Professional Summary IT professional with 12 years of experience, including 8+ years of experience in SAP Security

• Experience includes overall processing of design, development and implementation of software at application levels
• 8+ years of experience in Security includes SAP BW (7.0, 3.5, 3.1),SAP R/3 (4.5B, 4.6C, 4.7 Enterprise, ECC 6.0), XI/ PI, GTS (3.0, 8.0), CRM 7.0 and Enterprise Portal 7.0
• Experience in migrating/upgrading SAP BW 3.5 to SAP BW 7.0(SAP Netweaver 2004s)
• Successful completion of 4 full cycle SAP BW Security implementations
• Fully implemented the NW2004s BI Security analysis authorizations.
• Experience in SAP Security upgrade from 4.6C to ECC 6.0
• Experience in SAP Security Upgrade from GTS 3.0 to GTS 8.0
• Successfully implemented CRM 7.0 Security.
• Strong Experience in Virsa/GRC tools (CC 5.1, RAR 5.3, FF 4.0, SPM 5.3).
• Experience in Virsa Upgrade from Virsa 5.1 to GRC AC 5.3
• Expertise in remediation and mitigation of SOD/SOX violations
• Extensive experience in SAP Portal, UME and LDAP Security.
• Excellent Experience inSAP Security tools/transactionsincludes PFCG, SU01, ST01, SU53, RSSM, RSECADMIN, SUIM, SE10, SCAT, RSD1, USMM, SLAW
• Good Experience in Central User Administration(CUA)
• SAP America trained Enterprise Portal Administrator (SAPEP & EP200).

EDUCATION
B.E. (Engineering)

SKILLS SUMMARY
ERP : SAP R/3 (4.5B, 4.6C, 4.7 Enterprise, ECC6.0), BW (7.0, 3.5, 3.1),
Enterprise Portal 7.0, GTS 3.0, 8.0, CRM 7.0, SCM
Languages & : SQL, PL/ SQL, COBOL, JCL, VPLUS, POWERHOUSE,
Tools : VIRSA/GRC Compliance Calibrator 5.1, RAR 5.3, Firefighter (3.0, 4.0),
SPM 5.3, SUPRTOOL, QUERY, UNIX SHELL SCRIPTS.
Operating Systems: HP-UX, MPE (HP3000), Solaris, AIX.
Database : IMAGE, ORACLE8

PROFESSIONAL EXPERIENCE

Sr SAP Security Lead

Confidential,San Jose, CA May 2011 - Till Date

Project: SAP GRC, ECC, BI Security Support & GTS Security Upgrade

SAP R/3 4.6C, ECC 6.0, EP 7.0, BI 7.0, GRC RAR 5.3, SPM 5.3, GTS 3.0, GTS 8.0

• Involved in Security design/ support for MM, PP, SM, SD, FI, CO, HR, and QM modules.
• Successfully managed/ implemented SAP Security Upgrade from GTS 3.0 to GTS 8.0
• Worked with internal and external auditors to analyze and solve the authorization conflicts
• Mitigate and Remediate SOX violations using GRC AC RAR.
• Maintained BI Authorizations through RSECADMIN Tool
• Implemented the EP7.0 Portal Security
• Worked with Basis and Portal teams to configure SSO between the portal and ECC,BI systems
• Maintained Portal users and Groups through AD (Active Directory) LDAP Server.
• Created iViews, Worksets and Roles in SAP Portal 7.0 for BI & SM Users
• Execute Sub approvals, Sal Updates and PO Organizational spending authority
• Designed the Portal Stress and load Test methods, created and executed portal scripts
• Designed, created and executed Mercury Quick Test and SAP SECATT Scripts
• Created and Maintained OSS Users & Developer Keys.
• Involved in SAP License management using USMM and SLAW transactions.
• Troubleshoot authorization related problems using ST01 and SU53.
• Involved in 24/7 SAP Security Support on rotational basis.
• Manage and train offshore Teams in India and Vietnam

Sr SAP Security Consultant

Confidential,Minnetonka, Mn Nov 2010 – Apr 2011

Project: SAP R/3, BI, SCM, TRM Security Support, SAP CRM Security Implementation

SAP R/3 4.6C, SAP CRM 7.0, BI 7.0, SOLMAN (CUA), SCM, TRM.

• Successfully implemented Security for CRM 7.0 system
• Defined business roles in CRM using transaction CRMC_UI_PROFILE
• Troubleshoot authorization related problems using ST01 and SU53.
• Worked with auditors to identify key controls, risks and SOD/SOX issues related to business processes, transactions, control infrastructure, and financial reporting processes
• Redesigned roles based on auditing requirements
• Checked SOD violations by using customized SOD tool
• Transported Security roles in SOLMAN using ChaRM (Change Request Management)
• Performed User master maintenance such as creating new users, assigning roles, deleting users, resetting password, Lock/unlock User ID using transaction code SU01 in CUA system.
• Extensively used Profile generator (PFCG) to create/ modify roles.

