Post Job Free

Resume

Sign in

Security Project

Location:
United States
Posted:
April 06, 2015

Contact this candidate

Resume:

Sushma M

Mobile : 510-***-****

Executive Summary:

• Around 10+ years of total IT industry experience in Design, Development and

implementation of business applications. Experience include implementing and supporting

security((ECC, BW, CRM, HCM, SCM & Portal) ) for SAP ECC 6.0/5.0/4.7/4.6C, GRC 5.3,

GRC AC 10, Virsa 4.0, Net weaver 7 and Enterprise Portals (EP).

• Successfully implemented multiple SAP projects (full lifecycle) starting from blueprinting

phase to Go-Live & Support.

• Supporting as a SME for multiple GRC projects.

Areas of Expertise:

• Extensive hands on experience upgrading security from R/3 4.x to ECC 6.

• Good experience with configuration, Implementation and upgrade of GRC AC 10, GRC 5.3

and Virsa

• Experience implementing GRC AC and upgrading from GRC 5.2 to 5.3 & GRC 5.3 to

GRC AC 10/10.1 and Virsa 4.0 to AC 10/10.1.

• Audit support experience with E&Y and KMPG.

Professional Summary:

• Strong experience in SAP GRC applications and troubleshooting activities of Access Controls

at the time of pre & post installations.

• Configurations Experience in Access Controls capabilities RAR, ERM, CUP & SPM and

worked on reports.

• Defining Risks, Analyzing Risks, Creating Business Process, Rule creation, mitigation, Role

Owner, Alerts, Analyzing management reports, Basic Configuration Settings in all AC

capabilities.

• CUP Workflow configurations, Creating New Accounts, Lock & Unlocking, Change &

Delete accounts, HR Triggers, Roles Assignment, Maintaining approval stages.

• Role creation, Maintenance, Reports, Role Attribute creation, Methodology creation, Role

Provisioning, Role Synchronization.

• Integrating all AC capabilities, exposure to web services, BAPIs, RFC users, scheduling

relevant back ground jobs, system configurations.

• Working experience on SUIM reports, scheduling background jobs.

• Strong exposure on SAP Authorization Concept, Profile Generator, Single Role, Composite

Role, Derived Role concept, User Creation and using SOD rules.

• Experience on Transport Management System, Debugging skills, Applying Hot packages,

manual notes.

• Worked on versions of 4.6C, ECC5.0 and 6.0 of SAP BASIS releases and CUA concept and

Worked on GRC AC versions of 4.0, 5.2 & 5.3,

• Experience on GRC AC 10.0 applications and upgrade from 5.3 to AC10and 4.0 to AC10.

• Checking quality checks in GRC AC applications, Q-Index, Usability Checks, Performance

checks.

• Proven ability to work independently and within team, exposure to multicultural work

environment and having good communication skills both written & verbal.

• Involved in Preparing the project plan for GRC 10 implementation and migration project.

• Given KT session to project support teams on ARA,ARM,EAM and BRM.

• Given training to End users on GRC AC

• Created blue print documents, GRC-LDAP integration documentation,Migration project

guide line, GRC-IDM integration documentation.

R/3 Security:

• Experience of SAP R/3 Security configuration, design, development, testing, implementation

and production support.

• Maintenance of User Master Records, Profiles, Authorizations

• Role Design, Testing and Implementation.

• Troubleshooting SU53, ST01, SUIM.

• Extensive experience in User Administration and Role Assignment in CUA.

• Experience in SUIM: User Information System.

• Knowledge of analysis on authorizations.

Achievements:

• Got project HI-5 Award Q1 2011 in Optimal solutions for implementing Project on time.

• Visited NDPL customer as part of customer interaction program in SAP labs India Pvt. Ltd,

Gurgaon.

• Got Eminence and Excellence Recognition 2012(Orion Award) twice from IBM Nov,2012

and Oct,2013

Technical Skills:

GRC TOOLS SAP R/3 4.6C,620.640,700

OPERATING SYSTEMS Windows-98/2000, XP

DATABASES Oracle 9i,

DOMAIN KNOWLEDGE SAP GRC 5.2 and 5.3 & 10.0, Virsa Access Enforcer, Virsa

Compliance Calibrator, Virsa Fire Fighter, Virsa Role Expert

SAP GTP,CSS/CSN,SAP security

Project Profile

Project 1:

Title SAP GRC

Client Schweppes, New York

Duration April 2014 to Till Date

Roles & Responsibilities:

• Involved in the project planning, design documentation.

