SAP Certified Consultant ( SAP Authorization and Auditing - C_AUDSEC_731)

Mohammed Eliasuddin (SAP Security Consultant)

Phone: +1-587-***-****

Email: acg2s3@r.postjobfree.com

. Eliasuddin is a SAP Certified Security Consultant with extensive

experience in maintaining authorizations of different SAP Components

which include ECC 6.0, BI 7.0, HCM, APO/SCM, and SRM, CRM 7.0, GRC,

Solution Manager and implementation of Central User Administration.

. Above 7 years of SAP Security Authorizations including Netweaver 07

Products

. Implemented Full life cycle SAP implementations to ECC 6.0 (FI,SD, MM,

HR) and BI 7.0, HCM,CRM 7.0 - IC WebClient UI

. ECC 6.0: Implemented Security related to Finance, Sales, and Material

Management Areas by creating Master/ Derive Roles.

. CRM 7.0 : Designed Business Roles by working closely with Functional Team

and Created respective PFCG roles to provide access to logical links of

work centers in Business Roles, Assigned Business roles to the Business

Users in the Organization Structure, Created Business Partner and

associated them with user (employee)

. Analytical and creative problem solving capabilities in all SAP

environments.

. Portal EP 7.0 : Assigned Portal roles corresponding to backend roles

to user view and use in the portal, Created portal roles using portal

content which allow access to Iviews in Portal and Mapped the backend

roles of ECC 6.0, BI 7.0 roles to Portal groups and assigned portal

groups to users using User Management Engine.

. GRC 10.0: Performed user audits for customer systems and reviewed role

and profile using the GRC to identify and militate against potential

security risks. Expert in Configuring, Troubleshooting of Various

Components of GRC 10.0 ( ARM (Access Request Management ),ARA ( Access

Risk Analysis ), BRM (Business Role Management), EAM ( Emergency Access

Management)

. Solution Manager 7.0: Configured Roles related to different projects and

worked as team member to support CHARM.

. Expertise in Role-based Security (design and maintenance), Solution

Manager, BI Security, Portal Security / User management, CTS, Single

Sign On

. BI (Business Intelligence) 7.0 : Created analysis authorization objects

for authorization relevant characteristics and Key figures and Secured

the Reports at granular level by using (Navigation Attribute Info

Provider)

. Expert in resolving R/3,BI, CRM, HR and portal security issues, trouble

shooting and Active Directory Access Request Processing.

Professional Experience

National Grid, Syracuse, NY

Jan 2011 - Feb 2014

Role: SAP SECURITY Consultant

National GRID WITH 26,000 EMPLOYEES provides electricity generation,

transmission, distribution, natural gas and renewable energy products

to residential and commercial customers in Eastern part of USA and

Across UK.

Responsibilities

ESS/MSS & GRC 10.0

. Created backend roles for HR Employer self service ESS and Manager

self service MSS

. Implemented GRC 10.0 Access Control ( ARA, ARM, EAM, BRM)

. Created Connector, Associated Connector with connector type and

Generated Risk by using Rule sets, Sync the Data from ECC to GRC

(Auth, Profile and Users) and Configured Mitigation Controls in ARA.

. Created FF Id's for Functional folks in EAM and Configured FF Controls

and Monitors.

. Configured MSMP Workflows for different types of User requests in ARM

. Expert in Creating Users like Requesters, coordinators, Role Approvers

and Final approvers related to workflow of CUP for user provisioning

in SAP Backend Systems

. Worked closely with Team members to implement GRC 5.3 Support packs

13.

. Gathered the security requirements for PFCG roles as per the business

requirements

BOBJ 4.0 / BI 7.0 / EP7.0

. Created analysis authorization objects for authorization relevant

characteristics and Key figures related to Sales chain & Finance

reports related to District Managers, Directors and VP

. Created BI 7.0 Roles for Various Department and sync the roles/users

with BOBJ 4.0

. Restricted Access to users by Creating Access Levels, Groups, personal

folders for various Department in BOBJ 4.0 and Assigned users into

Group.

