICO, BI7.0, BOBJ, Open Text, BPC.
    Description :
    The scope of the project was to implement SAP ECC Security and User Administration for SAP systems MM, SD, PP, PM, FICO, Treasury, Open Text, BPC, BI7.0 and BOBJ.
    Roles and Responsibilities :

  • Responsible for all aspects of SAP ECC Security Administration tasks including Coordinating and interacting with business, technical and functional consultants for gathering SAP Security requirements, Design/develop role, User Administration, transport roles/authorization, testing, setup security system parameter, generating analysis reports, troubleshoot authorization error and create/maintain SAP Security process documents for SAP systems.
  • Designed, developed and maintained Master and Derived roles and Secured roles by Organizational levels such as Company Code, Plant, Cost Center, Profit Center, Purchasing Organization etc. for MM, SD, PP, FICO, BI7.0, Solution Manager(Sol Man) and Enterprise Portal7.0.
  • Applied SAP Security policy / procedure / best practices and system controls to SAP systems
  • Used SAP Security transactions - PFCG, SU24, PFUD, SUPC, SUIM, SU53, SU56, ST01, SE09/SE10, RZ10, SE16...etc.
  • User Administration/Maintenance : Creating users, assigning roles to users, resetting password, locking/unlocking users, (SU01, SU10) in all SAP systems.
  • Setup TestIDs and managed SAP security authorizations test defects using HP Quality Center (HPQC) for Unit Testing, Integration Testing and User Acceptance Testing(UAT).
  • Setup training IDs for Business and end users
  • Prepared Project Plan for Go Live and Post Go Live activities
  • Troubleshoot user roles, tracing the users, security authorization objects and custom reporting authorization objects to debug/troubleshoot an authorization error, resolving the issue by giving required authorizations in SAP modules
  • Report to management on the status of project efforts and anticipating/identifying issues…etc.
  • Responsible for communication, coordination, and teamwork within the team and end users.

    • Confidential,CA Sr. SAP Security Consultant Feb2011 - Dec2011
    SAP/Technical Environment : Netweaver 2004s(ABAP/JAVA Stack), ECC6.0,MM,SD,PP,FICO,BI7.0,BOBJ, SRM, CRM, MDM, Enterprise Portal7.0, Solution Manager(Sol Man), CUA, LDAP, IDM, Lotus Notes, HP Quality Center (HPQC).
    Description :
    The scope of the project was to develop SAP ECC/BI Security and User Administration(CUA) for SAP systems HCM, MM, SD, PP, FICO, BI7.0, BOBJ, SRM, CRM, Solution Manager(Sol Man) and Enterprise Portal7.0. And also Creating and assigning FireFighterIDs to FireFighter Users, Creating and assigning controller to FireFighterIDs in Production systems.
    Responsibilities :

  • Responsible for all aspects of SAP ECC and BI Security Administration tasks including Coordinating and interacting with business, technical and functional consultants for gathering SAP Security requirements, role development creating analysis authorization, User Administration, testing, transport roles and authorizations, Security system parameter validation, generating analysis reports, troubleshoot authorization error and create/maintain SAP Security process documents for SAP and Portal systems.
  • Designed, developed and maintained Master and Derived roles, and Secured roles by Organizational levels such as Company Code, Plant, Cost Center, Profit Center, Purchasing Organization etc. for MM, SD, PP, FICO, BI7.0, SRM, CRM, Solution Manager(Sol Man) and Enterprise Portal7.0.
  • Applied SAP Security policy / procedure / best practices and system controls to SAP systems
  • Used SAP Security transactions - RSECADMIN, PFCG, SU01, SU10, SU24, PFUD, SUPC, SUIM, SU53, SU56, ST01, SE54, STMS, SCC1, SE09/SE10, RZ10, SM18, SM19, SM20, SE16, SM30...etc.
  • BI7.0 Security, used BI Transaction RSECADMIN to create and assign analysis authorization by Characteristics, Attributes, Characteristics values, Hierarchies, Key Figure, Infoarea and Infoobject level, Infocube, ODS, PSA, Query, Infoproviders and Workbook for SAP BI Reporting users, BI users, SAP BI Administrators and Query Users.
  • Used transaction RSECADMIN for creating custom authorization objects and S_RS_AUTH for assigning authorization objects for BI query end user roles.
  • Used SAP GRC tool FIreFighter to Create FireFighterIDs and assign them to FireFighter Users(BI Technical, Basis/system administrators,...etc), Create and assign controller to FireFighterIDs in Production systems.
  • User Administration/Maintenance - Central User Administration (CUA) : Creating users, assigning roles to users, resetting password, locking/unlocking users, text comparison for child systems (SU01, SU10, SCUA, SCUL, SCUG, SCUM, RSDELCUA, SALE...) in all SAP systems.
  • Created TestIDs and managed SAP security authorizations test defects using HP Quality Center (HPQC) for Unit Testing, Integration Testing and User Acceptance Testing(UAT).
  • Troubleshoot user roles, tracing the users, security authorization objects and custom reporting authorization objects to debug/troubleshoot an authorization error, resolving the issue by giving required authorizations in SAP modules
  • Responsible for communication, coordination, and teamwork within the team and end users.

