Security Sap
Resume:
Ouida Ann Boyd
TEXAS, 78108
Skills for SAP
SAP Security
OBJECTIVE SAP Basis Admin
SAP Security Analyst Position SAP Console
Security+ Certified RF Scanners
Novell C.N.A. IXOS
Studying for CISSP Open text
GUIXT
Document Service
EDUCATION SPRO for Basis and
Security
Bachelor of Science, Computer Science August 1989 – December 1991 Query Creation
Oracle DBA
Belhaven College, Jackson, Mississippi
Oracle
GPA 3.75/4.0
Tools(Enterprise
Manager)
Studies focused in Computer Science with a minor in Business and Math.
CUA configuration
Data Warehouse
College Awards: AIX/UNIX
Who’s who in American College and Universities Windows Vista/XP
Outstanding Computer Science Student Novell
EDI
Associate in Arts August 1974 – December 1976 Over 11 years
experience in SAP
Manatee Jr. College, Bradenton Florida
Security and Basis
GPA 3.1/4.0
BaaN Triton ERP
Apply OSS notes
EXPERIENCE Structural Auths
Position Security
SAP Security Analyst DIACAP
January 2009 – Present
STIGS for DOD
Lockheed Martin, San Antonio, Texas
DOD Guidelines
USAMITC(United States Medical Information Technology) for TEWLS system(Theater
Enterprise wide logistics system) Certifications
Team Lead of Security Team Novell CNA
Security+ Certified; Studying for CISSP Security+
Contributes to the stability of enterprise systems in compliance with DoD and other audit directives Specialist for AIX
by preventing unauthorized access to application programs and data Currently Studying
Successful Completion of DIACAP audit and Certification for CISSP
Implemented STIG Requirements per DoD requirements
Awards
Implemented SNC for SSO for SAP Gui
IBM Thanks
Assures a timely execution of access to protect IT assets
Award
Continuously monitors the Landscape for Security relevant events that could negatively impact the
security posture of the system.
IBM Bravo
Working directly with IA for system audits
Award
Formal reports for our Chief and weekly status reports in PowerPoint
Translated Security requirements into Controls and then secured the system per DoD guidelines and
the STIGS(Security Technical Implementation Guides for ERP)
Documented the Policy and Procedure manual for the project
Implemented POA&MS(Plan of action and Mitigation) on findings not able to implement due to
DOD Guidelines not being able to be input into the system.
Perform CUA Configuration, Setup, and ongoing maintenance
Translate Security Controls into configuration Changes
Configured the Security Audit log on all servers in the TEWLS Landscape(27 servers)
Successfully Implemented a project to lock down sap*, DDIC and other default users
Working with functional analysts to gather requirements, and make recommendations per SOD
compliance as specified by the DOD.
Building roles and following the Development procedures as specified by the DOD
Working with ABAPers and Functional to test the roles, and make recommendations for the BEST
Practices as specified by SAP.
Monitoring the Security Log and checking the System Log daily, reporting any issues to the proper
team or violations to IA.
Analysis on prior Role Implementation and making suggestions according to Best Practice by SAP
Implemented Parameter Changes (Security Parameters only) through the landscape
Troubleshooting for the current SAP team for unresolved issue’s
Mentor other team members on current Best Practice’s, Security procedures and made
recommendations to improve processes.
Modules used: SD, FM, CO, MM, PM, CRM,WM,PP,XI,HR,WF,AP
SAP HR Security Implementation Specialist September 2008 – December 2008
Blohm Consulting, Miami Florida
Designed, built and Implemented the Security solution of SAP HR including :
Configured Structural Authorizations per Functional Specs
Configured all HR roles for the Pa and Om modules
Configured CUA with position Security (Roles tied to positions)
Worked with functional to get HR Transaction Role Requirements, built, tested, and implemented in
addition, Checked for SOX compliance per their Auditor.
Configured the Security Audit Log to track specific functions
Implemented OSS notes for SAP HR Security, tested, and pushed through the landscape.
Maintained the Security project plan and tracked all tasks through Go live
Make recommendations to programmers to follow best practice guidelines
Module used: HR
SAP Security, Team Lead October 2007 – August 2008
Company Name, EBSCO Industries
Gathered requirements for the Profit Center Security strategy.
Managed the project Plan for Security
Designed and Implemented a security strategy for Policies and Procedures.
Configured CUA
Worked with Functional and programmers to
Designed and authored a training document and taught as class SAP navigation and a technical class
for the Helpdesk.
Mentoring and training the EBSCO support team.
Assisted with the project team of installing and planning the ECC BI Netweaver Landscape.
