SUMMARY

• 12 years of extensive experience in design, implementation & delivery of security solutions for various modules of SAP, GRC (including 12.0), SuccessFactors, HR Minimaster and Ariba.
• SAP security services implementation in HANA (including on Cloud), Fiori, Lumira, ECC, Business intelligence, Business process consulting and GRC.
• Worked on 4 full life cycle security implementations and GRC. Implemented S/4 HANA and Lumira (migration).
• Experience in security solutions for cloud environments - SAP, AWS and Azure
• Experience in identity management implementations and integration wif SAP, worked on SailPoint, SAP IAM and Azure AD.
• Designing to deployment of SAP security solutions to meet business needs. Expert in translating business needs into technical security specifications for all SAP related systems.
• Managed internal audit processes and worked wif external auditors to carry out audits.
• Expertise in GRC, SOX, segregation of duties and SAP best practices.
• Experience wif industry compliance standards and regulations such as GDPR, NIST, SOX, PCI, PII, HIPAA, SOC, CIS Benchmarks etc.
• Working noledge of SSO, Active Directory, Kerberos, LDAP, OAUTH 2.0, OpenID Connect, 2FA/MFA
• Experience in vendor management, team/resource management and leading projects
• Worked on various implementation and operational support projects for different clients from diverse geographies (US, EU, Japan and Canada)
• Worked directly wif clients from Telecom, Healthcare, Power, Transport (Railways), Finance and Manufacturing industries over teh tenure of more than 10 years
• Active participation in improving work processes to meet and exceed client requirements.
• Excellent written and oral communication skills. Strong Analytical, interpersonal and team skills

TECHNICAL SKILLS

SAP: SuccessFactors, Ariba, Fiori, Lumira, HANA, ECC, BI/BW, BO, BPC and portal, GRC, AWS, Azure

IDM: SailPoint and SAP IDM

Database: HANA, DB2; OS Windows

Tools: Remedy and other ticketing tools. MS Office and Project

PROFESSIONAL EXPERIENCE

Confidential

Senior IT Security Specialist

Responsibilities:

• Lead SailPoint Identity Management (IDM and RBAC), SAP Security and GRC (12.0 migration) implementation and operations.
• Primary technical lead for SAP, HANA, Fiori, GRC, SuccessFactors, Ariba, Oracle and Salesforce. Worked on SSO integration wif Enterprise Apps, MFA and Conditional Access
• Managed multiple initiatives and related activities concurrently, which included end-to-end onboarding applications/users/accounts to various applications and IAM products.
• Primary Technical Lead for end-to-end SAP products (Including HANA, SuccessFactors and Ariba) and GRC project implementation, and business analysis for new system deployment.
• Ensured Internal Audit & Compliance is kept up to date on teh state of teh IS project pipeline and teh system landscape. Act as liaison between teh Internal Audit & Compliance and Information Solutions functions
• Provide support for planning and execution of internal and external audit projects where teh scope includes review of systems and/or system access, including Firefighters and other privileged access.
• Work wif project, engineering, and product managers to drive technical requirements in products.
• Created easy to consume customer facing technical documentation to instruct technical resources.
• Work wif external vendors to support hardware and software. Establish strong partnerships wif vendors and set clear expectations. Responsible for SLAs, project plans and service delivery.

Confidential

Security Analyst

Responsibilities:

• Lead SailPoint Identity Management (IDM), SAP security and GRC (10.1 and 12.0 migration) implementation and operations, working on migration to SAP HANA on Cloud and Microsoft CRM implementation for Home trust.
• Consulted wif application development teams to ensure teh correct product is adopted for standardized or specific use cases, which included assisting wif designing solutions architecture to adopt teh latest best practices and patterns
• Managed multiple initiatives and related activities concurrently, which included end-to-end onboarding applications/users/accounts to IAM products
• HEC and GRC implementation project: Involved in end-to-end SAP HEC and GRC implementation, and business analysis for new system deployment.
• Develop and implement information security standards and processes in line wif company’s global strategy.
• Worked wif project, engineering and product managers to drive technical requirements in products
• Created easy to consume customer facing technical documentation to instruct technical resources
• Worked on Internal Audit & wif Compliance team and provided support for external audits where teh scope included review of systems and process
• Responsible for SLAs, project plans and service delivery.