    • Confidential,NC Sr. SAP Security Consultant Aug2010 – Jan2011
    SAP/Technical Environment : Netweaver 2004s(ABAP/JAVA Stack), ECC6.0, MM, SD, PP, FICO, WM, BI7.0, P2P, SRM, SCM, APO, CRM, Enterprise Portal7.0, Solution Manager(Sol Man), CUA, LDAP, MS Outlook, Remedy, (HPQC).
    Description :
    The scope of the project was to develop role based SAP Security for SAP systems MM, SD, PP, FICO, WM, BI7.0, P2P, SRM, SCM/APO, CRM, Solution Manager(Sol Man) and Enterprise Portal7.0.
    Responsibilities :

  • Responsible for all aspects of SAP Security Administration tasks including Coordinating and interacting with business, technical and functional consultants for gathering SAP Security requirements, role development and Custom authorization, User Administration, Auditing, Testing, Transports, Troubleshoot authorization error and create/maintain SAP Security process documents for SAP and Portal systems.
  • Designed, developed and maintained Single roles, Composite roles, Master and Derived roles and Secured roles by Organizational levels such as Company Code, Plant, Cost Center, Profit Center, Purchasing Organization etc. for MM, SD, PP, FICO, WM, P2P, BI7.0, SRM, SCM/APO, CRM, Solution Manager(Sol Man) and Enterprise Portal7.0.
  • Applied SAP Security policy / procedure / best practices and system controls to SAP systems
  • Used SAP Security transactions - PFCG, SU01, SU10, SU24, PFUD, SUPC, SUIM, SU53, SU56, ST01, SE54, STMS, SCC1, SE09/SE10, RZ10, SM18, SM19, SM20, SE16, SM30...etc.
  • Analyzed all business roles and mapped them to transaction code according to business process requirements.
  • Modified existing roles accurately as per auditors recommendations.
  • Created TestIDs and managed SAP security authorizations test defects using HP Quality Center (HPQC) for Unit Testing, Integration Testing and User Acceptance Testing(UAT).
  • Created training IDs and help training team for every phase of implementation and future enhancement.
  • Troubleshoot user roles, tracing the users, security authorization objects and custom reporting authorization objects to debug/troubleshoot an authorization error, resolving the issue by giving required authorizations in SAP modules
  • Responsible for communication, coordination, and teamwork within the team and end users.

    • Confidential,GA Sr. SAP Security Consultant May2010 - Jul2010
    SAP/Technical Environment : Netweaver 2004s, ECC6, MM, SD, PP, FICO, HR, CRM, SRM, BI7.0, Enterprise Portal7.0, XI/PI, MDM, LDAP, MS Outlook, Remedy, SAP GRC 5.3 Access Control Suite.
    Description :
    The scope of the project was to develop role based security and user administration for SAP modules SD, PP, MM, FICO, P2P, APO, BI7.0, MDM, Enterprise Portal7.0. And implement SAP GRC 5.3 Access Control Suite.
    Responsibilities :

