EXPERIENCE AND SKILL SUMMARY
I T Experience of about Ten years in SAP.
. Close to 6 years in SAP Security implementation
. 3 +Years in SAP Basis.
Sharp ability to understand the client business environment and key
business drivers.
. Ability to Synergize programs to high level results
. Designed various types of roles (Derived Role, Composite role and Single
Role designing) using Profile generator (PFCG).
. Worked with Sarbanes-Oxley Compliance - Strategy management related to
SAP business processes, transactions, control infrastructure, financial
reporting process. Sarbanes-Oxley Section 404, Remediation of Segregation
of Duties (SOD) within SAP implementation, VIRSA Systems VRAT (GRC)tool,
Profile Generator (PFCG), Role, Profile creation, modifications, User
Administration, Authorization objects, User reconciliation, CATT Scripts.
. MSS/ESS HR Portal Security design and delivery
. More than three full life cycle implementation.
. Extensive knowledge in CRM security - including on Mobile/hand held
devices
. Lead Two SAP Design to implementation for large global installation
. Experience in configuration and implementation of the GRC suite from
3.0 onwards
. Three complete audit cycle as part of the integrated team.
. Experience in HR custom Objects
. PLM 7.0 configuration expertise
. Experience in Setting up Central User Administration (CUA) and
maintenance.
. Experienced in Netweaver User maintenance - UME.
. Experienced in HR (Structural ) & Enterprise Portal (EP)Security
. Experienced in BW 3.5 to BI 7.0 Upgrade as well as the authorizations
. Configuring LDAP over SSL
. Configuring LDAP parameters
. Expertise in BPC 7.0
. Versed in SOX (Sarbanes Oxley) Compliance.
. Preventative, mitigating and compensation controls to ensure the
appropriate level of protection and adherence to the goals of the overall
SAP security strategy.
. Experience with ALE Model data interface
. Experience in WFM business process
. Key participant in all the phases of software development life cycle with
Analysis, Design, Development, Integration, Maintenance, and Production
Support for software applications in Client Server environment, Object
Oriented technology and web-based applications as well as mainframe
technologies
. Strong business analysis and project management skills.
. Motivational Leader and Communicator.
. Exemplary oral, written and presentation Skills
. Experienced in Due Diligence
. Converses in German (Hoch Deutsch) fluently.
. PMI Certified
. ITIL Certified
1 TECHNICAL SKILLS
SAP SAP 4.6c/4.7/Netweaver2004/2004s/ECC 6.0
Specialization: Security, CUA, IDM, GRC, VIRSA/VRAT, EP,
XI/PI,CRM.GTS,BW/BI,SRM,WM,FI-CO,SCM
Databases: SQL,Ms-Access,2000/97,MS-SQLServer2000,Oracle,
10.x,MaxDB,
Languages: Visual Basic 5.0, Visual Basic 6.0, C, C++, Vb.Net,
Ado.Net, Core Java, PL/SQL, Web Services, XML
2
3 Education
. Masters - Electrical & Electronics Engineering
. Bachelors-Electrical & Electronics Engineering
4 PROJECT EXPERIENCE
Client : Mercedes-Benz U S international
Duration : November 2007-Current.
Location : Alabama
Role : SAP Security Architect
Responsibilities
. Implement Single Sign on ( SSO ) from Enterprise Portal to BW and R/3
. Authorization, Administration of UME in Enterprise Portal,XI
. Authentication in Portal-X.509, Anonymous logon etc.
. Provided daily security and authorizations management of SAP R/3 and BW
systems.
. Working with Functional heads for Segregation of Duties and Security
changes based on SOX requirements
. Identify Nurture, Develop areas, themes and methodologies for end user
awareness on Securing critical data.
. Security configuration of PLM 7
. User Maintenance/User creation, deletion, modification Server.
. BW 3.5 to BI 7.0 Authorization Analysis /implementation
. BI 7.0 Authorization- Nodal. RSECADMIN
. Day to day assignment and maintenance Authorizations on CRM
. Create & manage the scheduling of batch jobs.
. Working with T-Codes SU53 and SUIM for assigning authorizations.
. Authorization Matrix for the BPC component.
. Functional support for BPC 7.0
. GRC 5.3 administration and configuration.
. Working with Audit teams to predict non compliance area.
. Participate in requirement gathering, assessment, design and
configuration for SAP security.
. SOX Conflict/Issue Identification and resolution
. Day to day interface with upper and lateral management
. Virsa for handling SOD conflicts for each user.
. Developed and provide knowledge transfer to client personnel on security
authorization concept.
. Optimize and Maintain SAP Security Controls with Approva BizRights
experience
. Oversee and participate in cross-functional client project efforts.
. Implementation and development of the structural authorizations
. HCM Authorizations, payroll module, recruitment
. Creation of Authorization Groups to restrict the R/3 table access and
program access.
. Administering of sensitive authorizations (S_TABU_DIS, S_USER_TCD etc.),
including assignment of authorization for sensitive tables.
