SUMMARY

• Highly competent SAP security specialist with 7+ years of IT experience in which five (5) years of SAP Basis Security experience with leading multinational companies.
• Involved in complete ERP security implementations, multiple enhancements and production support in mySAP ERP ECC 6.0, 5.0, Net weaver 2004s, SAP R/3 4.7, 4.6C lifecycles.
• Installed and Configured Solution Manager 4.0/7.0. Configured System Monitoring, Maintenance Optimizer, EWA (Early Watch Alerts) reports, CHARM.
• Experience in applying Support Packages SPAM/SAINT, Upgrade of kernel patches, applying add - ons and Conflict Resolutions Transports (CRT) in an Industry Solution (IS) Environment.
• Experience in CCMS, Performance Tuning, Client Copy, Workload Analysis Homogeneous System Copy, Spool Administration, Scheduling database backups, Add-on Installation and Support Packages.
• Upgrading SAP R3 4.6C systems to ECC6, Upgraded Solution Manager 3.2 to SM 4.0
• Designed, implemented, and managed Change and Transport Management systems over complex landscapes with multiple applications.
• Comprehensive experience at maintaining User maintenance, Activity group/Role maintenance using profile generator (PFCG), security TCODES and Security redesign strategy.
• Strong experience at designing security for SD, BW and CRM sales modules
• Creating Business roles for the CRM Web Client, authorizing interface components, Business transaction, troubleshooting in the CRM Web Client.
• Knowledge at mass user creation and maintenance and using Computer Aided Test Tool (CATT) scripts.
• Strong Experience and knowledge of security procedures for client user administration and central user administration (CUA).
• Configured CUA based on LDAP (light weight directory accesses protocol) and SAP ALE functionality.
• Assist in expanding the SAP Governance, Risk, and Compliance solution to support BW roles.
• Experienced in using CATT and ECATT Scripts
• Expert in Worked as part of SOX team for ECC & BI and assisted in elimination of Segregation of Duties (SOD) conflicts inherent within the SAP security model.
• Analyzing and processing SOX issues.
• Proficiently implemented and maintained GRC & VIRSA tools
• Strong knowledge of monitoring and audit security controls to safeguard the integrity and access to the SAP systems.
• Strong at analytical trouble shooting and debugging SAP security problems using system traces like ST01, SU53 and problem-solving skills with the ability to prioritize and handle multiple tasks.
• Process configuration of the environments for testing, creation, and maintenance of TEST IDs, process defects in test environments and supporting change requests in production environment.
• Creation of Custom Authorization Objects for BI Reporting Roles (RSECADMIN).
• Worked with developers and functional team leads to remove the high level access from production environment for objects S TABU DIS, S TABU CLI, S PROGRAM, S DEVELOP
• Experience in installation, administration, security and troubleshooting/support of SAP systems
• Knowledge in Enterprise Portal, XI.
• Managed technical environment by implementing development, test and production environments for new installations and system upgrades.
• Responsible for SQL Server database administration and management
• Have excellent Communication, Team, Interpersonal and judging skills.

TECHNICAL SKILLS

Operating system: Windows 2003, UNIX, AIX, SOLARIS, HP UNIX LINUX.

DBMS: Oracle 10g/9i, MS SQL Server, RDBMS, DB2.

SAP SYSTEM: Netweaver 700, 710(latest), Netweaver 2004S, ECC6.0 SAP R/3 4.7, 4.6C,4.6B, BI 7.0,CRM4.0/5.0,SCM 4.1,SRM 7.0,(XI, BI,EP 7.0) MySAP 2004, 2005., GRC

Configuration Tools: J2EE, SDM, Config tools, VA.

PROFESSIONAL EXPERIENCE

Confidential, Minneapolis, MN

SAP Basis Security Administrator

Responsibilities:

• Implemented and configured Solution manager, Support Desk, and Solution Optimizers, CHARM, SMD, Central Monitoring, MOPZ, NWA, EWA, SLA Reporting.
• Monitored and analyzed Performance Problems using Workload Monitor ST03, monitor the system hourly using ST02, STO3 (R/3 Buffer) and ST06 (Operating System).
• Involved in the 24x7 Production Support.
• Responsible for daily security checks, monitoring unsuccessful logons, monitoring inactive users and locking inactive users in production system.
• Configured CUA based on LDAP (light weight directory accesses protocol) and SAP ALE functionality.
• Assist in expanding the SAP Governance, Risk, and Compliance solution to support BW roles
• Maintain and Monitor operation modes (RZ03, RZ04, SM63).
• Maintain and monitor logon groups (SMLG, ST07, AL08).
• Maintain and monitor RFC connections (SM59).
• Implemented SAPNOTES to resolve user problems.
• Client maintenance including client creation, local client copy, remote client copy and client export/import.
• Creating Business roles for the CRM Web Client, authorizing interface components, Business transaction, Troubleshooting in the CRM Web Client.
• Expert in analyzing and processing SOX issues
• Proficiently implemented and maintained GRC & VIRSA tools
• Maintenance of R/3 profiles parameters, monitor short dumps and system logs. Creation of operation modes for changing user requirements.
• Worked on Solution Manager 4.0 for the generating of Early watch reports for the client etc.
• Extensively worked on Solution Manager 4.0 for the monitoring purpose and generating keys for the new installations.
• Used BRTOOLS and BO tool to add data files, Monitor space utilization, monitoring file systems, Log monitoring, file system checks, create and rebuild indexes.
• Created, Managed and Release Change Requests for transports using transaction codes SE01, SE03, SE09 and SE10.Resolved TMS problems (STMS, SE03).
• Transporting the requests from DEV to TST and from quality to PRD servers using Tp (transport control program) or STMS Transaction and verifying through transport logs.
• Configured output devices using SPAD, Spool management activities using SP01, authorizations of spool services, and troubleshooting.
• Applying support packages to maintain the system up-to-date.
• Scheduled jobs in background to cleanup spool request, dumps.
• Monitoring R/3 system with CCMS Monitoring short dumps, system logs, db alerts, SQL traces, Lock entries, and Oracle sessions.