Confidential

Security Lead

Responsibilities:

• Led security assurance services during teh requirements, development, migration and test phases of several complex, large-scale SAP transformations, contributing to teh successful migration to next generation SAP Implementation and GRC implementation on SAP for Confidential globally.
• GRC Automation project: objective included automation of entire security operations in SAP including S4 HANA to improve governance and risk analysis. My role involved end to end project implementation, and business analysis for new IT system deployment. Teh project resulted in annual savings of 7000 manhours and process improvement.
• Worked as a security lead reporting to teh Director, information security. Managed teh overall infrastructure Security program including optimization of existing infrastructure, exploring new security solutions for Privileged Access and Data Security.
• Managed and executed implementation and service delivery of SAP Security Services in various capabilities including migration to next generation technologies for Confidential globally.
• HANA Security - Configured Standard, Technical and Restricted Users. Worked on System, Object, Analytic and Package Privileges.
• Worked wif functional line management to deliver SAP Security and GRC services wif a focus on improving Security, customer service, cost reduction and improving risk management.
• Worked on designs, project plans, design reviews to build, go live and support activities, upgrades and collaboration wif SAP to implement new technology and handle issues.
• Managed requirements traceability through design and delivery, and design solutions that encompass all aspects of delivery.
• Managed internal audits for SAP and worked wif external auditors by providing data and managing to carry out audit
• Worked on security part of SAP ECC, HANA, GRC (10.0), Fiori, Power BI, Hadoop, Big Data and Tableau.

Confidential

Principal Consultant

Responsibilities:

• Managed service delivery of SAP Security Services including migration to next generation technologies like SAP HANA, Fiori, Lumira, Business Intelligence and Business Objects, SAP GRC (Governance, Risk and Compliance) and all Security aspects for Confidential BI Platform (including policy formation).
• Worked wif functional line management to define value focused solutions based on teh opportunity and provide recommendations, weighing up investment vs. return.
• Process Improvement and Automation project: Objective included reducing Wing to Wing process TAT to improve customer feedback. My role involved end to end project management, identification of areas of improvement, and business analysis for new IT system deployment. Teh project resulted in teh reduction in teh mean Wing to Wing TAT of Business Intelligence requests from 20 days to 5 days.
• Analyze business processes, user needs and perform security configuration and maintenance tasks for SAP ECC, HANA, BW/BI, BO/Lumira, Portal and BPC.
• Worked on day-to-day Security tasks like user and role administration, SOD conflicts and troubleshooting issues.
• Worked closely wif SAP and max attention team on closing security issues.
• Worked on SAP Security mandate (policy documents and process documents) to frame and implement company specific SAP Security policies in accordance wif SAP best policies.
• Worked on periodic internal audits to ensure overall security and adherence to policies and to eradicate security risks.
• Attended regular review meetings wif Business lines to ensure quality and timely deliverables.
• Developed strong relationships wif other key stakeholders wifin Confidential

Confidential

Senior Consultant

Responsibilities:

• Role included liaising wif Functional teams and other Confidential businesses to deliver next generation SAP Implementations and day to day operations and processes, wif a focus on improving Security and Governance, customer service, reducing cost, and improving risk management and controllership and also to provide post implementation services.
• Worked on designs, project plans/Blue prints, and client presentations, performed design reviews to build, go live and support activities, upgrades and collaboration wif SAP to implement new technology and handle issues.
• Transformation Management - Transitioned teh Confidential SAP Platform from SAP-DB2 version to SAP HANA resulting in annual savings of 5000 manhours and system/process improvement. Received Ace award for smooth delivery of teh project and outstanding customer feedback.
• Managed internal audits for SAP and worked wif external auditors, performing audit activities and providing data.
• Worked wif Confidential functional Line management to deliver SAP Security services on SAP ECC and BI/BO security and GRC.
• Worked on security designs, project plans, project roll outs, support activities and upgrades.
• Worked on day-to-day user and role-based security.
• Worked on SAP Upgrades, RAR activities, Licensing, and internal audits.
• Created and maintained internal documentation and end-user training materials.
• Attended regular review meetings wif Client team to ensure high quality and timely deliverables.

Confidential

Software Engineering Analyst

Responsibilities:

• Worked on Various ERP/Software implementation and Operational support projects for different clients from diverse geography and domains (Telecom, Healthcare, Power, Transport (Railways), Finance and manufacturing Industries) over teh tenure of more than 5 years.
• Worked on SAP security implementation for clients for a wide spectrum of SAP tools like ECC, BI, BPC, SRM AND CRM.
• Worked on requirement gathering, client presentations, design reviews, implementation and build activities, testing, fixing teh defects, post implementation activities, day to day monitoring, reviewing to cut over activities.
• Worked on SAP security from build, testing, and cut over till post go-live for clients for a wide spectrum of SAP tools me.e. GRC, ECC, BI/BO, Portal, HR, Finance, MM, SCM and CRM security.
• Day to day role administration, user Administration and SOD Analysis
• Creation of monthly audit report, Licensing and annual upgrades.
• Used eCATT/LSMW scripts for mass user creation, maintenance and role assignments.
• Worked on CUA and ARM (GRC)
• Worked on SAP Basis activities, daily system health checks, kernel and system upgrades, SAP NOTE implementations, RFC maintenance and other day to day activities.