PROFESSIONAL SUMMARY: 

• Over 14 years of IT experience with 9 years of experience as SAP Security and Net Weaver, basis administration.
• Expert in configuring, implementing and trouble shooting Central User Administration (CUA). Breaking and reattaching Child systems from CUA.
• Hands on experience in collecting requirements and creating roles for various components like R\\3, CRM, SRM, SCM, BI, ECC, XI, Portals and EWM and industry specific Service parts planning (SPP).
• Expert in providing Role based security in compliance with SOD and SOX and company policies and procedures.
• Creating and updating various types of roles like Single roles, Composite roles and Derived roles using Profile Generator PFCG.
• Expert in Security administration in upgrading R/3 Basis to ECC 5. 0/ECC6.0 environment.
• Hands on working experience in using EP which is mapped to Active Directory –LDAP.
• Expert in designing and implementing structural authorizations in BW 3.7 and BI 7.0.
• Creating new roles and updating roles as per test reports using SU53 reports and Trace.
• Expert in developing Structural based authorizations for HR Management.
• Expert in portal administration integration with active directory BIZ talk .
• Trouble shooting in authorization problems connection issues.
• Expert in Identity management using Enterprise Portal ( EP 7.0)
• Configuring SAP Enterprise portal (EP7.0) with LDAP and CUA.
• Trouble shooting in SSO process especially with XI issues and other components.
• Participated in 24/7 call on support on rotation basis.
• Participated in implementing SOX and SOD .
• Expertise in implementing Federal regulations and Frame works like SOX, COSO, CobiT, ISO17999, and SAS70.
• Actively participated in implementing ITIL based on ISO2000 based on CCTA
• Applying OSS notes, Installing Service packs.
• Configuring Transport Domain controllers and transport domain members.
• Transporting Roles and ABAP objects from dev to other systems.
• Installing various components on NetWeaver platform and performing post installation process steps.
• XI administration including SLD, ABAP and Java Stacks .
• Trouble shooting using Visual administrator in XI Authorization issues.
• Applying various types of Notes in various types of components.
• Downloading and installing service packs on ABAP as well as JAVA Stacks.
• Actively participated Client administration and Transport management system.
• Configuring TMS domain controller and domain member systems.
• Expert in Configuring and trouble shooting Solution Manager problems, and in sending and updating messages to SAP.
• Participated in Client and Spool configuration.
• Knowledge about GRC tools.

COMPUTER SKILLS:

SAP-R/3(ECC6.0/5.0/4.7C/4.6C/4.0B/3.1I), XI/PI 7.0.; SCM 5.1/ 5.0; CRM 5.0,BW3.7,BI 7.0,EWM 5.1/5.0

Security Tools

GRC, VIRSA Compliance Calibrator and Firefighter

Software development methodologies

ASAP, SDM, RUP Waterfall, and Agile.

Languages

ABAP, JAVA2.0, C, C++, COBOL

Databases

DB2, Oracle 8.0, MS SQL Server 7.0/6.5, MS Access

IDE tools

Semantic Visual Café , Jbuilder

Hardware

OPERATING SYSTEMS

MS Office Tools

MS Excel, MS Word, MS Power point and MS Project

PROFESSIONAL EXPERIENCE:

Confidential, May’04 - current
Dearborn, MI. 
Lead SAP Security Administrator.