Managed the Security Project Plan and the Security Team.
While Basis was on site, was also a Basis Analyst and helped configure CCMS, Maintenance
Optimizer on Solution Manager, System Settings, and Performance and tuning on the mainframe.
Security tuning (by tuning the Session Manager)
DB2 and zOS mainframe system with RACF security
Experience in designing and delivering complex requirements
Experience in designing and delivering SAP security roles in line with segregation of duties and user
administration and implementing a business solution to fit the needs
Experience in installing and implementing the VIRSA tools suite
Knowledge of secure information flow and data storage within applications
Effective interpersonal and communications skills (written and verbal)
Ability to work in teams, solve problems, adapt to changes and address rapid changes
Solid Project Management skills
Motivated self-starter
9 years in designing and implementing security on SAP(with an additional 8 years of Basis)
Experience in conducting Business Impact Analysis and audits with the ISO
Project Management skills For SAP security and basis
Proficiency in SAP security Profile Generator and maintaining SU24(default values for objects)
Demonstrated competency in SAP Security Concepts, including role design and build security around
customization of code
Make recommendations to programmers to follow best practice guidelines
SAP R/3 version ECC 6.0, APO, BW, HR and Portal
Knowledge of SAP tools to automate daily administration tasks -- e.g. LSMW scripts
Configure and implement the Security Audit Log and run the daily User cleanup Jobs.
Secure all systems and regular checking of all the system users’ example DDIC
Validating users on the system by daily running RSUSR200 to determine users to invalidate.
Assisting Auditors with reports and analysis for SOX compliance.
Configure Self Service reports and EWA reports on Solution Manager.
Maintain global parameter settings in RZ10.
Modules used: AP,AR,CO,PC,HR,
SAP Analyst, I/T Specialist Security/Basis March 1995 –October 2007
IBM, Atlanta, Georgia for Mercedes-Benz U.S. International, Inc., Vance, AL
SAP Security/Basis Analyst and Administrator
Technical Skills while at MBUSI:
Configured the audit security log.
System Monitoring through CCMS.
Applied support packs through the landscape.
Installed the Virsa Suite of tools.
Implemented Structural authorizations for HR.
Implemented SAP Console for the RF scanners.
Gathered system requirements for End User to Super Users.
Managed the transports and assisted with a new transport strategy.
Designed Role layouts and let the Security Team for the initial rollout.
Configured and implemented the Virsa Tool for SODs.
Configure Print queues and program drivers
HR Security implementing Structural Authorizations
Managed the security of 1100 users and a Global Environment (including Germany plants)
Importing foreign transports into our SAP onsite.
Install/update GUI's
Scheduled and monitored jobs
Member of Change Control team
Open the clients for changes
Ongoing updates of parameter settings for the system and instance profiles
GUIXT rollout and IXOS upgrade and rollout for scanning
Reported directly to the Director of Technology Operations at MBUSI
Participated in project planning and implementation of SAP Console; GUIXT; IXOS; Right Fax.
Apply OSS notes for security and for all areas.
OSS marketplace administrator
First 5 years BaaN Triton tools Administrator
Designed, Implemented the Oracle DataWarehouse from BaaN
Modules used: MM,SD,FI,AP,AR,PM,CRM,SM,BI,WAS,PP,WM,WF,HR,
CO,FM, on SAP 4.6C R/3 on AIX (unix) Servers.
Accomplishments at MBUSI:
Performed monthly user validation for MBUSI, which resulted in a cost savings estimate of $200,000
USD per year.
When HR was implemented, I volunteered for the development/planning and implementation phase
for Security. This provided a valuable learning experience while eliminating the need to hire a HR
security consultant.
Part of the VIRSA project team, and installed through the landscape and helped the ISO configure the
tool. This helped save them a consultants fee's by me doing the installation.
Choctaw Enterprises 06/1994 to 02/1995
Novell Network Administrator
Designed a Novell network
Troubleshoot EDI
Implemented MS9000 requirements per Ford and Chrysler.
Assist end users with software instructions
Chahta Enterprises 09/1991 to 06/1994
Information Systems Supervisor
Designed and programmed reports for their Time system.
DBASE/IV programming
Administered the RS6000 Server on AIX.
Created scripts for automating daily tasks.
Administered the MRP system and created useful reports for management.
Programmed the voice mail system.
Supervised 3 employees to assist with the satellite plants.
ACTIVITIES & AWARDS
Employee Bravo Award 1999 for SAP
Thanks Awards 1995 – 2008 (Every year received several from my peers.)
Employee Bravo Award 2000 for successful Go live at MBUSI
Agility Dog Training
Contact this candidate