. Various reports for management
. Preventive maintenance / Early detection
Environment : SAP R/3(ECC5), SAP Net weaver 2004s, SAP BI, HP-UX, XI 3.0,
EP7.0,Sol Man
Client : SONY,San Francisco
Duration : August 2006 - September 2007
Role : SAP Security Architect
Responsibilities
. Day to day Security administration tasks
. Maintenance of the SoX tools - VIRSA/ GRC
. Audit process and addressing of the findings
. Authorization design & Implementation
. Assisted in Evaluating client's design and of the SOX Compliance
Strategy
. Assisted internal audit clients with building review procedures.
. Help clients with resolving issues with Access Enforcer bugs and workflow
configuration.
. Regular Risk Assessment and preparation of mitigation Plan
. Assignment of the tasks, monitoring to completion,
. Active use of Profile Generator (PFCG),
. Role Maintenance and Creation, User Administration
. Create Custom Authorization Objects as well as work on standard
Authorization Objects,
. BW Info objects
. hierarchy definitions, variables,
Client : Financial Industry.
Duration : Feb 2005 - March 2006
Location : Irvine
Role : SAP Security consultant
Responsibilities
. Gathered workflow information needed to implement Access Enforcer.
. Gathered approvers and role owner information
. Completed Access Enforcer configuration for security, approval process
and automatic provisioning.
. Assisted in Evaluating client's design and of the SOX Compliance
Strategy
. Assisted internal audit clients with building review procedures.
. Help clients with resolving issues with Access Enforcer bugs and workflow
configuration.
. Periodic Customer Meetings and issue resolution
. Continuous Risk Assessment and preparation of mitigation Plan
. Assignment of the tasks, monitoring to completion,
. Assisted in seamless co-ordination
. Redesigned and improved user creation and roles assignment process using
Access Enforcer 3.0
. Improved clients process for role assignment, mitigating controls, role
creation using CC, AE and RE
. As a lead coordinated with business and Internal auditor for security and
role redesign effort for SOD remediation
. Help and developed roles with IT for role QA process and Go Live effort
. Involved with technical team in setting up SAP system for auto log-out,
password length and expiration and specifying impermissible passwords
Client : LIPTON TEA,
Project : SAP implementation and support
Duration : March 2004 - February 2005
Role : SAP Security Consultant
Responsibilities
. Implemented Access Enforcer workflows for SAP and Non SAP systems
. Integrated CC 4.0 with AE 2.0 for simulation of user access
. As a lead coordinated with business, IT and Internal auditor for security
and role redesign effort for SOD remediation
. Continuously improved security configuration to reflect best practices
and to prepare for system audits
Create a test plan to test "roles and authorizations" in QA environment
Fixing end user Roles/Profiles based on Change Requests.
User Administration and Password Management (Expiry of users and Profiles).
Analyze Root Cause of Authorization Problems and fix the missing
authorizations.
User support, resolve end user problems on day-to-day basis.
Updated and maintained DDIC and SAP* passwords.
Client : ADIDAS SALOMON AG
Project : SAP production maintenance
Duration : October 2001--March 2004
Role : Basis Administrator
Location : Berlin /Hartford
Responsibilities:
. BW 3.0 SR1 on AIX 5.3.
. Install TREX on Win2k and configure as per customer needs.
. Successfully Connected BW to R/3 system
. Transported content across the system landscape.
. Performed SAP J2EE administration using config tool and visual
administrator.
. Configured SLD and maintained JCO connections to integrate custom
developed WebDynPro applications.
. Performed user administration.
. Created Portal desktop and defined desktop rule for portal users.
. Setup approval process, notification and classification of documents.
. Monitoring SAP R/3 systems and all Application servers.
. Verifying on daily backups.
. Monitoring work process status.
. Look for any failed updates, check system log, review cancelled jobs.
. Displaying and managing lock entries.
. Monitoring alerts using CCMS alert monitor.
. Monitoring Active users on the system, spool problems and job logs.
. Monitoring table space usage, file system space usage
. Applied support packages and OSS notes to address many issues that
rose.
. Scheduling background jobs for periodic maintenance of the
system (such as removing logs older than a week, scheduling
the database backups (online and offline), etc.
. Scheduling, performing and monitoring backups.
. Performance analysis
. Tablespace Management & reorganization.
Environnent : SAP R/3, HP-UX, Oracle, Remedy,
Client : Kubota Tractor Corp.
Duration : Jan 2001 - September 2001
Role : Basis administrator
Location : Torrence,CA
Responsibilities:
. Created authorization profiles, Activity Groups and Users.
. Created Authorizations and Profiles based on the Job Profiles
. Transported roles
. Created and Maintained User Master records
. System traces and Debug utilities to Optimize authorization checks
. Customized User Logon Controls
. SAP GUI Installation on clients and rollouts
. Daily Monitoring the System
. Daily system monitoring, checks
. User administration and authorization profile management
. Background jobs monitoring
. Spool administration
. Transport administration
Environment: SAP R/3 4.6C, AIX 5L, Oracle 8.1.7 & 9.2.4