EXPERIENCE AND SKILL SUMMARY

I T Experience of about Ten years in SAP.

. Close to 6 years in SAP Security implementation

. 3 +Years in SAP Basis.

Sharp ability to understand the client business environment and key

business drivers.

. Ability to Synergize programs to high level results

. Designed various types of roles (Derived Role, Composite role and Single

Role designing) using Profile generator (PFCG).

. Worked with Sarbanes-Oxley Compliance - Strategy management related to

SAP business processes, transactions, control infrastructure, financial

reporting process. Sarbanes-Oxley Section 404, Remediation of Segregation

of Duties (SOD) within SAP implementation, VIRSA Systems VRAT (GRC)tool,

Profile Generator (PFCG), Role, Profile creation, modifications, User

Administration, Authorization objects, User reconciliation, CATT Scripts.

. MSS/ESS HR Portal Security design and delivery

. More than three full life cycle implementation.

. Extensive knowledge in CRM security - including on Mobile/hand held

devices

. Lead Two SAP Design to implementation for large global installation

. Experience in configuration and implementation of the GRC suite from

3.0 onwards

. Three complete audit cycle as part of the integrated team.

. Experience in HR custom Objects

. PLM 7.0 configuration expertise

. Experience in Setting up Central User Administration (CUA) and

maintenance.

. Experienced in Netweaver User maintenance - UME.

. Experienced in HR (Structural ) & Enterprise Portal (EP)Security

. Experienced in BW 3.5 to BI 7.0 Upgrade as well as the authorizations

. Configuring LDAP over SSL

. Configuring LDAP parameters

. Expertise in BPC 7.0

. Versed in SOX (Sarbanes Oxley) Compliance.

. Preventative, mitigating and compensation controls to ensure the

appropriate level of protection and adherence to the goals of the overall

SAP security strategy.

. Experience with ALE Model data interface

. Experience in WFM business process

. Key participant in all the phases of software development life cycle with

Analysis, Design, Development, Integration, Maintenance, and Production

Support for software applications in Client Server environment, Object

Oriented technology and web-based applications as well as mainframe

technologies

. Strong business analysis and project management skills.

. Motivational Leader and Communicator.

. Exemplary oral, written and presentation Skills

. Experienced in Due Diligence

. Converses in German (Hoch Deutsch) fluently.

. PMI Certified

. ITIL Certified

1 TECHNICAL SKILLS

SAP SAP 4.6c/4.7/Netweaver2004/2004s/ECC 6.0

Specialization: Security, CUA, IDM, GRC, VIRSA/VRAT, EP,

XI/PI,CRM.GTS,BW/BI,SRM,WM,FI-CO,SCM

Databases: SQL,Ms-Access,2000/97,MS-SQLServer2000,Oracle,

10.x,MaxDB,

Languages: Visual Basic 5.0, Visual Basic 6.0, C, C++, Vb.Net,

Ado.Net, Core Java, PL/SQL, Web Services, XML

2

3 Education

. Masters - Electrical & Electronics Engineering

. Bachelors-Electrical & Electronics Engineering

4 PROJECT EXPERIENCE

Client : Mercedes-Benz U S international

Duration : November 2007-Current.

Location : Alabama

Role : SAP Security Architect

Responsibilities

. Implement Single Sign on ( SSO ) from Enterprise Portal to BW and R/3

. Authorization, Administration of UME in Enterprise Portal,XI

. Authentication in Portal-X.509, Anonymous logon etc.

. Provided daily security and authorizations management of SAP R/3 and BW

systems.

. Working with Functional heads for Segregation of Duties and Security

changes based on SOX requirements

. Identify Nurture, Develop areas, themes and methodologies for end user

awareness on Securing critical data.

. Security configuration of PLM 7

. User Maintenance/User creation, deletion, modification Server.

. BW 3.5 to BI 7.0 Authorization Analysis /implementation

. BI 7.0 Authorization- Nodal. RSECADMIN

. Day to day assignment and maintenance Authorizations on CRM

. Create & manage the scheduling of batch jobs.

. Working with T-Codes SU53 and SUIM for assigning authorizations.

. Authorization Matrix for the BPC component.

. Functional support for BPC 7.0

. GRC 5.3 administration and configuration.

. Working with Audit teams to predict non compliance area.

. Participate in requirement gathering, assessment, design and

configuration for SAP security.

. SOX Conflict/Issue Identification and resolution

. Day to day interface with upper and lateral management

. Virsa for handling SOD conflicts for each user.

. Developed and provide knowledge transfer to client personnel on security

authorization concept.

. Optimize and Maintain SAP Security Controls with Approva BizRights

experience

. Oversee and participate in cross-functional client project efforts.

. Implementation and development of the structural authorizations

. HCM Authorizations, payroll module, recruitment

. Creation of Authorization Groups to restrict the R/3 table access and

program access.

. Administering of sensitive authorizations (S_TABU_DIS, S_USER_TCD etc.),

including assignment of authorization for sensitive tables.

