Rajesh

SAP Security/GRC Consultant

Email Id: aca07z@r.postjobfree.com

Mobile: +91-

741*******

Obje Seeking a position to utilize my skills and abilities in the Information

ctiv Technology Industry that offers professional growth while being resourceful,

e innovative and flexible.

Care Over 2.6years experience as a SAP Security/GRC consultant

er Solutions-oriented IT Security Specialist with notable success directing a broad

Summ range of corporate IT initiatives while participating in planning and

ary implementation of information security solutions in direct support of business

objectives.

A motivated individual and a quick learner, committed to teamwork, multicultural

experience. Able to communicate clearly and honestly with clients, peers and

managers.

Strong believer in "Quality means doing it right at the first time".

SAP

Secu Created and maintained Derived and Composite Roles.

rity Perform user administration (creating, changing, maintaining, deleting, user

/ accounts and assigning roles).

GRC Managed user login parameters and password parameters.

Skil Find out missing Authorizations using SU53 report from the user.

ls Updating transactions via SU24 (managing authorization objects).

Critical authorization objects such as S_TABU_DIS, S_PROGRAM, and S_DEVELOP were

restricted and monitored.

Worked with security related tables such as AGR_TCODES, AGR_USERS, and

AGR_DEFINE etc.

Worked on security tickets and satisfied the client by reducing the ticket

volume to a manageable number.

Generating the Quarterly User Access Report.

Perform SOD checks in GRC and generate SOD Management Report.

Comprehensive use of Profile Generator to generate roles and assign roles to end

users.

Produced SOD Analytical Reports (summary and detailed) against Users, User

Groups, Roles and Profiles using RAR.

Apply controls to mitigate any Risk associated with a group of transactions or

objects and User, Role, or Profile.

Prof

essi Gemini Consulting Services

onal Sept2012-Till date

Work

Expe

rien Project: WCMC

ce

Weill Cornell Medical College is the biomedical research unit and medical school

of Cornell University. It's striving efforts in research has made it as one of

the top clinical and research centers in the country. As part of their BI

implementation, I handled all the reporting requirements including product

installation and administration

Role: SAP Security Consultant

My Roles and Responsibilities:

Created Non Production Roles for various teams and making sure secure objects

access in not given

Involved in Creating Role Matrices along with Functional Team

Developed Roles, profiles and authorization access to application modules for

FI, MM, PM Teams

Setting Up Security Policies and Procedures and documenting it

Created 1700+ operational users using CATT Scripts. Written CATT scripts for

User creation, Role Assignments and password resets

Monitoring and terminating locked user sessions.

Implemented Structural Authorizations for HR

Implemented Custom Table and Program security

Created Batch User ids and Roles to give Batch Access to specific users

Created and maintained Training user ids

Configuring SU24 to make sure objects have only maintained and standard state in

PFCG

Ongoing Support and Role Changes

Made sure the Roles are under Compliance with Sarbanes- Oxley Security Act

Scheduling PFCG_TIME_DEPENDENCY to Run as a night job

Securing System by setting up Profile Parameters

Setup password Rules

Created Structural Authorization Profiles and assign the profiles to positions

and User IDs as per the organizational structure.

Updating HR master data through PA30 and Assigning roles based on positions for

users in PO13.

Prof

essi HP

onal sept2011-Aug2012

Work

Expe

rien Project: Clorox

ce Role: SAP Security Consultant

Project profile

For Generations, The Clorox Company has been committed to making the products

that promote a cleaner world and healthier homes. The Story of bleach is as

unique and innovative as our full line of

Products. Our story builds on the timeless important of bleach, driving our

efforts to improve global health and inspiring our future.

My Roles and Responsibilities

Perform user administration (creating, changing, maintaining, deleting and

assigning roles).

client personnel in R/3 Security and general Basis knowledge

Managed user login parameters and password parameters.

Authorization trouble shooting in R/3

Find out missing Authorizations using SU53 report from the user

Led the Knowledge Transfer sessions and effectively trained the production

support team.

Worked on security tickets and satisfied the client by reducing the ticket

volume to a manageable number.

Educated Provide 24X7 on call support as scheduled in the call rotation for SAP

application security

HR security Activities:

Worked on different regions, Asia pacific, Euro - Africa, Africa/Middle East,

and Latin America America and handled all kind of HR security related issues.

Role modifications like adding tcodes and object level modifications based on

Client requirement.

Day to day technical support and resolution of Security issues

Created Structural Authorization Profiles and assign the profiles to positions

and User IDs as per the organizational structure.

Updating HR master data through PA30 and Assigning roles based on positions for

users in PO13.

Worked on Portal (ESS/MSS) related Security issues.

Maintain Info types and PA Areas, Sub Areas through P_Origin.

Working with HR authorization issues based on user requirement.

Generating PD profile using tcode Zrhprofl0.

Troubleshooting authorization issues: Analyzing missing authorizations using

SU53 and ST01

Participated in building security roles and structural authorization profiles

and Helped in solving critical post production support issues.

Effectively analyzed trace files and tracked missed authorizations for user's

access problems and inserted missing authorizations manually.

Transporting Security changes from development systems to quality and production

servers

Prof GRC Activity:

essi

onal Governance Risk and Compliance (GRC):

Work

Expe Creating users and assigning roles using Virsa Access Enforcer and knowledge of

rien other tools in Virsa.

ce Analyzing the SOD rules in the Virsa (Risk Analysis).

Checking the SOD (Segregations of Duties) using Compliance calibrator before

assigning to the users.

Designed Firefighter Roles and IDs for Super user access

Configured Compliance Calibrator and created Mitigation Controls

Developed various SOD reports for users & Roles and cleaned up Roles with

conflicting actions

Developed mitigation controls and assigned appropriately

Brigade

Jan2011 - Sept 2011

Role: End user

Project: HP Help Desk

My Roles and Responsibilities:

Password resets and user administration

Troubleshooting O/s and hardware related issues.

[pic]

Contact this candidate