. Configured users to login BOBJ 4.0 through SSO and run the reports in

BOBJ 4.0 and replicate the data as per Roles in BI 7.0

. Assigned Portal roles corresponding to backend roles to user view and

use in the portal

. Created portal roles using portal content which allow access to

IView's in Portal

. Map the backend roles of ECC 6.0, BI 7.0 roles to Portal groups and

assigned portal groups to users using User Management Engine.

CRM 7.0

. Created PFCG roles for the Business Roles in CRM 7.0 IC WebClient UI

and assigned them in Org Structure to various positions.

. Worked closely with the CRM BSA in creating the Business Roles, Org

Structure & Positions.

. Traced and Resolved Authorization issues for BSP Applications in Web

Client UI

. Created PFCG roles to provide access to logical links of work centers

in Business Roles

. Assigned Business partners to various positions within the

Organization Structure

. Creating Business Partner and associating them with user (employee)

Solution Manager 7.0

. Created Roles in Solution Manager for different projects to view their

specific projects

. Created Project in Solution Manager and uploaded documents related to

various projects as per ASAP Methodologies

. Worked with CHARM within the team to coordinate and move transports to

production systems.

General Support

. Worked extensively with the PFCG tool to create roles for FI (AP,AR),HR, OM, APO, ESS and interfaces

. Worked with business leads in order to develop requirement role

matrices

. Created Roles in Solution Manager for designing various different

projects.

. Worked with process owners for SOD conflicts and assigned appropriate

roles to the users

. Analyzed the impact of SU24 changes to proactively avoid issues

TESORO SAN Antonio, TX Jan

2009- Dec 2010

Role: SAP Security Analyst

Tesoro Corporation is an independent refiner and marketer of petroleum

products. Tesoro, through its subsidiaries, operates seven refineries in

the western United States with a combined capacity of approximately 675,000

barrels per day

Responsibilities

HR /HCM (Structural Authorization) and ESS/MSS

. Developed reports for user access to sensitive info types for OM, PA,

Compensation and Benefit roles

. Worked as a BI-HR expert to redesign the global access

. Created PD Profiles According to business requirements and assigned to

users

. Worked with HR Functional specialists to help them understand what SAP

authorization objects are causing the conflicts and what all options

exist for mitigating the conflicts

GRC 5.3 (SOX/SOD)

. Configured Risk Analysis and Remediation in GRC 5.3 to update new

risks for the rule set

. Configured workflows in CUP (Compliance User provisioning) and

automated User Provisioning related to different types of User

requests (New Requests, Change Request, Delete Request, Lock and

Unlock).

. Recommend policy changes as per the Best Practices and Sox Compliance

. Ensured no SOD's existed at the role- and user- level

. Implemented enhancement to secure FF ID's

BI 7.0/EP 7.0

. Designed the Security Structure for SAP BI 7.0

. Created analysis authorization objects using for authorization

relevant characteristics and Key figures

. Designed and created portal roles in the EP6.0 and EP 7.0

CRM 7.0

. Created PFCG roles for the Business Roles in CRM 7.0 IC WebClient UI

. Worked closely with the CRM Customizing team in creating the Business

Roles

. Traced and Resolved Authorization issues for BSP Applications in IC

WebClient UI

General Support

. Coordinated with the offshore teams and monitored the progress of the

project

. Managed and coordinated daily tasks with the global offshore Teams

. Created and defined the deliverables for the Blue print phase

. Communicated technical and non-technical issues to the client

supervisors

. Reviewed the custom code and closed the security GAP's by comparing

with the Tech specs

. Experience in setting up users with AOD (Access on Demand) access.