. Various reports for management

. Preventive maintenance / Early detection

Environment : SAP R/3(ECC5), SAP Net weaver 2004s, SAP BI, HP-UX, XI 3.0,

EP7.0,Sol Man

Client : SONY,San Francisco

Duration : August 2006 - September 2007

Role : SAP Security Architect

Responsibilities

. Day to day Security administration tasks

. Maintenance of the SoX tools - VIRSA/ GRC

. Audit process and addressing of the findings

. Authorization design & Implementation

. Assisted in Evaluating client's design and of the SOX Compliance

Strategy

. Assisted internal audit clients with building review procedures.

. Help clients with resolving issues with Access Enforcer bugs and workflow

configuration.

. Regular Risk Assessment and preparation of mitigation Plan

. Assignment of the tasks, monitoring to completion,

. Active use of Profile Generator (PFCG),

. Role Maintenance and Creation, User Administration

. Create Custom Authorization Objects as well as work on standard

Authorization Objects,

. BW Info objects

. hierarchy definitions, variables,

Client : Financial Industry.

Duration : Feb 2005 - March 2006

Location : Irvine

Role : SAP Security consultant

Responsibilities

. Gathered workflow information needed to implement Access Enforcer.

. Gathered approvers and role owner information

. Completed Access Enforcer configuration for security, approval process

and automatic provisioning.

. Assisted in Evaluating client's design and of the SOX Compliance

Strategy

. Assisted internal audit clients with building review procedures.

. Help clients with resolving issues with Access Enforcer bugs and workflow

configuration.

. Periodic Customer Meetings and issue resolution

. Continuous Risk Assessment and preparation of mitigation Plan

. Assignment of the tasks, monitoring to completion,

. Assisted in seamless co-ordination

. Redesigned and improved user creation and roles assignment process using

Access Enforcer 3.0

. Improved clients process for role assignment, mitigating controls, role

creation using CC, AE and RE

. As a lead coordinated with business and Internal auditor for security and

role redesign effort for SOD remediation

. Help and developed roles with IT for role QA process and Go Live effort

. Involved with technical team in setting up SAP system for auto log-out,

password length and expiration and specifying impermissible passwords

Client : LIPTON TEA,

Project : SAP implementation and support

Duration : March 2004 - February 2005

Role : SAP Security Consultant

Responsibilities

. Implemented Access Enforcer workflows for SAP and Non SAP systems

. Integrated CC 4.0 with AE 2.0 for simulation of user access

. As a lead coordinated with business, IT and Internal auditor for security

and role redesign effort for SOD remediation

. Continuously improved security configuration to reflect best practices

and to prepare for system audits

Create a test plan to test "roles and authorizations" in QA environment

Fixing end user Roles/Profiles based on Change Requests.

User Administration and Password Management (Expiry of users and Profiles).

Analyze Root Cause of Authorization Problems and fix the missing

authorizations.

User support, resolve end user problems on day-to-day basis.

Updated and maintained DDIC and SAP* passwords.

Client : ADIDAS SALOMON AG

Project : SAP production maintenance

Duration : October 2001--March 2004

Role : Basis Administrator

Location : Berlin /Hartford

Responsibilities:

. BW 3.0 SR1 on AIX 5.3.

. Install TREX on Win2k and configure as per customer needs.

. Successfully Connected BW to R/3 system

. Transported content across the system landscape.

. Performed SAP J2EE administration using config tool and visual

administrator.

. Configured SLD and maintained JCO connections to integrate custom

developed WebDynPro applications.

. Performed user administration.

. Created Portal desktop and defined desktop rule for portal users.

. Setup approval process, notification and classification of documents.

. Monitoring SAP R/3 systems and all Application servers.

. Verifying on daily backups.

. Monitoring work process status.

. Look for any failed updates, check system log, review cancelled jobs.

. Displaying and managing lock entries.

. Monitoring alerts using CCMS alert monitor.

. Monitoring Active users on the system, spool problems and job logs.

. Monitoring table space usage, file system space usage

. Applied support packages and OSS notes to address many issues that

rose.

. Scheduling background jobs for periodic maintenance of the

system (such as removing logs older than a week, scheduling

the database backups (online and offline), etc.

. Scheduling, performing and monitoring backups.

. Performance analysis

. Tablespace Management & reorganization.

Environnent : SAP R/3, HP-UX, Oracle, Remedy,

Client : Kubota Tractor Corp.

Duration : Jan 2001 - September 2001

Role : Basis administrator

Location : Torrence,CA

Responsibilities:

. Created authorization profiles, Activity Groups and Users.

. Created Authorizations and Profiles based on the Job Profiles

. Transported roles

. Created and Maintained User Master records

. System traces and Debug utilities to Optimize authorization checks

. Customized User Logon Controls

. SAP GUI Installation on clients and rollouts

. Daily Monitoring the System

. Daily system monitoring, checks

. User administration and authorization profile management

. Background jobs monitoring

. Spool administration

. Transport administration

Environment: SAP R/3 4.6C, AIX 5L, Oracle 8.1.7 & 9.2.4

Contact this candidate