SUMMARY

• Over 6+ YEARS of SAP SECURITY & SAP GRC CONFIGURATION & ADMINISTRATION EXPERTISE
• Well experienced with multiple SAP Security Lifecycles (Analysis, Conception, Implementation, Upgrade, Quality Assurance, Support, Redesign & Cutover)
• Extensive experience in SAP Security Administration - ECC 6.0/5.0, R/3 4.x, BI 7.1/3.5, HR, CRM, SCM, Solution Manager Modules & SAP NW ABAP & JAVA architecture concepts.
• SOX Compliance - GRC 10.0/5.3/5.2/4.0 (ARA (Access Risk Analysis), EAM (Emergency Access Management), ARM (Access Request Management) and BRM (Business Role Management).
• Experience with SAP Portals(EP 5.0 & 6.0), SECURE SNC, Single Sign On(SSO), ESS & MSS.
• Capable of implementing security for Business Objects, BW/BI, Solution Manager, SCM, SRM, SNC, CRM, PLM, PDM, PPM, QM, XI and EP.
• Developed Periodic Audit steps & quarterly User Access Review for the same
• Support through Access DB(Incident Management), Maximo(Change Control), Quality Center(Quality Control) & Solution Manager (CUA & CHARMS)
• Well versed in security implementation for the BI 7.3 Analysis Authorizations concept.
• Experience in migration from BW 3.5 to BI 7.0 as well as new implementation of BI 7.3.
• Assisted HR, EP (ESS & MSS) security implementation & support and Auto-Provisioning from GRC
• Designed & Administered entire CUA landscape monitoring & improving performance
• Implementation, Upgrade & Support of several ERPimplementations involving multiple modules, from system design stage to a “Go Live” stage
• Experience in creating, maintaining user roles (activity groups) according to requirement and modifying existing roles (single, composite and derived) using PFCG.
• Expert in security role design according to Governance Risk & Compliance (GRC) Access Control suite and SOX compliance strategy related to SAP business processes, transactions, control infrastructure.
• Expert in MS Project, MS Access, Excel & VB, Documentation, SharePoint etc.

PROFESSIONAL EXPERIENCE

Confidential, Bothell WA

SAP Security & GRC Analyst

Responsibilities:

• Responsible for Security Implementation & Support of ECC 6.0, BI 7.1, SRM 7.0, CRM 7.0, SolMan 7.0, GRC 10.0/5.3, Linux and Oracle.
• Project Planning (MPP) for SAP system authorization, Compliance & Production support including individual task allocation, dependencies & outlook integration.
• Responsible for creating multiple Composite and Master-Derived roles.
• Prepared POC to upgrade current version GRC 5.3 to GRC 10.0.
• Implemented GRC 10.0 including components (ARA (Access Risk Analysis), EAM (Emergency Access Management), ARM (Access Request Management) and BRM (Business Role Management).
• Configured GRC Suite(AC), workflows, LDAP etc from BASIS & Security standpoint.
• Extensively Involved in the installation of all components of GRC 10.0 Access Control
• Configured GRC 10.0 AC modules Access Risk Analysis, Emergency Access Management & Automated User Provisioning.
• Integrate SAP IDM 7.2 with GRC AC 10.0 for Centralized User Provisioning across multiple systems
• Customized RAR SOD rule set and used the same for role & user SOD simulations for SOD free roles & user access matrix
• Worked on the MSMP Workflow Configuration, BRF+ and Function Modules for custom Workflow development
• Created a Custom Rule Set with Org rules activated which can be tailored to Multiple Org units.
• Excellent understanding of business processes, risks involved & risk control recommendations
• Extensively used MS Access Enforcer & Excel VBAs to present and track status/ audit reports

Environment: ECC 6.0, EHP4 for SAP ERP 6.0/NW7.1,EHP1 for NW 7.0, BW 3.5/7.1 Upgrade, SCM/CRM 5.2, XI/PI 7.0, SolMan 7.0, GRC 5.3 to 10.0 Upgrade, Oracle.

Confidential, Baltimore MD

SAP Security Analyst & GRC Analyst

Responsibilities:

• Security design & support for ECC 6.0, BI 7.0, CRM 5.0, Solution Manager & GRC 10.0.
• Defined Authorization assignment & management strategy and Procedures
• Define User and Authorization Management Technical Strategy using CUA
• Define User Roles and role Management Procedures (Role Owners, etc)
• Train User and Authorization Administrators (Ongoing user admin support)
• Carried out a study to identify the risks involved in custom transaction codes and created the risks in Access Risk Analysis.
• Worked with the various Business stakeholders and Audit teams in identifying mitigation controls for the identified risks.
• Created mitigation controls for SOD issues and scheduled batch jobs to provide reports to the Management team on a quarterly basis for review.
• Rule set maintenance including setting up rule sets, generating rules and transporting the rules.
• Activate Business Configuration sets and configuring End User Personalization templates.
• Setting up configuration for SoD review and reviewing SoD review requests.
• Configured Business Processes/Sub Processes for Business Role Management.
• Created and configured Custom Determinators/Workflows for ARM and BRM.
• Configured MSMP workflows and extending workflows using BRF+ rules.
• Created Firefighter IDs in the Satellite systems and configured EAM.