  • Developed Single roles, Composite roles, Master & Derived roles for SAP Modules –SD, MM, WM, PP, HR,FICO, APO, BI7.0, MDM, XI/PI and Enterprise Portal7.0, Solution Manager(Sol Man).
  • Designed/developed/maintained and enforce SAP security policies, procedure & naming convention standards
  • Implemented, Configured & Administered SAP GRC5.3 Access control components RAR, CUP, ERM and SPM.
  • Analyzed all business roles and mapped them to transaction code according to business process requirements.
  • Used SAP Security transactions - PFCG, SU01, SU10, SU24, PFUD, SUPC, SUIM, SU53, SU56, ST01, SE54, STMS, SCC1, SE09/SE10, RZ10, SM18, SM19, SM20, SE16, SM30...etc.
  • Used Enterprise Portal7.0 User Management Engine(UME) for creating Portal users & user groups, Assigned roles/user group to the users, Lock/Unlock Users, User Mapping in all SAP Systems, import/export users.
  • Used Remedy System for Incident and Change Management.
  • Troubleshoot user roles, tracing the users, security authorization objects and custom reporting authorization objects to debug/troubleshoot an authorization error, resolving the issue by giving required authorizations (SUIM, SU53,ST01) in different modules
  • Responsible for communication, coordination, and teamwork within the team and end users.
  • Monitor and report to manager on the status of project efforts, anticipating/identifying issues…etc

    • Confidential,PA Sr. SAP Security Consultant Jan2010 – Apr2010
    SAP/Technical Environment : Netweaver(NW) 2004s(ABAP & JAVA Stack), ECC6.0, MM, SD, FICO, PP, WM, P2P, OTC(Order To Cash), Enterprise Portal7.0, Lotus Notes, Solution Manager(Sol Man), SAP GRC 5.3 Access Control Suite.
    Description :
    The scope of the project was to implement new role based security for SAP modules SD, PP, MM, FI-CO, PP, MM, P2P, OTC SRM, BOBJ and Enterprise Portal7.0.
    Responsibilities :

  • Coordinating and interacting with business, project stakeholders, internal controls, technical (SAP configurator, developers, Basis) and functional consultants for gathering functional requirements, Security design, naming conventions and processes in compliance with the Sarbanes-Oxley(SOX) 404 act.
  • Designed, Developed and maintained Single roles, Composite roles, Master and Derived roles for SAP Modules –SD, MM, WM, PP, FICO, SRM, Enterprise Buyer/EBP, BI7.0, Solution Manager and Enterprise Portal7.0.
  • Used SAP Security Transactions – PFCG, SU01, SU10, SUIM, SU24, SU21, PFUD, SUPC, STMS, SCC1, SE09/SE10, RZ10, SM18, SM19, SM20, SE16, SM30...etc.
  • Enterprise Portal7.0 User Management Engine(UME) Administration –Creating Portal users/User Groups, Assigned roles to the users, Assigned Users to Usergroup, Lock/Unlock Users, User Permissions, User Mapping.
  • Created testing IDs and Managed SAP security authorizations test defects using HP Quality Center (HPQC) for Unit Testing, Integration Testing and User Acceptance Testing(UAT).
  • Troubleshoot user roles, tracing the users, security authorization objects and custom reporting authorization objects to debug/troubleshoot an authorization error, resolving the issue by giving required authorizations in SAP and Portal systems.
  • Responsible for communication, coordination, and teamwork within the team and end users.
  • Monitor and report to management on the status of project efforts, anticipating/identifying issues…etc

    • Confidential,CA SAP Security Offshore/Onsite Lead Dec2008 – Dec2009
    SAP/Technical Environment : Netweaver(NW) 2004s(ABAP & JAVA Stack), ECC6.0, MM, SD, FICO, PP, WM, P2P, BI7.0, SRM7.0/Enterprise Buyer/EBP, XI/PI, Enterprise Portal7.0, Remedy Ticketing System, Lotus Notes, Solution Manager(Sol Man), SAP GRC 5.3 Access Control Suite.
    Description :
    The scope of the project was to develop role based security for SAP modules SD, PP, MM, FI-CO, SRM7.0/EBuyer/EBP, BI7.0 and Enterprise Portal7.0. And also provide production support for existing SAP systems.
    Responsibilities :

