OBJECTIVE:

• To ensure my Eight Years of Experience in SAP SECURITY ECC 5.0 & SAP GRC provides an efficient and effective structure for ensuring the security, integrity, accuracy and availability of all the enterprise information.

SUMMARY:

• Experience in SAP implementation primarily in providing security to SAP environments like Production, Development, Quality, UAT systems of ECC, BPC, BW, CRM, HR, SRM Platforms, Enterprise Portal and to other Net weaver components across FICO, MM, PP, SD, CRM modules.
• Experience with GRC Access Control (5.3, 10.0, 10.1) along with upgrade from GRC 5.3 AC to GRC 10.0, 10.1 AC - Access Risk Analysis (Risk Analysis Remediation), Access Request Management (Compliant User Provisioning), Emergency Access Management (Super user Privilege Management), Business Role Management (Enterprise Role Management).
• Create and maintain user roles and authorization profiles (PFCG), monitoring user logins, user sessions, restricting default logins in instance parameter file, troubleshooting user level problems to properly access the servers and maintaining security throughout the SAP landscape.
• Maintain access permissions and details for Super Users for an OSS message in SAP Service Market Place.
• Provide/Revoke/Modify the user access to Internet Sales Management Portal along with assigning the soldToCode in ISAUserAdmin and Portal Groups in IDM Portal.
• Provide Fire-fighter access to the functional users that enhance the analysis of the issues.
• Maintain users in Central User Administration (CUA), monitored user activities, trouble shooted user level problems to properly access the servers and managed security throughout the SAP landscapes.
• Check HR authorizations using HRAUTH tool for analyzing the authorizations.
• Restrict authorizations to required personnel areas, info types, depending on the evaluation path created in the system.
• Security development of new "global" roles that align with the less-restricted access and OM relationships based on existing roles for read/write and which info types allowed.
• Secure roles and restrict access by company code, plant, cost center, profit center, purchase organization, sales organization etc.
• Support security auditing and meet various standards as per the company policies and procedures.
• Prepare audit reports for monitoring the SOD conflicts using Control Software International (CSI) Tool.

TECHNICAL SKILLS:

Technology and Tools: Areas of Expertise (SAP Security Administration) - -SAP R/3,GRC( ECC 6.0, 4.6), EPM-BPC, BW,CRM, Security, Central User Administration, Profile Generator (PFCG), Modifications, Authorization objects & user Reconciliation in FI,MM,SD,PP,HR, CRM,BW,EP modules. SAP Solution Manager SOLMAN 3.2 Security Administration, Transport Management System. Systems Trace using ST01 or SU53 for authorization check. Add new clients with Central User Administration. SM18, SM19 and SM20 for audit log. Knowledge in the areas of Business intelligence, Business objects, Data services. Strong grip on various types of transformations in Business Objects Data services. Access provision, revoke, modifications in BI, BO, BO Data services. Design roles, access restrictions in BI environment. Oracle, MySQL. Tools: SAP GRC 10.0, 10.1-AC, 5.3, CSI (Control Software International), BMC Remedy Tool (ITSM), SOLMAN 3.2.

PROFESSIONAL EXPERIENCE:

Confidential

SAP Security GRC/HANA Consultant

Responsibilities:

• Developing and maintaining SAP authorization process design as well as related documentation.
• Worked as SAP Security lead to design and maintain their authorization requirements in SAP landscape.
• Creating, modifying, deleting roles in R/3 environment for different modules like FICO, MM, PP, SD, BW, and CRM.
• Perform Operations in the User Administration and Role Administration of the Security Module.
• Building the Roles using Profile Generator (PFCG) t-code and implementing these Roles for client organizational levels and various plants located at different geographical locations in Development system.
• Transporting these roles to Quality System and initiating the testing process of these roles by assigning the intended Roles to test users, monitoring and troubleshooting the authorization failures during testing.
• After ensuring the intended functionality of these Roles, transporting these objects to Production system (PRD) and assigning to users during implementation.
• Experience in using Profile Generator in SAP Security Administration, Monitoring, User Tracing and Troubleshooting for the access issues.
• Generate the reports for the customers regarding user account modification to each country representatives.
• Utilize system trace (ST01), authority check (SU53) to analyze and fix problems related to Security.
• Redesigned the existing role architecture to fit the global model using the Derived or Parent/Child role concept in ECC 6.0 environment.
• Developed Single, Master Derived Roles and tested them in Various Clients and systems in the ECC, BW, and CRM environments using PFCG.
• Transport the changes from Development System to Quality System to UAT System to Production System using Change Management Process (CHARM) in Solution Manager 3.2
• Worked on SAP Check Indicator Defaults and Field values, reduced the scope of Authorization checks using transaction SU24 and maintained check indicators for Transaction codes.
• Continuously improved security configuration to reflect best practices and to prepare for system audits.
• Worked User Administration using Central user administration (CUA).
• Used transaction RSECADMIN for creating custom authorization objects and S RS AUTH for assigning authorization objects for BI query end user roles.
• Build and tested BPC roles and provide Security appropriate authorizations to the team.
• Exclusively worked on BI Objects by restricting the access for Reporting and Power Users.
• Created analysis authorizations to provide security on Hierarchies and Info Objects, made the info objects authorization relevant.
• Created and maintained all user master data across the multiple Non production systems landscape.
• Troubleshooting using Tcodes SCUL, SCUA and check the IDocs and background jobs related to CUA.
• Generate Audit analysis Reports, as per to the requirement.
• Train team members and business users on different areas of security.
• Prepared Project plan for GRC Access Controls implementation.
• Upgradefrom Versa 5.3 to SAP GRC Access control10.1 (design, build, test, support)
• Supporting automated complex security structures via theSAPGRC 10.1Access Control
• Catering nonstandard requirement with SAP GRC 10.1 (Custom notifications, Reporting etc.)
• Implementation of UAR with SAP GRC 10.1
• Creation of SOD risks analysis reporting using RAR tool and Mitigation of existing risks for preparation of SOD Audit reports.
• Creating users and assigning UME roles to GRC users and handling password validation request for RAR.
• Enabling user menu for limited auditors to use AIS menu and Scheduling background jobs in RAR for SOD reports, based on region.
• Schedule background jobs in GRC RAR for time to time data synchronizations, Rule generations
• GRC support for Access Control to streamline the process.
• Risk Library changes (su25 upgrade, creation of new function etc).

