OBJECTIVE: SAP Security Consultant - Application Architect

SUMMARY

• Over 11 years of experience in SAP Security Consulting and over 20 years in IT
• Leaded and participated in global SAP designs and implementations
• Established security strategies and security policy for global international companies
• Created proposals on client site with analysis on real systems and real data
• Developed tailored security and controls techniques in conjunction with system upgrade
• Highly motivated with the ability to work independently with minimum supervision and under pressure
• Created and supported RBAC model for IDM and integrated with GRC

RELEVANT SKILLS & EXPERIENCE

Companies worked for as SAP Security Consultant

• Confidential

Methodologies

• ASAP, SAP User - Centered Design (UCD), Centralized and De-Centralize Business Model, 3 Tier Approach Model, Position Based Model, Task Oriented Model, BW/HR Structural Authorizations Architectural Model, RBAC Model - IDM (SAP and none SAP Systems integrations)

Authorization Concepts, Strategies and Policies

• Created SAP security for SAP\'s integrated technology computing platform and for the technical foundation for many SAP applications since the SAP Business Suite. SAP security for SAP NetWeaver as a service-oriented application and integration platform
• Developed expert security knowledge for all NetWeaver releases: ECC, SAP Portal (EP) UME, HCM, HR, ESS/MSS, SolMan, SAP R3 (all modules), Global CUA , XI/PI, SRM, CRM 2007 (7.*), ACE , WEB UI, BI/BW, BOBJ, GTS, PSCD, TREX, SCM, PS, APO, ERP, PLM, SCM, MDM, MII, LPO, E sourcing,IS*
• Created security framework for CRM2007, Access Control Engine (ACE), Business Roles (Web UI), Technical Roles (ABAP), ACE General Parameters, ACE activation and Super Object Type set
• Designed Business Role (Web UI), ACE, ACE Design Report
• Created Utilities: B2C Call Center , B2B Work Center and Public Sector
• Proficient in BI, BW Analysis Authorizations tools such as RSECADMIN, RSD1, RSA1,RSRT
• Logged changes to analysis authorizations and other authorization-related activities: RSUDOLOG, RSECVAL_CL, RSECHIE_CL, RSECUSERAUTH_CL, RSECTXT_CL, RSECTXT_CL
• Developed position based security via indirect organizational assignments (Infotype 0001), context sensitive HR solution, structural authorization (Infotype 0017), HR Master Data with Context authorization object (P_ORGINCON)
• Leaded new RM@FS module internal SAP America and SAP AG development
• Participated as one of the authors in P_ADM_SEC_70 SAP AG security course development

Role Based Access Control

• Developed statement of the problem
• Created access control principles, implementation conversion programs and migration plans
• Implemented the pilot program, role based access control security AIX management overview
• Created RBAC in Oracle (RDMS), role based access model for SAP and policy-based authorization
• Developed business processes, business policies, RBAC pattern as an extension of the authorization pattern
• Delivered role-based access control (RBAC) pattern
• Implemented and modeled roles in ITIM
• Designed separation of duty in role based access control system pattern

Identity Management

• Created and designed a high-end identity management security solution
• Handled a large amount of repositories containing an unlimited amount of information with SAP NetWeaver Identity Center
• Built bulk operations from SAP NetWeaver IDM to SAP NetWeaver Application Server ABAP and SAP NetWeaver Application Server Java (UME)
• Designed event-driven SAP ERP HCM integration with SAP NetWeaver IDM
• Created flexible and scalable high-availability solution for work flow, provisioning, data synchronization and joining for a large number of data repositories
• Managed roles and privileges for SAP NetWeaver IDM across the landscape
• Integrated TIVOLI Identity Manager, UME and corporate LDAP

Governance Risk and Compliance – Access Control

• Prevented segregation of duties violations with GRC Access Control
• Built real-time compliance to stop security and control violations before they occur
• Identified and selected risks to manage, build, maintain rules and detect authorization risks
• Developed excellent knowledge in control tools such as Guardian-manual controls environment, ACE-Automatic Controls Environment, Approva Biz Rights,Virsa, GRC Access control, Process control and Risk control, RAR, ERM, SPM, CUP, Access Risk Analysis (ARA), Emergency Access Management (EAM), Business Role Management (BRM), Access Request Management (ARM), Business Rules Management Systems (BRM)
• Configured MSMP Workflows
• Designed extended integration with SAP GRC solution (SAP Business Objects Access Control)
• Participated in Segregation of Duties and Audit Compliance Standards

Governance Risk and Compliance –Process Control and Risk Management

• Created key concepts for SAP GRC Process Control such as security, time, workflow, record locking
• Developed solutions for internal controls management
• Created control documentation, evaluation, certification , reporting and analysis
• Developed a single framework to monitor and enforce rules , procedures instead of keeping data in separate "silos"
• Helped organizations to manage risk, reduce costs incurred by multiple installations and minimize complexity for managers

PROFESSIONAL EXPIRIENCE

SAP Security Consultant
Confidential, Tampa Florida
Sub-Contract with Deloitte / AJACE
June 2012 to July 2012

Principal Consultant- Security
Confidential - Anchorage, AK
February 2012 to April 2012

Managing Consultant - Application Architect SAP Security
Confidential - Jacksonville, Florida
September 2010 to February 2012

SAP Security Consultant – Montreal, QC
Confidential
Sub-Contract with Canada Corp and CSI
May 2010 to September 2010

Lead SAP SAP Consultant
Confidential– Regina, Saskatchewan
Sub-Contract with IBM ISM/MODIS
October 2009 to April 2010

SAP Security Consultant
Confidential-Atlanta, GA
April 2007 to April 2009

Senior SAP Security Consultant
Confidential- Ottawa, ON
April 2005 to July 2005

SAP Security Advisor
Confidential - Calgary Alberta
January 2005 to March 2005

Project Lead of Medical Designated (105 hospitals)
Confidential - Kingdom of Saudi Arabia
April 2004 to December 2004

SAP Security Analyst
Confidential - Kingston, ON
August 2001 to January 2004

Senior Systems Analyst-Technical Lead
Confidential - Foster City, CA
June 2000 to April 2001

Senior Embedded Programmer Analyst
Confidential - Carleton Place, ON
Member of Boeing
September 1999 to June 2000

Senior Programmer Analyst
Confidential - Toronto, ON
Sub-Contract with Alternative Resources Corporation and Subsidiaries
March 1999 to June 1999

Senior Research Officer - Problem 2000
Confidential
October 1998 to March 1999

Director of IT Technology
Confidential - Vinnitsa, Ukraine
September 1991 to January 1996

Technical Lead - Mainframes
Confidential-Vinnitsa, Ukraine
September 1984 to August 1991

Team Lead – Multiplexer Data Transmission Group
Confidential -Tashkent, USSR
August 1981 to August 1984

EDUCATION AND TRAINING

2001-SAP Security and Authorization Concepts Certificate, SAP, Montreal, Canada
1998-Programmer Analyst Diploma, Confidential, Kingston, Ontario, Canada
1987-Central Processor Internal Operations Certificate, Confidential, Kazan, Russia, USSR
1981-Master of Science Degree in Computer Science and Electronic Engineering,