SUMMARY

• Over eight years of experience in SAP ECC, S4, SAP HANA & GRC security implementation, administration, and basis support with a strong techno - functional background.
• Experience includes planning, implementation, analysis, development, and maintenance of SAP security in SAP S4 HANA, R/3 4.7C, ECC 6.0, BI 7.0, EP 7.0, S4, PI 7.1, CRM 7.0 and solution manager 7.0.
• Responsible for all aspects of SAP ECC security administration tasks including coordinating and interacting with businesses, technical and functional consultants for gathering SAP security requirements.
• Designed, developed, tested and transport roles/authorization, administer User IDs, setup security system parameters, generated analysis reports, troubleshoot authorization error, formulating security policies and procedures, role maintenance and security redesign strategy.
• Strong experience and knowledge of security procedures for user administration and Central User Administration (CUA).
• Strong experience in using the profile generator for creating and maintenance of roles and activity groups according to the business requirements and using SAP supplied user role templates according to Sarbanes Oxley (SOX) compliance strategy management.
• Maintained the HR master data of the employee, maintained the organizational structure that was comprised of different organizational units, jobs, tasks and positions.
• Experienced setting up users and security on the enterprise portal and created users/user groups through UME for SAP NetWeaver.
• Working knowledge in analyzing and processing SOD and SOX issues within SAP implementation using the GRC 10.0 and 5.3 access control tools such as firefighter, compliance calibrator and access enforcer for Sarbanes-Oxley section (SOX) compliance. Experience in HPQC.
• Worked on new components/technology like SAP Fiori, S4 HANA
• Assembled the appropriate processes, components and capabilities to address the enterprise security requirement for sap security and audit compliance.
• Proven track record in delivering high performance, critical projects efficiently and on time.

TECHNICAL SKILLS

Operating Systems: Windows XP/ 2003/2008/2000 , UNIX (Linux, Sun Solaris)

Languages: C, C++, SQL

Databases: Oracle, DB2, DB6 and MS SQL Server

SAP Skills: SAP S4, ECC 6.0/5.0, R/3 4.7, Enterprise Portal 7.0/7.1, and SAP GRC 5.3/10.0.

PROFESSIONAL EXPERIENCE

SAP Security Consultant

Confidential, Dublin, OH

Responsibilities:

• Analyzed existing security landscape to build a consolidated Business Process Master List across various projects within Cardinal.
• Led efforts from a technical perspective to define overall SAP architecture for future application implementations for client.
• Worked closely with organizational change management team in job mapping.
• Analyzed the requirements and created or modified roles including single, composite and derived.
• Performed SOD analysis, and worked closely with the team during Functional Unit Testing.to improve the security to meet the business requirement.
• Worked extensively on Central User Administration (CUA) to handle User Administration/maintenance activities: setting up User IDs, assigning roles, resetting password and locking/unlocking users for internal/project users.
• Worked extensively on Master Data Governance roles, designing the NWBC menu, updating scope of security checks (SU24) and access to meet the client’s distinctive workflow access requirements.
• Worked closely with both business and ABAP team for identifying and implementing best security option via custom authorization objects in MDG system to meet client’s unique requirements.
• Responsible for security documentation for multiple business towers.
• Worked on SAP GRC - risk analysis, user provisioning, firefighter access.
• Supported the project through entire lifecycle as key security resource
• Worked on HANA role privileges (System, Object, Analytic, Package and application), role transport to upper landscape using CTS+
• Handled user administration activities for HANA, troubleshooting HANA access issue using HANA trace
• Helped analyze security impact for system upgrade from EHP7 to S4 HANA
• Worked on updating existing security to S4 HANA
• Experience in Manhattan user provisioning, role creation, troubleshooting security issues
• Worked on Okta, IIQ, SharePoint, ServiceNow, JIRA, ALM, Manhattan WMS, Manhattan TLM, Siteminder and MIF applications

Environment: ECC 6.0 EHP7, SAP MDG, SAP SLT (Net Weaver 7.40), GRC AC 10.0, SAP HANA, S4 HANA, Manhattan OS & DB: Linux 3.0, DB6

SAP Security Consultant

Confidential, Freeport, NY

Responsibilities:

• Designed, implemented and maintained security for the landscapes.
• Created users and maintained user masters and established security policies and procedures.
• System study of the current landscape, handling SAP security issues in authorizations (thru PFCG) on PRD, DEV and QA servers.
• Major involvement with the development and function teams in their day-to-day security requirements.
• Created and modified single, composite and derived roles using Profile Generator (PFCG) to meet business requirements by making sure users do not get more or less authorizations than needed to perform their task.
• Troubleshoot R/3 security problem by effectively analyzing trace files using ST01 and authorizations for users (SU53) and tracked missed authorizations for user’s access problems and inserted missing authorizations manually in order to analyze security problems.
• Used Central User Administration (CUA) to handle User Administration/maintenance activities: setting up UserIDs, assigning roles, resetting password and locking/unlocking users.
• Extensively used SUIM reports for critical transactions and objects and for users who never logged on.
• Experienced with SAP check indicator defaults and field values, reduced the scope of authorization checks using transaction SU24 and maintained check indicators for transaction codes as recommended by SAP best practices.
• Transported roles to DEV, QA and PRD environments as per the change management process.
• Assisted the end users by providing necessary access for the daily tickets and doing the role changes for the developers and functional users.
• Worked with respective functional heads for segregation of duties and security changes based on SOX requirements.

Environment: ECC 6.0, PI 7.0, EP 7.0, OS & DB: Windows 2008, MSSQL 2008

SAP Security & GRC Consultant

Confidential, Piscataway, NJ

Responsibilities:

• Led efforts from a technical perspective to define overall SAP architecture for existing and future application implementations.
• Configured and implemented GRC Access Control Suite 10.0.
• Under risk analysis and remediation, performed user and role analysis to identify existing SOD violations.
• Using RAR produced analytical reports on users, user groups, roles and profiles. Analysis reports provided real-time data and management reports to retain an offline history of the SOD status.
• Performed remediation and mitigation against various risks associated with roles and users. RAR has simulation features to allow you to assess the impact of potential remediation activities on the reported conflicts prior to making the actual change.
• Experienced in creating and assigning FF ID’s and extracting fire fighter logs. A fire fighter ID is a temporary user ID that grants the user exception-based, yet regulated, access. The fire fighter ID is created by a system administrator and assigned to users who need to perform tasks in an emergency or extraordinary situations.
• Extensively involved in creating roles in compliance with SOX regulations as determined by GRC.
• Worked with development, basis, and change control and business technology services teams in providing SAP security solutions with industry best practices.
• Responsible for analysis, design, development, testing and implementation of the ECC and CUA systems.
• Provided SAP security supports to daily user access management services and production support across multiple sap environments.
• Worked on role remediation with the business teams and involved in removing the transaction codes from the roles restricting the objects at the authorization object level.
• Through knowledge of SOX compliance and best practices in SOD remediation. Streamlined the user access request process by clearly defining the appropriate access for each functional team.
• Standardized the firefighter login activity by creating the custom reason codes.
• Experienced in R/3 security upgrade concepts(SU25).
• Designed the security architecture for overall SAP landscape with various functional teams.
• Worked closely with functional consultants for the evaluation of requirements defining, developing and testing the roles. Performed user administration and role administration.

Environment: ECC 6.0, BI 7.0, GRC AC 10.0 & 5.3, OS & DB: Windows 2008, MSSQL 2005

SAP Security& GRC Consultant

Confidential

Responsibilities:

• Worked on the authorization issues of end users, creating roles and assigning roles to the users.
• Enabled regulated super user access control via GRC’s firefighter.
• Worked on GRC access control suite-5.3(all the components) risk analysis and remediation, central user provisioning, enterprise role management and super user privilege management.
• Handled audit issues (planning, getting approvals, implementation of role redesign) and have work experience in role remediation and user remediation of Segregation of Duties (SOD) to be compliant with SOX. Effective communication with internal, external auditors and all other stake holders in all phases of audit. Good understanding of SOX and SOD rules.
• Analyzed the logged issues related to SAP security for all the modules, interacted with the client to understand the requirements and provided the solution on time.
• Created users and assigned the proper roles as per the business process to make sure the correct access to the systems using GRC support for all the systems ECC 6.0.
• Analyzed the requirements and created or modified roles including single, composite and derived. Performed SOD analysis, testing the roles in development and quality environments
• Provided the root cause with the corrective/preventive actions for the incidents resolved.
• Provided authorizations to roles and users based on problem ticket raised, creation/deletion of user ids, transported requests from the clients and managed new rollouts for minor enhancements.
• Monitored batch jobs and troubleshooting. Monitored and resolved performance related issues. Prepared the monthly reports and analysis.
• Created and released transport coordinates testing and migrated the changes to productions.
• Documented for the errors and the actions taken to resolving them.

