OBJECTIVE:

• Joining a dynamic team of knowledgeable experts where my experience and exceptional work ethic can be utilized to its full potential. I am a driven professional seeking to take my career to the next level.

SUMMARY:

• More than 13 years of experience in SAP Security working with SOX compliance.
• Worked at the highest level of all phases of security architecture design and administration on the assigned computer/network platform(s). Strong Knowledge of SAP GRC 10.0. Access Control, Process Control, Internal control, and segregation of duties.
• Implemented IT security policies, procedures, and guidelines for the SAP platform(s) and bolt - ons. Possess a strong proficiency with security authorizations, and technical concepts across multiple landscapes.
• Identified IT security vulnerabilities, risks, and legal liabilities.
• Identified, recommended, and controlled the implementation of associated protective measures for the assigned platform(s).
• Redesign Roles for enterprise wide ECC systems.
• Developed security plans for business projects based on the assigned platform(s), demonstrating understanding of business goals, customer needs, industry standards, and corporate policy.
• Conducted periodic/perpetual audits and vulnerability/penetration studies of the assigned platform(s) to monitor, report, and address security violations, exposures and inefficiencies.
• Performed security administration tasks including the definition of security groups, permissions, authorizations, access rights and users.
• Maintained security integrity by constantly seeking methods of improvement for securing information and for security administration processes. This included determining if and how security technology can help accomplish project deliverables and/or streamline an existing process.
• Provided technical direction or security consulting services for all projects based on the assigned platform(s).
• Generated solutions to problems, demonstrating good judgment and a high level of integrity, while practicing confidentiality in addressing issues associated with security exposures, violations/breaches, employee separation, and details related to misuse of information resources.
• Assisted the internal audit process by providing input on security exposures/breaches, participated in routine audits. Implemented audit recommendations as required.
• Prepared project plans, activity, status, and security performance and exposure reports.
• Provided support, including after-hours support and second- and third-level support, as scheduled in the call rotation for the assigned platform(s).
• Responsible for adhering to applications security procedures, change control guidelines and Sarbanes-Oxley IT and business requirements.
• Exemplary communication, interpersonal, analytical, problem-resolution and time management skills.
• Proven track record as a team leader with the ability to lead teams to generate results, establish direction and motivate team members in a positive atmosphere of trust.

PROFESSIONAL EXPERIENCE:

Confidential, Huntington Beach, California

SAP Authorization and Basis Systems Global Lead

Responsibilities:

• Report to the Director of ERP, and VP of ERP.
• Responsible for global implementation of SAP ECC 6.0/AFS 6.4.
• Support audits, and perform monthly health checks.
• Modify/ correct client s roles per their security policies.
• Create transports for roles from testing to production
• Import all transports into production.
• Creation and maintenance of user groups across the entire landscape.
• OSS Management for project requirements including OSS id administration, issuing developer keys, object keys.
• Manages, trains, and develops team globally.
• Key part of Global IT leadership.
• Monitoring SAP systems.
• Checking SAP status.
• Checking application server status/Work process status.
• Monitor Batch Jobs.
• Review ABAP Dumps.
• Ensures that all SAP change management processes and operations comply with corporate policy, IT policy and SOX General Computer Controls.

Confidential, Costa Mesa, California

SAP Security Senior ERS.( Enterprise Risk Services)

Responsibilities:

• GRC 10 implementation/migration at client site.
• Developed project plans, budgets, deliverables, and schedules for client.
• Assessed, recommended and configured SAP GRC 10 technologies.
• Ran weekly security meetings until Go - Live. Created direction with systems integrators in developing business requirements and business controls in SAP..
• Set up Super-user/ SPM process design and controls.
• Created custom rule sets for customer needs.
• Provides multiple services related to security and controls assessment, design, recommendation and configuration of SAP GRC including. Pre- and post-implementation assurance reviews, Utilization of existing SAP functionality to replace / enhance manual controls
• GRC 10 end user to client.
• Redefined fire fighter process to reduce the needs for client.
• Reorganized role structure/mapping for departments.
• Created mitigating controls for SOD issues for client specific needs.
• IDM 7.2 administration for user provisioning across landscapes with Business role concept.
• Knowledge of setting repository, tasks, and jobs. Read error logs in IDM for trouble shooting.
• Solution Manager implementation 7.1. Set up Charm, ITSM, DVM, Tech OPS and Business roles.
• IBM Global Services, Dubuque, Iowa. SAP Security SME/Team lead.
• Team lead/SME for a team of 27 members
• Support 30 IBM clients.
• Set up GDF Delivery Center for SAP security. IBM came up with a new concept of supporting their multiple internal and external clients from one location known as Global Delivery Framework. (GDF).
• Interviewed applicants during hiring process. Directly supervised the work of others
• Support internal and external IBM clients in user and role administration in ECC, BI, CRM and JAVA systems
• Supporting implementation of Access Control, Super-user Privilege Management, Risk Analysis and Remediation.
• Enterprise Portal, ECC, BW/BI, SRM, PI/XI,HR,CRM Security
• Responsible for implementing, monitoring, and enforcing all security policies, standards, and procedures necessary to ensure the confidentiality, integrity, and availability of information maintained on one or more computer/network/applications platforms and to protect that information from intentional or inadvertent access or destruction.
• User provisioning experience, including LDAP, UME, ABAP back-end integrated solutions (including Tivoli products, and/or NWIdM).
• Maintained of relationship between transactions and object
• Maintained assignments of authorization objects with security roles, profiles and objects including ABAP, portal and java.
• Provided support for internal audits SAP information (table data etc.) during audits and ran and analyzed user ID traces.
• Integrated 3rd party bolt-on products Cognos, Sabrix, IBM WebSphere, etc. within the security solution strategy;
• GRC Security Implementations. Extensive usage of SAP GRC Suite 5.2/5.3 - Compliance Calibrator (analyzing report for SOD remediation) including Role expert, Access Enforcer and Firefighter
• Worked closely with the Controls Implementation team and functional team to eliminate SOX issues and / or to develop mitigation plans. Risk Analysis and Remediation 5.3 (RAR 5.3).
• Supporting multiple ongoing audits for KPMG, PWC and perform quarterly health checks.
• Analyzed and re-designed the role development on ECC and BI/BW systems using best SAP practices
• Modify/ correct external client s roles per their security policies.
• Create transports for roles from testing to production
• Creation and maintenance of user groups across the entire landscape.
• OSS Management for project requirements including OSS id administration, issuing developer keys, object keys
• Worked with business users to identify security risks/ violations as per ITCS104 standards.
• Work with management for ongoing sizing of internal and external client support.
• IBM orientation and knowledge transfer to new hires.
• IBM Global Services, Poughkeepsie, New York. SAP Security Consultant.
• Supported up to six different IBM clients remotely.
• Involved in full cycle of upgrade from R/3 4.6 to ECC6.0 and BW 3.5 to BI 7.0, maintained parallel landscape, SU24 and SU25, maintaining all the roles updated with new t-code and objects, manually filled values, Maintained Company Codes and regenerated according to the client s specifications. User master data reconciliation.
• HR Security
• Cleanup, and redesign HR roles, control, info types and master data.
• Classified user types for SAP Licensing via USMM and ran LAW (License Application Workbench)
• Utilize Profile Generator daily to create and change roles.
• Maintained user authorizations, SOD
• Trace analysis, Authorization error analysis via ST01/SU53.
• Portal Administration
• Worked on SAP 4.6, 4.7, ECC 5.0, 6.0, Windows, AIX, Lotus notes, UA Web, Web Commerce Application (WCA), Ticketing systems include Mange-now, Impact, Unicenter Service Desk etc. Portal.

