SUMMARY:

• 11+ years of total IT experience with 9+ years of client Confidential and Confidential experience in SAP Security & SAP GRC Access Control of 5.2, 5.3, 10 and 10.1 (Access Risk Analysis, Access Request Management, Emergency Access Management and Business Role Management).
• Comprehensive understanding of SAP Security, SAP GRC, Network administration and System administration.
• Successfully managed and executed GRC Access Control & SAP Security Implementation, Roll out, Upgrade & Support projects.
• Successfully managed the execution of GRC Access Control project with complex team structure involving multiple vendors.
• Develop/maintain/Implement SAP GRC Business Roles and Positions for multiple SAP platforms
• Work closely with “IT” partners and Business Process Owners, identifying business needs and system requirements in evaluating the requirements for GRC Access Control & SAP Security implementation and roll out projects
• Expertise in providing GRC demo to client, GRC configuration/setup and supporting the tool.
• Expertise in managing technical and functional activities and proficiency in coordinating with the clients, enhancing their process operations and identify opportunities to reduce service incidents overall L3 escalations.
• Keep up to date of and advise management regarding emerging business needs of IT solutions, Emerging technical developments and best practice to improve the organization.
• Partner with other IT Teams to maintain regulatory compliance for SAP GRC keeping the SAP systems audit compliant and support audit team for generating audit reports as per the audit rules provided by internal/external auditors.
• Implements all new/changed SAP GRC master d Confidential and recertifies required master d Confidential for audits.
• In depth understanding of regulatory, manage audit discussions (internal and external), experience in internal Controls for Sarbanes Oxley tasks (SOX), including risk assessment, annual planning, control review, testing tracking/re - performance and remediation status updates.
• Hands on execution and generation of User Access Reviews/Recertification for multiple platforms & ensure all remediation is complete and implement security process and procedures.
• Experience in Automatic Profile Generator (PFCG), User Administration, Central User Administration (CUA), Authorization object maintenance, Problem analysis and troubleshooting, SAP GUI, Role transport, RSECADMIN, Auditing, Segregation of Duties (SOD) and Sarbanes-Oxley Compliance etc.
• Worked on testing tools like HP ALM, HPQC, Mercury tool (Quick Test Professional).
• Expertise in handling support and project simultaneously as well as offshore and onsite model.
• Participated in initiatives involving documentation, solution, strategy, estimations, tool development for automations
• An effective communicator with excellent relationship, interpersonal skills, strong analytical problem solving, flexible with working hours and organizational abilities.
• Ability to plan, organize and track to completion project work of self and others. Ability to prioritize and ‘multi-task’ concurrent requests and initiatives with minimal supervision

TECHNICAL SKILLS:

• HPQC: and HP ALM testing tools
• Remedy 5.5 and Remedy 7.0 - Tool used for Incident and change management
• Tool to create scripts for automating testing along with automating requirements involving huge efforts.
• SOLMAN Service desk and CHARM for creating Service Request and Change Request.
• DOCSPACE: - tool used for documenting and approval.
• Sharepoint: - Tool that is used to store document and track documentation.
• SDLC: - System Development lifecycle tool for JnJ
• CUA: (Central User Administration) - Managing users of across multiple stacks through a central system

PROFESSIONAL EXPERIENCE:

Confidential, New Jersey

SAP GRC Technical Lead

Responsibilities:

• Technical Lead technical project team for roll out to different platform/regions and managing GRC 10.1 upgrade.
• Responsible for managing the technical delivery of complex project involving multiple teams.
• Managing the solution Manager Incident and change request for support activity.
• Worked on GRC 10 to GRC 10.1 upgrade and upgrading GRC plugin all the platform with GRC.
• Publish weekly/monthly report to client to showcase achievements, project status and issues that occurred during the month.
• Additionally, working on implementing UAR (User Access Review) automation through GRC 10.
• Worked on to Onboard 50+ Production systems with multiple platform in GRC AC 10.1 with current setup.
• Uploading/changing the ruleset based on the feedback received during the project roll out and existing platform.
• Maintain/update the Organizational value, Mitigation Control, Firefighter ID Owner, controller and approver in BRF+.
• Different type of role upload, Mass Mitigation uploads for user and role in GRC.
• Troubleshoot any issue faced by user or request failed to auto-provision.
• Weekly meeting for each platform to discuss on the plan and guide them to prepare master d Confidential for roll out.
• Troubleshoot any issues faced during the unit testing, System testing and UAT during roll out.
• Work with basis for plugin installation in each backend application.
• Prepare action plan technical activity and make sure all deliverables are met during cutover activity and go-live.
• Manage/Update project plan for different roll out and provide status to client.
• Work on ideas to improve the support structure for reducing costs & improving reliability for the customer.
• Worked in N+1 environment of GRC to migrate GRC Dev and QA to another server.