Environment: SAP ECC 6.00 EHP4, SAP GRC AC 5.3, OS & DB: Windows 2008, MSSQL 2008

SAP Security Consultant

Confidential

Responsibilities:

• Opened OSS connections and created OSS ids for functional and technical users.
• Extensively worked on user administration functions such as creating deleting and maintaining users.
• Unlocked the users and reset passwords for team members.
• Designed SOX IT controls to ensure proper SAP security controls are in place and meets all of the specified audit guide lines.
• Analyzed FIREFIGHTER Id access in relation to SOX audit and generated change documents and remedy ticket reports.
• Worked extensively on all three landscapes in transporting roles (ECC, APO, and BW).
• Created test ids and test roles for the data team members for testing.
• Worked extensively on mass user management after the mock cut over on every production client.
• Generated a series of documentation for all role changes and activities performed.
• Helped generate sufficient rights and roles for solution manager and assigned them to the user for the creation of RFC connections between systems to talk to each other.
• Unit testing on single, derived and composite roles.
• Worked on documenting roles in roles database and updated database history of roles.
• Interfaced with the management to discuss security requirements and implementation strategies.
• Continuously evaluated the impact of security risks and provided input to the management on the status of security related issues and status of personnel and resources.

Environment: ECC 6.0, OS & DB: Windows 2008, MSSQL 2005

SAP Security and Basis Consultant

Confidential

Responsibilities:

• System Monitoring and Administration also monitoring from the SAP Solution Manager.
• System Refresh,
• Client administration, local and remote client copy.
• Support package analysis and implementation, SAP Note implementation.
• Troubleshooting, analysis and RCA for dumps, failed background, incident or defects etc.
• Batch Job Administration, update failed analysis &reporting, monitoring for blocked message queues in PI.
• Trouble shooting on CCMS Alerts, XML message and IDOC monitoring.
• Monitoring communication channel and adapter engine,
• Print/Spool administration and management.
• Scheduling and monitoring client copies, performed homogeneous system copies, and support during maintenance weekend.
• User creation and Administration.
• Performing Kernel upgrade.
• Scheduling the backup plans for the MSSQL.

Environment: ECC 6.0, PI 7.0, BI 7.0, Solman 7.0, Solman 7.0Ehp1, SCM 7.0, EP 7.0, HP-UX, AIX 5.3, CRM7.0, XI 4.1, OS & DB: Windows 2008, MSSQL 2008, DB2

SAP HR Security Consultant

Confidential

Responsibilities:

• Understanding the existing organizational HP security policies and procedures.
• Fixing HR authorization issues.
• User creation and administration and mass uploads, changed to user master etc.
• Role Creation & Assignment to position
• System monitoring and sanity check.

Environment: SAP ECC (6.0) HR, OS & DB: Windows 2003 & MS-SQL 2005

SAP Security Consultant

Confidential

Responsibilities:

• System monitoring and sanity check.
• Spool Administration and Configuration.
• Scheduling and monitoring client copies.
• System Refresh and post processing.
• Understanding the existing organizational security policies and procedures and build SAP Security landscape.
• Analyzed the roles and tracked the possible issues like: role & profile naming convention, Tcode assignment via SU24, master roles with org level assignment, duplicate roles and roles without profiles.
• User creation and administration as per the SOX compliance.
• Role Creation & Assignment based on specific authorization issue and request.
• Pulling the monthly security reports from production.
• Creation of power ids/firefighter ids and audit logs.

Environment: SAP ECC 5.0, OS & DB: Windows 2003 & MS-SQL 2005

SAP Basis and Security Consultant

Confidential

Responsibilities:

• Client Refresh, System Health check, BW & Portal Monitoring.
• ALERT Monitoring, Response & root cause analysis, System logs & ABAP Dump Analysis.
• Monitoring and administering updates, Administering lock entries.
• Failed faxes and spool requests administration.
• Outbound & Inbound queue monitoring, IDOC Monitoring.
• Spool Administration, Background job Administration.
• Buffer Monitoring, Operating System Monitoring, Database monitoring.
• Transport Sync, Transactional RFC, and RFC connectivity check.
• Mass uploads, changed to user master.

Environment: SAP R3, BW 3.5, SRM 4.0, BI 7.0, and xRPM 4.0, SCM 4.0, LC 7.5, EP 7.0 and SAP CRM 5.0, OS & DB: Windows 2003 & MS-SQL 2005.