SAP Security Lead

Confidential,San Jose, CA Mar 2008 – Oct 2010

Project: SAP BI Security Migration, SAP GRC upgrade 5.1 to 5.3, Security Upgrade from
4.6C to ECC6.0.

SAP R/3 4.6C, ECC 6.0, EP 7.0, BW 3.5, BI 7.0, Virsa/ GRC CC 5.1, RAR 5.3, FF 4.0, SPM 5.3.

• Successfully managed/ implemented the Virsa 5.1 to GRC AC 5.3 Upgrade.
• Setup and Configure Virsa Firefighter ids for the Production systems
• Provided technical expertise to SAP Virsa implementation and re-engineer the security roles as required
• Designed and lead the SAP Security Upgrade from R/3 4.6C to ECC 6.0
• Interacted and discussed with all levels of users for migrating the current BW user roles to the new BI authorizations.
• Performed the migration of reporting authorizations from BW 3.5 to BI 7.0 using program RSEC_MIGRATION.
• Created and maintained the new analysis authorizations to give access to the existing Infoproviders using transaction RSECADMIN.
• Created new Analysis Authorizations for giving access to the existing hierarchies, info objects by replacing the old customized auth objects.
• Assigned these new Analysis Authorizations to the BW roles using the authorization object S_RS_AUTH through transaction PFCG.
• Involved in transportation of these new analysis authorizations.
• Involved in unit testing of these new roles along with the BW team members
• Troubleshoot authorization related problems using ST01 and SU53.

SAP BW Security Lead/ SAP Security Analyst

Confidential,Endicott, NY Dec 2005 – Feb 2008
Project: Security Implementation/ Migration for Nisource, Coty, Unilever, Solectron

SAP BW 3.5

• Interacted and discussed with all levels of users for defining and developing user roles
• Created reporting roles using the transaction PFCG
• Provided authorization based on the InfoCube level, queries, ODS objects
• Created Custom Reporting Authorization Objects using transaction RSSM
• Created Authorization definitions for hierarchies using transaction RSSM
• Created reporting roles for end users secured by InfoObjects such as company code, commodity code, queries, info cubes.
• Involved in transportation of Custom Objects and hierarchy auth definitions.
• Involved in testing of the roles along with the BW team members
• Troubleshoot authorization related problems using ST01, RSSM and SU53.
• Assigned these new Analysis Authorizations to the BW roles using the authorization object S_RS_AUTH through transaction PFCG.
• Created new Analysis Authorizations for giving access to the existing hierarchies, info objects by replacing the old customized auth objects.

SAP R/3 4.7

• Performed User master maintenance such as creating new users, assigning roles, deleting users, renaming users, resetting password, Lock/unlock User ID using transaction code SU01
• Created and modified Single roles, Composite roles, Derived roles by using PFCG.
• Transported roles using Change Request Method, as well as moved roles from one system to another using the Download and Upload method
• Analyzed Business scope, user roles and developed role matrix for the better understanding of Security authorization plan
• Performed mass activities such as user creation, role assignments to users, assignment of single roles to composite roles, assigning user groups to users etc. by using CATT Scripts
• Performed mass user operations such as locking/unlocking mass user ids using transaction code SU10
• Extensively worked with Security Related tables such as AGR_TCODES, AGR_DEFINE, and AGR_USERS using transaction SE16.
• Used SU53, ST01 to troubleshoot security/authorization related problems
• Worked closely with Audit team for SAP Security
• Studied the Organization structure, jobs, roles and the SOD matrix for the Security developed in SAP and handled SOD conflicts for Sarbanes Oxley Compliance.
• Involved with User Acceptance Test (UAT) and performed the Unit Testing, and Regression Testing
• Worked with local management teams on day-to-day basis
• Documented solution documents and job descriptions for various procurement, emea and system management roles.

SAP Security Consultant

Confidential,Colorado Springs Feb 2004 – Nov 2005
Project: Light House Finance

BW 3.1

• Interacted and discussed with all levels of users for defining and developing user roles
• Created reporting roles using the transaction PFCG
• Created Custom Reporting Authorization Objects using transaction RSSM
• Created reporting roles for end users secured by InfoObjects such as company code, queries, info cubes
• Involved in testing of the roles along with the BW team members
• Troubleshoot authorizations related problems using RSSM, ST01.

SAP R/3 Enterprise 4.7

• Maintenance of the enterprise wide SAP security framework.
• Constantly interacting with the client and onsite team thereby maintaining a smooth flow of information between the offshore and onsite team.
• Utilize the SAP Profile Generator (PFCG) to create new and modify existing SAP security Roles/profiles.
• Troubleshoot existing user roles, security objects and authorizations using SU53 and ST01 to resolve security conflicts.
• Worked with security related tables such as AGR_TCODES, AGR_USERS, and AGR_DEFINE etc.
• Transported roles using change request method, as well as moved roles from one system to another using the Download and Upload method
• Perform regular system audits to detect deviations of established procedures, role mapping and unauthorized system activity and report findings to management.
• Develop, maintain, implement, and communicate security policies and procedures.
• Work with the business managers in refining or changing SAP roles
• Verification of approvals regarding user access modifications
• Interface effectively with customers, vendors, and peers
• Knowledge and understanding of system landscape and migration flow.
• Individually developed many roles with PFCG for SAP FI, CO modules.
• Support integration testing of Roles/profiles
• Handled SOD conflicts for Sarbanes Oxley Compliance.
• Monitor progress on work queues to ensure that all open items are being resolved in a timely fashion.