Environment: ECC 6.0, SAP R/3 3.1, BI 7.3, BOBJ, HRM, Taleo (Talent Management Systems xRPM, SAP Portal, SAP ServiceDesk, CUA-LDAP, SRM 6.0, CRM 7.0, SNC, & GRC 10.0.

Confidential, St Louis MO

SAP Security/Virsa Analyst

Responsibilities:

• Established SAP access/approval/change processes per SoX/audit standards.
• Evolved compliance friendly process flows for approvals of all change requests
• Made sure the processes were adhered by all teams before the changes went into production
• Implemented VIRSA Compliance Calibrator &FireFighter catering to the audit needs.
• Established naming convention & usage guides for both
• Uploaded mitigation controls & created firefighter ids, owners & monitors
• Mitigated risks & users with controls in place
• Batch jobs for SoD report dump & actions to eliminate existing violations/risks
• Verifying all approvals for the Change request, SoD Simulation reports, QA tests if applicable
• Security Maintenance & Support as part of Legacy System support (R/3 4.7, BW 3.5) and new system implementation (ECC 6.0, BI 7.0, etc)
• Worked on FI(GL,AP,AR), HR, BW 3.5, BI 7.0, CRM 5.0 & Solution Manager 4.0
• Created Business Partner for each employee(BP) & Assigned BP to the org model(PPOMA CRM)
• Was responsible for analyzing and setup of different roles, profiles and authorizations
• Performed Upgrades, system copies, Client Copies, Correction and Transport System.
• Worked on CTS, STMS and all other Transportation related issues.
• Central User Administration(CUA), role maintenance & system administration
• Trained personnel on security concepts in their respective functional areas
• Performed extensive QA for new role and role changes before approving change requests.

Environment: ECC 6.0, SAP R/3 3.1, BI 7.3, BOBJ, HRM, Taleo (Talent Management Systems xRPM, SAP Portal, SAP ServiceDesk, CUA-LDAP, SRM 6.0, CRM 7.0, SNC, & GRC 10.0.

Confidential, Richmond VA

SAP Security Analyst

Responsibilities:

• Designed, Developed and Modified roles for the sap MM, SD, PP, QM, PM, FICO, TSW, Basis and ABAP using profile generator (PFCG).
• Worked with functional and technical experts in gathering requirements in designing roles and profiles.
• Designed, built and maintained roles for BW reporting, administration and end users.
• Created and maintained users and roles in Portal.
• Used SU10 to make changes to mass number of users and SU01 to create user ids.
• Created and transported security roles between systems using SE09/SE10.
• Derived and maintained PFCG roles for CRM Business roles and assigned the users to positions in the org- model.
• Created custom authorization groups thru SE54 to protect Custom tables.
• Built custom objects (SU20 and SU21) as per business requirements and effectively used them in roles to achieve the expected security.
• Created and maintained objects in BI using RSECADMIN.
• Built single, composite and derived roles and maintained the org levels.
• Worked with developers in achieving the functionality of the custom objects in programs and roles.
• Used Virsa Compliance calibrator to build the rules on SOD conflicts in Transaction codes and objects.
• Performed Mass deletion of roles in QA and Dev systems as a part of cleanup work.
• Extensive experience in direct end user support (Tickets on ids and authorizations).
• Used GRC-Compliant user provisioning (CUP) to create, change and request new user accounts in the SAP systems.
• Used SU53 for auth. Error checks and ST01 in setting trace to identify the missing objects and values.

Confidential, CA

SAP Security Analyst

Responsibilities:

• Had an opportunity to take part in security implementation in SAP HR module, in which I have created all HR roles globally and regional wise as per the business demand.
• Worked on issues occurred during HR go-live.
• Extensively worked on Structural Authorizations in HR, creating Structural Authorization profiles and assigning them to the users and transport thru to production system. Securing structural authorization through normal authorization.
• Assigning HR Roles Directly to a Position/Job depending on the type of employee.
• Developing, Testing and Implementing SAP Security Roles, Profiles and Authorizations for various landscapes including R/3, BW.
• Troubleshot, traced, and fixed roles throughout unit-testing phase
• Using profile generator to create and maintain single, derived and composite roles.
• Analyzed missing authorizations problems using SU53.
• Day to Day use of Virsa Compliance Calibrator for identifying SOD’s and discuss with business regarding the same for complying with SOX regulations.
• Running Virsa in Simulation mode and Detail mode before amending any changes to user access.
• Manage and maintain SAP Security policies and Standards.
• Specific responsibilities in this area include all aspects of user and role definition, creation, modification and deletion.
• Responsible for problem determination and resolution (where applicable) of all SAP security related issues through remedy ticketing tool.
• CUA Configurations and troubleshooting in case of any failures.
• Responsible for the scheduling of all background processing for the SAP systems and all related environments.