Rajesh
SAP Security/GRC Consultant
Email Id: aca07z@r.postjobfree.com
Mobile: +91-
Obje Seeking a position to utilize my skills and abilities in the Information
ctiv Technology Industry that offers professional growth while being resourceful,
e innovative and flexible.
Care Over 2.6years experience as a SAP Security/GRC consultant
er Solutions-oriented IT Security Specialist with notable success directing a broad
Summ range of corporate IT initiatives while participating in planning and
ary implementation of information security solutions in direct support of business
objectives.
A motivated individual and a quick learner, committed to teamwork, multicultural
experience. Able to communicate clearly and honestly with clients, peers and
managers.
Strong believer in "Quality means doing it right at the first time".
SAP
Secu Created and maintained Derived and Composite Roles.
rity Perform user administration (creating, changing, maintaining, deleting, user
/ accounts and assigning roles).
GRC Managed user login parameters and password parameters.
Skil Find out missing Authorizations using SU53 report from the user.
ls Updating transactions via SU24 (managing authorization objects).
Critical authorization objects such as S_TABU_DIS, S_PROGRAM, and S_DEVELOP were
restricted and monitored.
Worked with security related tables such as AGR_TCODES, AGR_USERS, and
AGR_DEFINE etc.
Worked on security tickets and satisfied the client by reducing the ticket
volume to a manageable number.
Generating the Quarterly User Access Report.
Perform SOD checks in GRC and generate SOD Management Report.
Comprehensive use of Profile Generator to generate roles and assign roles to end
users.
Produced SOD Analytical Reports (summary and detailed) against Users, User
Groups, Roles and Profiles using RAR.
Apply controls to mitigate any Risk associated with a group of transactions or
objects and User, Role, or Profile.
Prof
essi Gemini Consulting Services
onal Sept2012-Till date
Work
Expe
rien Project: WCMC
ce
Weill Cornell Medical College is the biomedical research unit and medical school
of Cornell University. It's striving efforts in research has made it as one of
the top clinical and research centers in the country. As part of their BI
implementation, I handled all the reporting requirements including product
installation and administration
Role: SAP Security Consultant
My Roles and Responsibilities:
Created Non Production Roles for various teams and making sure secure objects
access in not given
Involved in Creating Role Matrices along with Functional Team
Developed Roles, profiles and authorization access to application modules for
FI, MM, PM Teams
Setting Up Security Policies and Procedures and documenting it
Created 1700+ operational users using CATT Scripts. Written CATT scripts for
User creation, Role Assignments and password resets
Monitoring and terminating locked user sessions.
Implemented Structural Authorizations for HR
Implemented Custom Table and Program security
Created Batch User ids and Roles to give Batch Access to specific users
Created and maintained Training user ids
Configuring SU24 to make sure objects have only maintained and standard state in
PFCG
Ongoing Support and Role Changes
Made sure the Roles are under Compliance with Sarbanes- Oxley Security Act
Scheduling PFCG_TIME_DEPENDENCY to Run as a night job
Securing System by setting up Profile Parameters
Setup password Rules
Created Structural Authorization Profiles and assign the profiles to positions
and User IDs as per the organizational structure.
Updating HR master data through PA30 and Assigning roles based on positions for
users in PO13.
Prof
essi HP
onal sept2011-Aug2012
Work
Expe
rien Project: Clorox
ce Role: SAP Security Consultant
Project profile
For Generations, The Clorox Company has been committed to making the products
that promote a cleaner world and healthier homes. The Story of bleach is as
unique and innovative as our full line of
Products. Our story builds on the timeless important of bleach, driving our
efforts to improve global health and inspiring our future.
My Roles and Responsibilities
Perform user administration (creating, changing, maintaining, deleting and
assigning roles).
client personnel in R/3 Security and general Basis knowledge
Managed user login parameters and password parameters.
Authorization trouble shooting in R/3
Find out missing Authorizations using SU53 report from the user
Led the Knowledge Transfer sessions and effectively trained the production
support team.
Worked on security tickets and satisfied the client by reducing the ticket
volume to a manageable number.
Educated Provide 24X7 on call support as scheduled in the call rotation for SAP
application security
HR security Activities:
Worked on different regions, Asia pacific, Euro - Africa, Africa/Middle East,
and Latin America America and handled all kind of HR security related issues.
Role modifications like adding tcodes and object level modifications based on
Client requirement.
Day to day technical support and resolution of Security issues
Created Structural Authorization Profiles and assign the profiles to positions
and User IDs as per the organizational structure.
Updating HR master data through PA30 and Assigning roles based on positions for
users in PO13.
Worked on Portal (ESS/MSS) related Security issues.
Maintain Info types and PA Areas, Sub Areas through P_Origin.
Working with HR authorization issues based on user requirement.
Generating PD profile using tcode Zrhprofl0.
Troubleshooting authorization issues: Analyzing missing authorizations using
SU53 and ST01
Participated in building security roles and structural authorization profiles
and Helped in solving critical post production support issues.
Effectively analyzed trace files and tracked missed authorizations for user's
access problems and inserted missing authorizations manually.
Transporting Security changes from development systems to quality and production
servers
Prof GRC Activity:
essi
onal Governance Risk and Compliance (GRC):
Work
Expe Creating users and assigning roles using Virsa Access Enforcer and knowledge of
rien other tools in Virsa.
ce Analyzing the SOD rules in the Virsa (Risk Analysis).
Checking the SOD (Segregations of Duties) using Compliance calibrator before
assigning to the users.
Designed Firefighter Roles and IDs for Super user access
Configured Compliance Calibrator and created Mitigation Controls
Developed various SOD reports for users & Roles and cleaned up Roles with
conflicting actions
Developed mitigation controls and assigned appropriately
Brigade
Jan2011 - Sept 2011
Role: End user
Project: HP Help Desk
My Roles and Responsibilities:
Password resets and user administration
Troubleshooting O/s and hardware related issues.
[pic]