Confidential, NC

SAP GRC Consultant

Responsibilities:

• Created SAP Security Project Plan, Security Strategy, Security Model, Security Presentation for three tire systems landscape include sandbox and clients.
• Designed roles for Back Office along with core modules such as FI, SD and MM
• Worked closely with Basis, Technical and Functional teams for successful go live.
• Created cutover task for Go-Live.
• Resolved tickets using SOLMAN Application for production support SAP security related and SOD issues.
• Created User groups in all systems.
• Design and develop production roles using PFCG in Dev for FI/CO (AP, AR, CM, CO, FA, FM, GL, GM, MM, SD and SRM, MM,BI (End Users, Power Users)).
• Solution Manager (Implementation team, Blueprint Analyst, Relation Analyst roles, etc.), workflow roles and test in QA and transport to Production systems.
• Tested & Migrated FICO, SD, MM, PP, SRM, BW End User Roles to Various Clients by Transport Management.
• Implemented, configure and tested for single sign on (SSO).
• Re-designed security roles across different modules to meet clients changing landscape.
• Monitored System audit activities by running audit reports for the client’s internal audit team.
• Interacted with external audit teams to solve inconsistencies and user violations in the system.
• Created custom roles, t-codes, custom objects, custom object classes and implemented table and program security and global maintenance of authorization checks.
• Troubleshoot and solved user access problems as a part of the production support team.

Confidential

SAP Security Consultant

Responsibilities:

• Gather business requirements, meet with business process owners/functional leads to understand the requirement and design and build roles for SAP ECC (FI, MM, SD, PP, WM).
• Worked on creating and updating Roles as per the Functional team requirements and authority (FI, MM, PP, and SD).
• Maintain users in Central User Administration (CUA), monitor user activities, troubleshoot user level problems and managed security throughout SAP Landscape.
• Use transaction codes SU10, PFUD and SUPC for mass generation of profiles, roles user comparisons and for user assignments.
• Creation and modification of Roles and profiles as per the requirement using PFCG.
• Create/Delete the User Groups in the system using the transaction code SUGR.
• Monitor Temporary Add-on roles and revoke them in a timely manner.
• Worked on SAP Check Indicator Defaults and Field values, reduced the scope of Authorization checks using transaction SU24 and maintained check indicators for Transaction codes.
• Continuously improved security configuration to reflect best practices and to prepare for system audits.
• Worked User Administration using Central user administration (CUA).
• Created and maintained all user master data across the multiple Non production systems landscape.
• Troubleshooting using Tcodes SCUL, SCUA and check the IDocs and background jobs related to CUA.

Confidential

SAP Security Admin

Responsibilities:

• User administration activities like creating user Ids based on standard naming convention, resetting passwords, locking and unlocking user IDs.
• Worked on SAP check indicator defaults and field values using transactions SU24 and maintained check indicators for Transaction code during testing.
• Identified fixes for production issues related to security and tested them in DEV and QA systems and transported to PROD environment.
• Supported Unit testing and Integration testing of roles/profiles.
• Performed reconciliation of user master record and roles using PFUD and SUPC.
• Performed User Administration activates such as setting up user logon ID’s and assigning and resetting passwords, locking and unlocking users.
• Performed Production support activities.
• Extracted system traces (ST01) to resolve authorization issues
• Monitoring and resolving remedy ticket queue.
• Added the roles, profiles to the users upon request.
• Provided technical support to change management team & Transport of changes across servers.
• Performed Time Series Analysis using Auto Regressive Integrated Moving Average Model (ARIMA) and Artificial Neural Networks (NN) for particular data set and observe the performance of both the techniques.
• Designed the flowcharts for the process followed in the performing the analysis.
• Gave on Software Engineering, Networks, Six Sigma Process.