Confidential

SAP GRC Technical Lead and GRC AC SME

Responsibilities:

• Responsible for periodically reviewing the project status and reporting to management.
• Worked with offshore and onsite model for Implementing this project. Leading the technical team from Onsite.
• Setup MSMP for new/change request, unlock, firefighter and non-sap application with standard or customized BRF+ rules.
• Created various types of rule (BRF+) including Initiator rule, agent Rule, Routing Rule and Notification Variable Rule through SE61.
• Worked with developer to create custom Function Module based BRF+ rule.
• Workflow setup for various processes ID such as Access Request, Control Assignment, Control Maintenance, Firefighter Log Report, function and Risk Approver.
• Worked on uploading Business role and Technical role (single role, derived role, composite role) in GRC NWBC.
• End to End configuration of Centralized Firefighter/EAM and log setup.
• Worked with basis to setup LDAP for GRC 10 and TMSADM setup for transport path.
• Worked with IT teams for technical requirements and design documents, establish specific solutions, and leading the efforts including configuring and testing that culminate in client acceptance of the results.
• Utilize in-depth knowledge of functional and Technical experience in SAP GRC and other leading-edge products and technology in conjunction with industry and business skills to deliver solutions to customer.
• Perform documentation based on Confidential & Confidential SDLC requirements
• Worked with stress/load testing team to measure the performance of system with maximum load before go-live.
• Go-Live and support the application.
• Lead the team for reporting & resolution of hyper care issues.
• Perform execution and generation of User SOD/SA review and Recertification for multiple platforms & ensure all remediation is complete during support phase of the project.

Confidential

SAP GRC Project and Support Lead

Responsibilities:

• Execute Installation & Post Installation of SAP GRC Access Control 5.3 and 5.2
• Worked with the BASIS team for the installation of Real Time Agent in the back end servers
• Work with the client to gather the requirements & expectations with GRC Access Control Implementation
• Understand the existing processes in place and propose & map solutions in GRC Access control 5.3
• Work with the client in preparation of blueprint design document
• Designed & created custom roles in SAP User Management Engine of GRC 5.3 and 5.2.
• Carry out configuration steps for below components of GRC Access Control 5.3 as per the blueprint documentation
• Risk Analysis & Remediation
• Superuser Privilege Management
• Compliant User Provisioning
• Enterprise Role Management
• User Access Review
• Troubleshoot errors aroused during Integration & End User testing
• Maintain documentation for issues log, transport log, design, user training.
• Carry out cutover tasks prior to GRC Access Control GO-Live
• Go Live & Support the application
• During support, tracking issues and working on risks associated with the support. Prepare mitigation plans for the risks identified.
• Managing the team activities & work with the team members for the resolution of issues reported through Solution Manager Service Desk tool.
• During support work on master d Confidential and perform enhancement based on requirement.
• Participated and executed multiple projects within Confidential and Confidential

Confidential

SAP Security Team Analyst/Consultant

Responsibilities:

• Conduct weekly meetings with client to present the report on progress of support and apprise the client with any issues. Discuss the areas which need to be improved for the benefit of the Organization.
• Ensure that Quality activities are being completed for internal audit compliance.
• Provided audit logging details through the use of SM18, SM19 and SM20.
• User Id management: Creation/modification of users and troubleshooting authorization issues.
• Authorization management: Designing new roles, creation/modification of roles. Updating SU24 values based on requirement. Creating custom transactions and objects.
• PFCG Role: Worked on creating/deleting single role, parent role, derived role and composite role.
• Transported roles between clients within R/3 system and between R/3 systems.
• Used System Trace (ST01) and SU53 to resolve user authorization issues and to solve them in Profile Generator.
• Solving the security tickets within their resolution time frame SLA (Service Level Agreement).
• CUA: User provisioning through CUA for their vast landscape of R3, BI and PI.
• Used analysis authorization concept for BI 7.0.
• Worked extensively in RSECADMIN creating analysis authorization objects as per the requirements of the business.

Confidential

Network/Customer Support Engineer

Responsibilities:

• Configuring, Installation, Troubleshooting and Maintenance of Router and Switches.
• Designing, implementing, supporting networks and Maintaining, updating the LAN and WAN diagrams of the site.
• Coordinating Remote installation and troubleshooting of L2 calls.
• Used to co-ordinate internal Network related issues with our own central Netwrok Team

Confidential

Network Administrator

Responsibilities:

• Deploying & upgrading software, managing applications on a local computer.
• Providing day to day troubleshooting support Hardware and Software Malfunctions.
• Managing server application remotely and security products like antivirus and firewalls.
• Implementing LAN & WAN and configuring TCP/IP.