Confidential,Colorado Springs, CO Oct 2003 - Jan 2004
Project: SAP Standard Interface

SAP R/3 4.6C

• Extensive usage of Profile Generator (PFCG) for the creation, generation and assignment of Activity Groups and Roles.
• Worked in the modification of existing security profiles/Activity groups to address ongoing business changes.
• Developed role naming convention, role change management and access management processes
• Created various authorization groups for access control
• Developed strategy to manage security development lifecycle: requirements gathering, role design, construction and mapping, system test, change management, GO-LIVE user assignment
• Closely worked with end-users to resolve security issues.
• Extensively worked with USER related tables such as USR01, USR02, USR03 etc using transaction SE16.
• Transported the generated roles and profiles using SE09/SE10
• Created/maintained IDs, profiles and authorizations.
• Used CATT scripts to support mass updates to user master. The CATT scripts were for creating new users, assigning authorization profiles, removing authorization profiles and locking-unlocking users.

Software Consultant

Confidential,CO Sept 2001 – Sept 2003
Project: Accounts Payable System (MEPS) & Inventory System (PIWI)

MEPS is a Multi Entity Payable System for HP Intra Corporate and HP Vendors. This system has an online Data Entry and Maintenance of Invoices and Vendor Information. This system also involves the batch loading of the Trade and Intra Corporate Invoices. PIWI is a Purchased Inventory and Workorder Interface Subsystem. This subsystem links centrally processed purchases of inventory and workorders to appropriate data at various HP divisions in U.S. The inventory purchases and their related variances and workorder purchases are booked to the General Ledger.
Responsibilities:

• Development, Testing and Maintenance
• Planning, Estimating and Co-ordinating all the projects that the user requests.
• Constantly interacting with the client and onsite team thereby maintaining a smooth flow of information between the offshore and onsite team.
• Taking initiatives for improvement of the existing system in terms of efficiency and processes followed.
• Involved in Level-2/Level-3 IT Support for MEPS-IC, MEPS-Trade, PIWI.
• Involved in high level meetings with the customers to discuss further enhancements in the Accounts payable system.
• Involved in numerous projects such as ITP SAP Single Instance, Fusion, Lost Tribes and Smart Buy Implementation Projects for betterment of Accounts Payable system.
• Created/ Modified JCLs, Schedules to ensure successful month end activities.
• Involved in Unit testing and Integration testing as per test plans and logging the results.
• Developed Powerhouse QUIZ Reports for business purposes.

Environment: HP-COBOL, IMAGE, SUPRTOOL, MPEX, DBUTIL, JCL, BATCHNET, ALLBASE, ISQL, CONMAN, ARRANGER, QUERY, POWERHOUSE QDESIGN, QUIZ, QTP.

Software Engineer

Confidential,India. Aug 1999 – Aug 2001
Project: Hewlett Packard Accounts Receivable System (ARMADA)

ARMADA manages Account Receivable Data Entry, Credit Management Reporting and Collection Performance Reporting. It also consists of online screens where users can view the Invoice Information, can generate Credit Reports and also view the customer status. The inputs to this system are from TIM (Trade Invoice Module), TIGER (Trade Invoice Generator) and from many other systems such as HEART, SORDS.
Responsibilities:

• Involved in the maintenance/development of application throughout the US region.
• Involved in the validation process of many modules of the ARMADA system.
• Involved in enhancing the ARMADA application to accommodate new inputs from the E-Revenue / Web tools.
• Development and Testing.
• Followed all the Quality procedures as per the ISO-9001 standards.

Environment: HP-COBOL, TURBO IMAGE, SUPRTOOL, MPEX, JCL, ISQL, CONMAN, ARRANGER, QUERY, ADAGER.

Project: FPM (Field Project Management) Migration

• This is a tool that is used by HPC for tracking costs and revenue. The FPM was designed in VPLUS with TurboImage as the backend running on the HP3000. This project is for migrating the FPM to VB front end and Oracle 8.0 as the backend on HP UX.

Responsibilities:

• Porting the existing application to Oracle.
• Transforming data from TurboImage to Oracle database using Suprtool, STExport, SQL*Loader
• Migrating Suprtool tasks from MPE to HP-UX
• PL/SQL programming
• Unix Shell Programming

Environment: COBOL, TurboImage, Suprtool, STExport, Oracle 8.0, SQL, PL/SQL, SQL*Loader, Visual Basic 6.0.