  • Coordinating and interacting with business, project stakeholders, internal controls, technical (SAP configurator, developers, Basis) and functional consultants for gathering functional requirements, Security design, naming conventions and processes in compliance with the Sarbanes-Oxley(SOX) 404 act.
  • Designed, Developed and maintained Single roles, Composite roles, Master and Derived roles for SAP Modules –SD, MM, WM, PP, FICO, SRM, Enterprise Buyer/EBP, BI7.0, Solution Manager and Enterprise Portal7.0.
  • Used SAP Security Transactions – PFCG, SU01, SU10, SUIM, SU24, SU21, PFUD, SUPC, STMS, SCC1, SE09/SE10, RZ10, SM18, SM19, SM20, SE16, SM30...etc.
  • Developed and assigned BI analysis authorization (RSECADMIN) by Characteristics(Unit/Time/Technical), Characteristics values, Attributes, Hierarchies, Key Figure, Infoarea level, Infoobject level, Infocube, ODS, PSA, Query, Infoproviders and Workbook for SAP BI Reporting users, BI users, SAP BI Administrators, and Query users.
  • Enterprise Portal7.0 User Management Engine(UME) Administration –Creating Ebuyers, User Groups, Assigned roles to the Ebuyers, Assigned Users to Usergroup, Lock/Unlock Users, User Permissions, User Mapping.
  • User Administration/maintenance(CUA) : Configuration and Management of CUA, creating userIDs, assigning roles, resetting password, locking/unlocking users (SU01, SU10, SCUA, SCUL, SCUM).
  • Created testing IDs and Managed SAP security authorizations test defects using HP Quality Center (HPQC) for Unit Testing, Integration Testing and User Acceptance Testing(UAT).
  • Created training IDs and help training team for every phase of implementation and future enhancements.
  • Used Remedy System for Incident and Change Management.
  • Troubleshoot user roles, tracing the users, security authorization objects and custom reporting authorization objects to debug/troubleshoot an authorization error, resolving the issue by giving required authorizations in SAP and Portal systems.
  • Extensively worked on production tickets and requests, first (P1), second (P2) and third level support, fixing end user Roles/Profiles based on change requests created for breaks/fixes.
  • Provided knowledge transfer(KT) and training to off-shore/on-site resources for the entire security design/development and maintenance process.
  • Responsible for communication, coordination, and teamwork within the team and end users.
  • Monitor and report to management on the status of project efforts, anticipating/identifying issues…etc

    • Confidential,CA Sr. SAP Security Consultant Oct2008 – Dec2008
    SAP/Technical Environment : R/3, ECC6.0, MM, WM, SD, FICO, PP, HR/HCM, ESS/MSS, XI/PI.
    Description :
    The scope of the project was to implement role based SAP security and User administration(CUA) for SAP systems - SD, MM, PP, WM, FI-CO and HR/HCM.
    Responsibilities :

  • Gathering functional Requirements and redesign Security, naming conventions and processes in compliance with the Sarbanes-Oxley(SOX) act and analyzed all business roles and mapped them to transaction code according to business process requirements.
  • Redesigned, developed and maintained Single roles, Composite roles, Master and Derived roles for SAP Modules - FICO, SD, MM, WM, PP, HR/HCM, BI7.0, and Enterprise Portal 7.0.
  • Used Security Transactions – PFCG, SU24, SU21, SUIM, PFUD, SUPC, STMS, SCC1, SE09/SE10, RZ10, SM18, SM19, SM20, SE16, SM30, SU53, ST01...etc.
  • Created Authorization Groups to restrict the HR table access and review/correction of sensitive authorizations(S_TABU_DIS, etc.), including assignment of authorization for sensitive tables.
  • User Administration/Maintenance - Central User Administration - CUA : Setting up userIDs, assigning roles to the users, resetting password, locking/unlocking users (SU01, SU10, SCUA, SCUL, SCUG, SCUM).
  • Troubleshoot user roles, tracing the users, security authorization objects and custom reporting authorization objects

    • to debug/troubleshoot an authorization error for SAP systems for DEV, QAS and Prod. Environment.