• Configured Pre-Post installation steps related to AC component.

• Configured MSMP workflow for New access,change access, Delete access,Lock/Unlocking, Functional creation, Mitigation control id creation, Risk id creation,Fire

fighter id request and also Role approval in Access request management.

• Configured SOD and UAR workflows.

• Email notification settings and scheduled the back ground jobs.

• Created Owners, Mitigation Controllers, Risk owner, Security lead Point of contact.

• Created FF owners, Controllers and Firefighter id’s for Emergency access request.

• Customized rule set uploaded, Generated the Rule set.

• Created the Methodology process for Role management and also created role attributes.

• Imported the roles for provisioning and maintained the Mandatory fields for the Roles.

• Run the background jobs to sync Authorization data, User sync, Role Sync and Profile Sync.

• Transported the GRC related TR’s from Dev to Production.

• Trouble shoot the Configuration issues like Email notification error, MSMP workflow trigger

errors, Role /User level risk analysis issue,Auto provisioning errors.

• Creation of BRF plus rules based on client requirement for MSMP workflow.

• Lead design, creation and delivery of GRC 10 solutions for SAP Security and Compliance.

• Design, configuration, and implementation of Risk Analysis (ARA/RAR), User Provisioning

(ARM/CUP), and Fire Fighter (EAM/SPM).

• Analyzed and configured GRC 10 (AC) Global Rule Set per clients’ processes/standards.

• Develop (Fire Fighter) roles and workflow approval process in GRC 10.

• Configure Access Controls (AC10) for reporting and rule maintenance.

• Create the SAP profiles and roles required to provide access to SAP by a defined functional

position and implement and fully utilize SAP GRC Security Tools.

• Created SoD Matrix based on SAP Transactions and Authorization Objects.

• Implemented SOD conflicts administration strategies and managed remediation tasks to

comply with SAP/SOD requirements.

• Design & Create Security Profiles based on functional and technical needs of all security

roles and authorizations for all SAP modules (ECC 6.0, BW, SRM, CRM, Portals, & HR).

• Implemented LDAP integration with GRC.

• Conducted end user training to business users.

• Prepared the test plans, Test scripts and Testing documentation

Project 2:

Title SAP GRC

Client Hill share Brand– GRC 5.3 to 10.1 Migration

Duration October 2013 to March 2014

Roles & Responsibilities:

• Responsible for preparing GRC 5.3 Configuration and Master data baseline document.

• Performed post installation configuration like activating BC sets.

• Worked closely with Basis team to get AC 10.1 plug Ins installed on all target systems and

installation of Migration tool on GRC 5.3.

• Migrated Configuration, Master data and Transactional data from GRC 5.3 to GRC AC 10.1

for RAR, CUP, SPM and BRM.

• Performed Intra Migration activities like Creating connections, connection groups,

performing Auth, Repository syncs, maintain configuration settings.

• Performed Post migration steps including activation of MSMP workflow BC sets, generation

of rule, maintaining workflow stages.

• Supported post migration data validation activities in SPRO and NWBC.

• Good understanding and experience with BRF+ (Business Rule Framework).

• Created Initiator, Agent and Routing rules with in BRF+.

• Created and modified workflows, AC owners, Rules, Mitigation Controls to meet the

business requirements.

• Scheduled background jobs for EAM, BRM,ARA and ARM.

• Responsible for preparing UAT test document.

• Implemented Password self-service(PSS) for User authentication with LDAP system

• Configured CUA set up in GRC 10.1

• Prepared the test plans, Test scripts and Testing

• Responsible for preparing all end user training documents.

• Resolved all UAT related issues.

Project 3:

Title SAP GRC

Client Century link, Los Angles

Duration February 2013 to September 2013

Roles & Responsibilities:

• Responsible for preparing GRC 5.3 Configuration and Master data baseline document.

• Performed post installation configuration like activating BC sets.

• Worked closely with Basis team to get AC 10 plug Ins installed on all target systems and

installation of Migration tool on GRC 5.3.

• Migrated Configuration, Master data and Transactional data from GRC 5.3 to GRC AC 10 for

RAR, CUP, SPM and BRM.