Environment: SAP Net weaver 2004, ECC 6.0, HP UNIX 11.31, Oracle 10 g, GRC

Confidential, Greensboro, North Carolina

SAP Basis Security Analyst

Responsibilities:

• Installed and configured Solution Manager 4.0 with satellite systems and configured early watch reports in Solution Manager 4.0. Preparing and maintaining installation documentation. Setup smart RFC s from Solution Manager 4.0 to the entire landscape.
• Experience with Role based security design (role creation, transports and organization levels).
• CUA administration and maintenance experience.
• Creation of Users and maintain Authorizations Profiles.
• User locks and password maintenance.
• Knowledge of AIS (Audit Information System).
• Experienced in using CATT and ECATT Scripts.
• Worked as part of SOX team for ECC BO & BI and assisted in elimination of Segregation of Duties (SOD) conflicts inherent within the SAP security model.
• Excellent communication and follow-up skills in gathering requirements from functional teams and data owners for role development.
• Proficient in troubleshooting and handling user issues.
• Configured CUA based on LDAP (light weight directory accesses protocol) and SAP ALE functionality.
• Created over 50 customized end user roles and menus, plus hundreds of “mini-roles” to allow for low-level modular access control.
• Experience and knowledge of security procedures for user creation, maintenance and migration in client-specific user administration model and central user administration (CUA).
• Created R/3 transactional i-views on SAP Portal and configured Single Sign on login and Integrated R/3 security with Portal Security.
• Developed and documented security policies and procedures, user maintenance, activity group and role maintenance using profile generator.
• Experience in working with Transports (STMS) in transporting roles between Development, QAS and Production R/3 systems and users.
• Performed Client copies and deletes in Sandbox, Development and .
• Experience in defining background jobs, scheduling and maintenance, modifying, deleting and analyzing the jobs and regularly monitoring the job logs and the job status.
• Expert in Client Administration Client Creation, Client copy, Client export, Remote Client Copy, Client Deletion, Securing Clients and Assigning Logical System to client.
• Excellent analytical, problem solving and time management skills.
• Strong Knowledge of TCP and IP protocols, System Security and extensive experience in troubleshooting network problems.

Environment: ECC 6.0, HP UNIX 10, Oracle 10g. GRC

Confidential, Pittsburgh, PA

SAP Basis Security Analyst

Responsibilities:

• Collaborate with the SAP Security Lead and Organizational Alignment team to design SAP ECC and Business Warehouse (BW) roles and naming conventions for end users.
• Design central monitoring and alerting system in Solution Manager4.0
• Extracting statistical data from the satellite systems & Setup Early Watch Alerts (EWA) reports.
• Configure eCTS within Change Request Management (ChaRM) of SM4.0 (SPS12).
• Work closely with the BW team to leverage the SAP ECC Security model.
• Assist in expanding the SAP Governance, Risk, and Compliance solution to support BW roles.
• Serve as the security POC for all security related defects and primary owner of all new BW security requirements.
• Provide SAP security related fixes for System Test, Quality Assurance Test, and User Acceptance Test.
• Create SAP roles in the development, test, and environments using Profile Generator (PFCG).
• Responsible for creating user IDs based on a standard naming convention, setting up of new users, modifying user accounts, resetting passwords, locking and unlocking user IDs.
• Support SAP environment build and administration activities for development, test and environments and aid in the development of architecture design deliverables.
• Develop derived roles for FI by converting certain fields to organizational level fields.
• Trace and troubleshoot user authorization errors.
• Mentor and provide guidance to new project team Security Analysts on the authorization concept in both SAP ECC and SAP BW and BO.
• Identify and document issues and risks as needed and submit weekly status reports to upper level management.

Environment: ECC 6.0, HP UNIX 10, Oracle 10g.