    Confidential,GA SAP Security Offshore/Onsite Lead Dec2007 – Oct2008
    SAP/Technical Environment : ECC6.0, FICO, SD, MM, WM, HR/HCM, ESS/MSS, BW3.5/BI7.0, SRM 5.0, SCM/APO, Enterprise Portal7.0, LDAP, Lotus Notes, Remedy, Virsa GRC5.2.
    Description :
    The scope of the project was to upgrade SAP Security from SAP R/3 release 4.6C to ECC 6.0, Global SAP implementation/Go-Live (Canada, Japan and other countries) and ongoing support for SAP modules - SD, MM, PP, FI-CO, HR/HCM, BW3.5/BI7.0, SRM, APO, Enterprise Portal7.0.
    Responsibilities :

  • Worked on SAP R/3 version upgrades 4.6C to ECC 6.0 using transaction SU25.
  • Responsible for all aspects of SAP Security Administration tasks - Coordinating and interacting with business, technical and functional consultants for gathering SAP Security requirements, SAP security design, role development, Custom authorization, security system validation, User Administration, Testing, Transports, troubleshoot authorization error and create/maintain SAP Security process documents for SAP and Portal systems.
  • Designed, Developed and maintained Single roles, Composite roles, Master and Derived roles for SAP Modules HR/HCM, ESS/MSS, FICO, SD, MM, WM, PP and BW3.5/BI7.0, E-Buyer/SRM/EBP, APO and Enterprise Portal 7.0 for SAP Global (68 Countries) implementation.
  • Used SAP Security transactions - PFCG, SU01, SU10, SU24, SU21, PFUD, SUPC, SUIM, SU53, SU56, ST01, SE54, STMS, SCC1, SE09/SE10, RZ10, SM18, SM19, SM20, SE16, SM30...etc.
  • Used Enterprise Portal7.0 User Management Engine(UME) Administration for setting up portal users & user groups, Assigned roles/user group to the users, Lock/Unlock Users, User Mapping in Portal Systems.
  • Troubleshoot user roles, tracing the users, security authorization objects and custom reporting authorization objects to debug/troubleshoot an authorization error, resolving the issue by giving required authorizations in different modules
  • Used HPQC to manage testing defects for Unit Testing, Integration Testing and UAT.
  • Setting up training environment and help training team for every phase of implementation and future enhancement.
  • Provided knowledge transfer(KT) and training to off-shore and on-site resources for the entire security design/development and maintenance process.
  • Responsible for communication, coordination, and teamwork within the team and end users.
  • Monitor and report to management on the status of project efforts, anticipating/identifying issues…etc

    • Confidential,NJ SAP Security Administrator May2006 – Nov2007
    Description:
    The scope of the project was to provide day to day maintenance and production support for SAP modules - SD, MM, PP, FICO, WM, HR, BW3.5, SRM, PI, MDM, APO, Enterprise Portal.
    Responsibilities :

  • Performed first and second level production support for SAP module - SD, MM, PP, FICO WM, HR, ESS/MSS, BW3.5/7.0, Enterprise Portal, SRM, APO, PI and MDM for Development, QA, and Production clients
  • Responsible for Help Desk Activities - Password reset, New User Access, Test-system security issues, Validity date issues, other security issue and troubleshoot user roles, security authorization objects and authorizations to resolve security conflicts by using transactions SUIM, SU53 and ST01.
  • Responsible for technical support and resolution of security issues, trouble shoot R/3 security issues.

    • Confidential,INDIA Deputy Manager(SAP Security) Jan2000 – Apr2006
    SAP/Technical Environment : SAP 4.0x, SD, WM, MM, PP, FICO, HR, ESS/MSS, BW3.5, Portal, APO, SRM, MDM,
    CRM, Oracle forms and Reports, TOAD, SQL, ORACLE 8i/9i, Powerbuilder 6.5, Sybase11.5
    Responsibilities :

  • Responsible for all aspects of SAP Security Administration tasks including SAP security requirement gathering, SAP security/role design, role development and Custom authorization, User Administration, Auditing, Testing, Transport role/Custom authorization, Troubleshoot authorization error and create/maintain SAP Security documents for SAP Modules HR, FICO, SD, MM, PP, WM, BI/BW, SRM, APO, CRM and Portal for SAP implementation

    • Confidential, Software Engineer Aug1998 – Dec1999
    Technical Environment : Visual Basic 6 MS Access,ORACLE 8i/9i, SQL,FOXPRO,Sun Solaris,Linux, MS Office

    Additional Training :

    • ADM 940 (SAP R/3 Authorization Concepts) ADM 950 (SAP R/3 Secure System Management)
    • HR 940 (SAP HR Authorization Concepts) SAP GRC 300/310 Access Control 5.3 Suite

    Hire Now
    Report an issue

    We'd love your feedback!

    Privacy Policy
    Resume Categories