• Performed Intra Migration activities like Creating connections, connection groups,

performing Auth, Repository syncs, maintain configuration settings.

• Performed Post migration steps including activation of MSMP workflow BC sets, generation

of rule, maintaining workflow stages.

• Supported post migration data validation activities in SPRO and NWBC.

• Good understanding and experience with BRF+ (Business Rule Framework).

• Created Initiator, Agent and Routing rules with in BRF+.

• Created and modified workflows, AC owners, Rules, Mitigation Controls to meet the

business requirements.

• Scheduled background jobs for EAM, BRM,ARA and ARM.

• Responsible for preparing UAT test document.

• Implemented OIM for Request submission and Request status.

• Resolved all Web services related issues.

Project 4:

Title SAP GRC

Client Sentient Energy, Burlingame CA

Duration September 2012 to January 2013

Roles & Responsibilities:

• Configured Pre-Post installation steps related to AC component.

• Configured MSMP workflow for New access,change access, Delete access,Lock/Unlocking, Functional creation, Mitigation control id creation, Risk id creation,Fire

fighter id request and also Role approval in Access request management.

• Email notification settings and scheduled the back ground jobs.

• Created Owners, Mitigation Controllers, Risk owner, Security lead Point of contact.

• Created FF owners, Controllers and Firefighter id’s for Emergency access request.

• Customized rule set uploaded, Generated the Rule set.

• Created the Methodology process for Role management and also created role attributes.

• Imported the roles for provisioning and maintained the Mandatory fields for the Roles.

• Run the background jobs to sync Authorization data, User sync, Role Sync and Profile Sync.

• Transported the GRC related TR’s from Dev to Production.

• Trouble shoot the Configuration issues like Email notification error, MSMP workflow trigger

errors, Role /User level risk analysis issue,Auto provisioning errors.

• Creation of BRF plus rules based on client requirement for MSMP workflow.

• Lead design, creation and delivery of GRC 10 solutions for SAP Security and Compliance.

• Design, configuration, and implementation of Risk Analysis (ARA/RAR), User Provisioning

(ARM/CUP), and FireFighter (EAM/SPM).

• Analyzed and configured GRC 10 (AC) Global Rule Set per clients’ processes/standards.

• Develop (FireFighter) roles and workflow approval process in GRC 10.

• Configure Access Controls (AC10) for reporting and rule maintenance.

• Create the SAP profiles and roles required to provide access to SAP by a defined functional

position and implement and fully utilize SAP GRC Security Tools.

• Configure GRC Access control tool to avoid SOD conflicts to comply with Sarbanes-Oxley

(SOX) regulation using RAR, CUP, and SPM.

• Analyze SAP Segregation of Duties (SOD) conflicts and recommend corrective action.

• Created SoD Matrix based on SAP Transactions and Authorization Objects.

• Implemented SOD conflicts administration strategies and managed remediation tasks to

comply with SAP/SOD requirements.

• Design & Create Security Profiles based on functional and technical needs of all security

roles and authorizations for all SAP modules (ECC 6.0, BW, SRM, CRM, Portals, & HR).

• Created LDAP configuration for user data master source

Project 5:

Title SAP security

Client Armstrong- Implementation project

Duration May 2012 to August 2012

Roles & Responsibilities:

• Creation of users, locking/unlocking of users, deletion of users.

• Password resetting, Locking and changing the validity date for the expired users.

• Mass User Maintenance.

• Creating user groups for easy administration and groups.

• Producing reports using User Information system and tables.

• Single, Composite, Master and Derived roles creation and Performed unit testing.

• Role modifications and adding missing authorizations.

• Performing user master comparison.

• Identifying potential SOD issues before assigning new roles to the user.

• Maintaining the Authorizations and restrictions according to client requirement.

• Worked with security tables such as AGR* & USR*, etc.

• Transport of roles across clients in the landscape Development to Quality.

• Analyzing and solving the missing authorizations and day-to-day security issues that are

being raised by the users.

• Providing End user Support and resolved all the end user related issues.

• Analyzed root cause of security failures to resolve help desk tickets, support unit and

integration testing of roles.

• Tracing missing authorizations objects using ST01 and recommending appropriate roles for

the end users.