. Responsible to prepare the deliverables for the role redesign project

. Develop and document policies to fill the GAP's in the security

architecture

. Created roles for SAP modules FICO,MM,QM,PM and HCM

Caterpillar Peoria, IL Jan 2008

- Dec 2008

Role: SAP Security Consultant

Responsibilities

CRM 7.0

. Created PFCG roles for the Business Roles in CRM 7.0 IC WebClient UI

. Worked closely with the CRM Customizing team in creating the Business

Roles and Org Structure

. Traced and Resolved Authorization issues for BSP Applications in Web

Client UI

. Created PFCG roles to provide access to logical links of work centers

in Business Roles

. Assigned Business roles to the Business Users in the Organization

Structure

. Creating Business Partner and associating them with user (employee)

. Maintained user parameter for CRM users in SU01 to access BSP in IC

WebClient UI

BI 7.0 /EP 7.0

. Created analysis authorization objects for authorization relevant

characteristics and Key figures

. Creating Portal roles for BI Portal (EP 7.0) to Publish Queries

. Assigned Portal roles corresponding to backend roles to user view and

use in the portal

. Created portal roles using portal content which allow access to Iviews

in Portal

. Map the backend roles of ECC 6.0, BI 7.0 roles to Portal groups and

assigned portal groups to users using User Management Engine.

. Created backend roles in BI for BOE crystal reports to access data

from SAP BI

. Created roles for BI Data ware house objects and BI Reporting layer

objects

. Implemented BI security at Infoarea, Infocube, InfoObject, DSO's,

MultiProvider levels

General/Support

. Created single, derived and composite roles as per the business

requirements

. mass maintenance of users

. Created OSS ID's for SAP Project team members

. Generated security audit reports

. Worked with business leads in order to develop requirement role

matrices

. Worked with process experts and head of departments for SOD conflicts

and assigned appropriate roles to the users

. Traced the transactions for required authorizations and adjusted the

SU24 for those t-codes

. Analyzed the impact of SU24 changes to proactively avoid issues

. Blueprinted and created the enterprise the performance management and

compensation management roles

Akzo Nobel Car Refinished Norcross, GA Jan 2006 - Dec

2007

ROLE: SAP Security Consultant

Responsibilities:

. Created single, derived and composite roles using the PFCG Profile

Generator

. Created position based roles for Position Based Access project

. Redesigned the SAP security model to identify and eliminate any Sox

issues to ensure compliance

. Created PFCG roles for the Business Roles in CRM 7.0 Web UI

. Worked closely with the CRM Customizing team in creating the Business

Roles

. Traced and Resolved Authorization issues for BSP Applications in Web

Client UI

. Created PFCG roles to provide access to logical links of work centers

in Business Roles

. Assigned Business roles to the Business Users in the Organization

Structure

. Created new PFCG roles using the SAP Delivered Reports for

Corresponding Business Roles

. Maintained user parameter for CRM users in SU01 to access BSP in Web

UI

. Identified and closed the GAP's in the security process

. Developed and implemented SAP HR role based authorization concepts

. Implementation of position based authorization concept for HR

Conception, development and implementation of structural authorization

profiles with context-sensitive security for HR Master Data; creating

Users, Roles, Groups, work sets, I views for the EP 7.0 System

. Created roles for the training manager and administrator

. Created backend roles for HR Employer self-service ESS and Manager

self-service MSS

. Restricted HR roles as per the personnel area's using the Structural

Authorizations profiles

EDUCATION:

Masters of Computer Applications, Kakatiya University, India.

Sep 2002 - Aug 2005

Bachelor of Science (MPC) from Kakatiya University, India.

SAP Certified Technology Associate - SAP Authorization and Auditing for SAP

NetWeaver 7.31

TECHNOLOGIES:

SAP COMPONENTS SAP R/3 (4.6B, 4.6C, 4.7EE, ECC 5.0 ECC 6.0 Web AS

AND RELEASES : 6.20,6.40.7.0)

APO3.5, SRM 5.0/7.0, BOBJ 4.0,CRM 4.0,5.0,7.0, SCM

7.0

O/S: SOLUTION MANAGER 3.2- 4.0 / 7.0

NETWEAVER COMPONENTS : ENTERPRISE PORTAL 5.0

-6.0.7.0,

BI 7.0,XI, ADD-ON's : GRC 10.0/5.3, VIRSA 4.0

UNIX, WINDOWS,

ACTIVE DIRECTORY MANGEMENT.

References: Available upon request.

Contact this candidate