• Collecting and reviewing the specifications to create roles with functional teams.
• Worked on Profile Generator (PFCG) in creating Roles (Single, Composite and Derived) and profiles.
• Creating test users and assigned single roles to users to test and updating roles using authorization reports.
• Extensively used Central User Administration (CUA) for distribution and management of users and roles in a SAP population of 20,000+users.
• Major responsibilities includes review of existing Security infrastructure, Security Audit for Production systems and development and maintenance of R/3 security .
• Identified gaps in R/3 (SD,MM ) Security and ironed out generosities, designed pre audit checks, configured end user security profiles, used profile generator extensively.
• Responsible for process and control improvements, Security Improvements for R/3 .
• Effectively analyzed trace files and tracked missing authorizations for user access problems and inserted missing authorizations manually.
• Created User Groups for easy administration & maintenance.
• Creating various types of users depending up on requirement like Dialog, System, Service.
• Creating OSS ID and granting authorization permissions to OSS ID.
• Creating user ids for SAP and opening systems for SAP to connect remotely.
• Creating ICH users between SCM and CRM systems.
• Implemented CRM Structural authorizations..
• Creating BP accounts in Solution Manger.
• Mapping Customer accounts with OSS IDs.
• Creating emergency users in Production and giving access for limited time.
• Configured and Implemented Central User Administration (CUA) using nine step ladder model and made the User Administration process more efficiently and easy to handle.
• Identified a bug with CUA , worked with SAP and got a fix for distributing users, roles & profiles.
• Supported Complex system landscape with multiple SAP systems ( SandBox, Development, QA, Test, Con, Education(Training) Pre-production, Production),in huge architecture of Multiple environments( USA, Europe, Canada).
• Configuring SSO process.
• Responsible for Portal administration and identity management using Active director integration with BiZ talk server.
• Trouble shooting using SU53, ST01 and Visual administrator.
• Implemented SOD using GRC and Virsa and firefighter, tool.
• Supported users for the security issues in all functional modules.
• Created developer profiles for ABAP, security and configuration teams.
• Other functions included like password resets, and UN/locking user ids.
• Continuously improved security configuration to reflect best practices and to prepare for system audits.
• Participated in along with team in using GRC tools for finding security breaches and in taking remedial actions.
• Creating Emergency users for production issues and locking immediately after solving the issues encountered.
• Expert in structural authorizations in BW3.7, BI7.0 and HR.
• Manually processing the IDOC\'s that are not processed.
• Involved in all aspects of SAP security from setting up naming conventions for roles, profiles, test ids, custom objects and user groups to interact and work closely with various functional teams to collect role requirements, configuration of single and composite roles, transportation of roles and creation of test ids.
• CTS administration and development of procedures for managing daily corrections.
• Supported SAP implementation from security side providing access to users, resolved SAP access issues and determined the required access using traces.
• Created and modified Single Roles, Composite Roles and Derived Roles.
• User master maintenance including creating users, locking users, and roles assignment.
• Documented the work done on profiles, design, user access, profile maintenance, and security procedures.
• Configured Active Directory with EP (Enterprise Portal) for Single sign on process.
• Implemented SSO using EP 7.0.
• Participated in SSO configuration using EP7.0 .
• Hands on experience in Identity Management using UME ( User management Engine) using EP.7.0.
• Creating maintaining BI roles which are responsible in retrieving data and creating info cubes from non-SAP ( legacy) systems.
• Expert in Structural authorizations for BI using various auth objects for info cube and info area levels.
• Implemented SOX, SOD, ITIL, CobiT according to the business needs.
• Implemented ITIL based on ISO2000developed by BSI.
• Expert in trouble shooting in updating messages to SAP using Solution Manager.
• Generating object keys and developer keys.
• Actively participated in implementing SAS70( Statement on auditing Standard no. 70 developed bi ( AICPA)
• Transported the generated roles and profiles using SAP transport management system.
• Knowledge transferred to client\'s team on system maintenance and enhancement, periodic updates.
• Implemented SAP recommended CHARM process in creating, updating, roles and transportation from Dev to Other systems in entire landscape.
• Created custom authorization objects to meet business requirement around security restrictions.
• Documenting Naming conventions and Procedure to creating ICH users.

Environment: SAP-R/3(ECC6.0/5.0/4.7C/4.6C/4.0B/3.1I), XI/PI 7.0.; SCM 5.1/ 5.0;SRM,
CRM 5.0, BW3.7 /BI 7.0,EWM 5.1/5.0, AIX,SUSE, EP 7.0 ,Solution Manager, NPS; 
Active Directory; LDAP.

Redwood City, CA
SAP Security Consultant

Responsibilities:

• Created users, roles, profiles, groups in the system as per the requirement based on SOX standard. Supporting users in troubleshooting their security related problems on day to day basis.
• Assisted in planning overall security approach for project scope.
• Worked with functional teams to define security requirements.
• Handled Security development for all modules of SAP such as FI, MM, SD, PP and QM.
• Analyzed roles and mapped them to transaction codes according to business process.
• Created and generated profiles, authorization objects, object classes, roles and assigned to user master record.
• Monitoring and optimizing SAP System ,Operating System and database performance.
• Extensively used Profile Generator to create and modify roles and profiles for various modules.
• Transported profiles between clients within R/3 and between R/3 systems.
• Performed both transports and mass transports.
• Worked with CUA standard which makes more flexible to work with large number of users to update their roles and profiles across the landscape.
• Extensively worked with authorization objects, fields and profiles.
• Configured and maintain CUA connectivity to various development and production environments.
• Participated in implementing Cobit and SOX
• Worked in creating new roles and updating existing roles as per updated requirements using structural authorizations.
• Expertise in SAS70 implementation.
• Created roles in XI to exchange data from SAP to NonSAP, Non-SAP(legacy) to SAP systems.
• Actively implemented ISO17799 for the area of Information security.
• Established security testing procedures and tools.
• User maintenance - creation, deletion, lock, unlock, password management.
• Administered ID information for over 1,000 users
• Documented procedures for all SAP tasks, processes and controls.
• Performed trouble shooting on R/3 and BW security problems for project team and end users.
• Creating OSS IDs for developers and granting required authorizations.
• Opening SAP Systems for SAP as well as ICH users.
• Generating Developer keys and Object keys for users and their objects.

Environment: SAP R/3 4.6D,, BW 2.1/3.7 .HP

Educational Qualifications:

BS in Sciences
PGDCA (Post Graduate Diploma in Computer Applications)
ADST (Advanced Diploma in Software Technology)