Confidential, Basking Ridge, New Jersey

SAP Security Consultant

Responsibilities:

• Handling tickets in HP Service Desk which is centralized ticketing system synced up with Avaya.
• Experienced with Virsa Compliance Calibrator tool to identify users with SOD conflicts, SAP assessment and remediation.
• SOD exceptions and mitigating controls.
• Assisted Team with remediation user conflicts.
• Ran detailed reports of users with conflicts. Removed jobs or roles as necessary.
• Working on User Roles, Profiles, Activity Groups and Authorizations.
• Documentation on changing Roles and existing architecture.
• Defined, Implemented and Documented Security Requirements and Roles in line with company standards for R/3, BW, HR.
• Providing production support for re - roled users in SAP version 3.1 and 4.6c across the globe to resolve authorization issues and building new roles as per the requirement. users on SAP Security related issues to work with and resolve.
• Worked on SAP4.6C, 3.1I, B.W3.0B/3.5, Unix, Oracle9.X, MS Office etc. (SAP- BW, HR, APO).

Confidential, Linden, New Jersey

SAP Security Administrator

Responsibilities:

• Developed, created and maintained security profiles and roles using profile generator. Troubleshooting authorization problems by setting up analyzing system trace and authority check.
• Worked on the Organizational structure, jobs, roles and the segregation of duties matrix for the Security developed in SAP and handled SOD conflicts for Sarbanes - Oxley Compliance.
• Worked with profile generator (PFCG) in creating roles, profiles, composite roles, derived roles, and global roles.
• Constructed job roles in accordance with departmental standards, testing structural construction of roles, assignment of authorizations to technical team users in the non-production clients, performed segregation of duty analysis of existing and new roles
• Created and maintained roles on multiple system / clients.
• Troubleshoot security/authorization related problems using SU53, ST01, RSSM (for BW) and SUIM
• Worked on SAP R/3 4.6D/4.7, SAP HR, BW, SRM, SCM APO.

Confidential, Memphis, Tennessee

SAP R/3 Security Consultant

Responsibilities:

• Creating and Assigning Roles/Profiles to Users using PFCG.
• Fixing end user Roles/Profiles based on Change Requests crated for breaks/fixes.
• User Administration and Password Management (Expiry of users and Profiles).
• Analyze Root Cause of Authorization Problems and fix the missing authorizations.
• User support, resolve end user problems on day - to-day basis.
• Performed Daily SAP System checks and logs.
• Used Virsa Compliance Calibrator (VRAT) tool extensively for handling SOD conflicts for each user.
• Used SU24 and maintained check indicators for Transaction codes.
• Hands-on security upgrade using SU25 and Profile Generator (PFCG).
• Establish detailed security upgrade plan, strategy and dual maintenance procedures.
• Convert manual profiles to activity groups.
• Setting of new 4.6C authorization objects and values.
• Resolve issues arising from testing using system traces and dumps.
• Cleaned up and optimized security Roles.
• Worked on procedures and applications of dual-maintenance of security changes.
• Conversion of manual profiles and implementation of role based security, evaluated and used SAP standard roles as templates for custom roles.
• Review critical and sensitive authorizations, implement improvements to meet audit requirements.
• Post Go-live support to resolve all security-related issues
• Worked on SAP R/3 4.7, BW 3.1C, Oracle 8i, HP-UX, Windows 2000.