Confidential, Oak Brook, IL

SAP Basis - Security Administrator

Responsibilities:

• Upgrading SAP R3 4.6C systems to ECC6, Upgraded Solution Manager 3.2 to SM 4.0
• Involved in SAP implementation life cycle
• Participated in designing, writing and implementing security related standard procedures for the user administration, roles and profile generation
• Created single role, composite role and derived role as per organizational structure
• User maintenance on day-to-day basis
• Extensively worked on Authorization objects, fields, authorizations and authorization profiles in profile generator (PFCG)
• Identified missing authorizations with use of SU53 and maintained them manually in PFCG after seeking the Managers approval.
• Transported the generated roles and profiles using SAP transport management system and handled normal and mass generation of roles and transport of roles
• Performed unit testing, positive and negative testing on user accounts to ensure the appropriate access levels on created roles
• Analyzed user related information including roles and profiles, by utilizing transaction SUIM
• Creation of Custom Authorization Objects for BI Reporting Roles (RSECADMIN).
• Configuring and Implementing Central User Administration (CUA) for DEV, QA (Except PROD).
• Creating and maintaining of User IDs in CUA.
• Creating requests for SAP OSS IDs.
• Applied OSS notes in order to correct profile generator, security transactions, and security report bugs and made source code corrections to run background jobs.

Environment: ECC6.0, Windows 2000, Oracle 9i

Confidential, Raleigh, North Carolina

SAP Basis - Security Administrator

Responsibilities:

• Involved in SAP implementation lifecycle
• Worked with developers and functional team leads to remove the high level access from production environment for objects S TABU DIS, S TABU CLI, S PROGRAM, S DEVELOP.
• Extensively worked on custom and standard authorization objects, fields, authorizations and authorization profiles
• Worked with troubleshooting and debugging security issues using system trace ST01, SU53
• Assisted the team in creating of global templates for roles
• Performed Audit for the Authorization Profiles and Activity Groups created by Authorization Profile Administrators
• Set-up SAP CTS/TMS and Carried out SAP transports on a regular basis
• Document the procedure for all SAP tasks, beginning with creating the SAP and OSS ids, activity groups, transports, security daily task list, sensitive BASIS object, security standard naming conventions for all functional areas.
• Installed and configured Windows Server 2003 and SAP R/3 (Central Instance, Database Instance and GUI)
• Installed and Set up SAP 4.7 Enterprise IDES System on Windows 2000 for the purpose
• Installed SQL Server and performed SQL Database Administrator operations and generated timely reports for the user requirements

Environment: SAP 4.7(Enterprise), Windows 2000, SQL Server 2000

Confidential, Indianapolis, IN

SAP Basis - Security Administrator

Responsibilities:

• Authorization objects activities/values/authorization groups
• Roles, role derivations, Responsibility
• User id assignments
• Determination of necessary authorizations to match business requirements for all modules
• Set up the Profile Generator and generated user profiles for FI, CO, MM, PP, SD and QM users.
• Resolving Securities Issues using PFCG and User Management
• Solving problems related to Single Sign-On
• Setup Password restrictions, maintained USR40, and other data such as Start menu
• Used Profile Generator to effectively restrict user access to specific Business Areas and setting up of profile parameters and loading of USOBT C and USOBX C tables using SU24.
• Used transactions such as SUIM, SU53 to troubleshoot problems
• Using System trace to record authorization checks in different sessions using ST01
• Perform regular system audits using SM19 and SM20 to detect deviations of established procedures, role mapping, and unauthorized system activity and report findings to management.
• Analyzing and evaluating the technical security requirements
• Creating transports and transporting objects between clients and R/3 systems.
• Constantly interacting with offsite team, thereby maintaining a smooth flow of information between the offshore and onsite team.
• Creation of Manual profiles.

Environment: SAP 4.6, Windows 2000, SQL Server 2000

Confidential

SAP Basis Administrator (Support)

Responsibilities:

• Installed development server using the system copy dump taken from production server from main site.
• Involved in doing required post installation activities on the SAP R/3 servers.
• Carried out kernel upgrade in all systems.
• Configured the transport management system.
• Performed daily transports between R/3 systems.
• Setup R/3 profile generator (PFCG), gathered requirements about user activities and planned security procedures.
• Imported instance, default and startup profiles of active servers.
• Changed the system profile parameters if required.
• Performed client administration activities like creation of clients, deletion of clients, remote copy of clients and locking clients.
• Created users and assigned profiles and authorizations to them.
• Configured Transport Management System.
• Performed regular monitoring of system logs and ABAP short dumps.
• Provided logon group maintenance.
• Performed operation mode configuration.
• Tuned the database performance.
• Applied OSS notes for various problems.
• Reorganized table spaces due to client deletion as well as fragmentation problems.
• Configured all type of printers using spool administration.
• Created CATT Scripts for various activities such as creating mass users, deleting mass users, renaming users
• Downloaded and applied hot packages to the system.
• Set up background processes/jobs.
• Performed system monitor, alert monitor, workload and buffers.
• Performed database backup scheduling using DB13.

Environment: SAP 4.6C, SAP BW 3.0, Oracle 8.1.7, 7.x, HP UNIX