• Analyzing the User Access Problems using SU53 and Providing Authorization reports

through User Information System SUIM.

Project 6:

Title SAP security

Client PBS coal (US)-Implementation project

Duration May 2011 to May 2012

Roles & Responsibilities:

• Creation of users, locking/unlocking of users, deletion of users.

• Password resetting, Locking and changing the validity date for the expired users.

• Mass User Maintenance.

• Creating user groups for easy administration and groups.

• Producing reports using User Information system and tables.

• Single, Composite, Master and Derived roles creation and Performed unit testing.

• Role modifications and adding missing authorizations.

• Performing user master comparison.

• Identifying potential SOD issues before assigning new roles to the user.

• Maintaining the Authorizations and restrictions according to client requirement.

• Worked with security tables such as AGR* & USR*, etc.

• Transport of roles across clients in the landscape Development to Quality.

• Analyzing and solving the missing authorizations and day-to-day security issues that are

being raised by the users.

• Providing End user Support and resolved all the end user related issues.

• Analyzed root cause of security failures to resolve help desk tickets, support unit and

integration testing of roles.

• Tracing missing authorizations objects using ST01 and recommending appropriate roles for

the end users.

• Analyzing the User Access Problems using SU53 and Providing Authorization reports

through User Information System SUIM.

Project 7:

Title GRC Implementation(Internal)

Employer OPTIMAL SOLUTIONS

Duration October 2010 to April 2011

Roles & Responsibilities:

• Involved in SAP GRC Access Control 5.3 implementation

• Involved in configuration of SAP GRC Access control 5.3 tools: SPM, CUP, and RAR.

• Perform and Completion of Post Installation Tasks on CUP.

• Configuration of Compliant User Provisioning as per the Client requirements.

• Create/Maintenance of Initiators, Stages, WF Paths.

• Scheduling Background Jobs for Email Dispatcher, Email Reminder, Escalation, Stale

Requests and Role Reaffirmation.

• Integration of CUP to RAR.

• Perform and Completion of Post Installation tasks on RAR.

• Design, develop and implementation of RAR configuration.

• Scheduling Background Jobs for Synchronization and Risk Analysis.

• Real Time Risk assessment.

• Simulation and Remediation.

• Create/Maintenance and documentation of Mitigation Controls.

• Maintenance or summary of all Risk Analysis and Remediation reports.

• Integration of RAR with CUP.

• Perform and Completion of Post Installation tasks on SPM.

• Design, develop and create/maintenance of SPM Configuration for all satellite backend

systems and Front End.

• Scheduling Background Job for Logs.

• Providing/working on Log reports to support Auditing.

• Analyzing and solving the missing authorizations and day-to-day security issues that are

being raised by the users.

• Providing End user Support and resolved all the end user related issues.

• Analyzed root cause of security failures to resolve help desk tickets, support unit and

integration testing of roles.

• Tracing missing authorizations objects using ST01 and recommending appropriate roles for

the end users.

• Analyzing the User Access Problems using SU53 and Providing Authorization reports

through User Information System SUIM.

Project 8:

Title SAP GRC Access Controls

Employer SAP LABS INDIA PVT LTD.

Duration July 2005 to October 2010

Roles & Responsibilities:

• Creating different roles for SAP system and maintaining using GRC Enterprise Role

Management

• Worked on other GRC tools Risk analysis and Remediation, Compliant User Provisioning,

Super User Provisioning.

• Experience in creating and Maintaining Authorization object(SU20 to SU24)

• Analyzing and evaluating the technical security requirements for SAP R/3 Security

• Worked with security related tables (AGR*& USR*).

• Experience in setting up Central User Administration (CUA) and maintenance

• Accessed User info system (New user, Roles, Authorizations, User, T-Codes etc.) through

SUIM regularly.

• Involved creating mass users, deleting mass users, locking and unlocking mass users.

• Troubleshoot R/3 security problem by using different scenario such as system trace

• Responsible for day to day technical support and resolution of security issues

• Resolve user’s daily problems (lock, unlock, and reinitialize passwords, no access to a

transaction.)

• Assist users with access problems and questions using SUIM and SU53

• Working with cross teams, executing Point of Controls (POC) activities for ERM application

• Dedicatedly worked for PETROBRAS and ITC customer during the escalation of ERM



Contact this candidate