Sign in

Security Sap

Freehold Township, New Jersey, United States
best offer
August 26, 2018

Contact this candidate


Pranav Thaker

*** -***-**** **** ** 347-***-**** Cell


A well educated SAP consultant with 10 years experience specializing in technical support, SAP system Administration for Specific support duties, have an expert level skills in SAP Security/ Basis for ECC 6.0/5.0, R/3, HR, MM, PP, FI/CO, BI 7.0/BW3.5, SAP HR/Structural Authorizations, and implementation of SAP GRC Access Control 5.3 (Compliance Calibrator, Access Enforcer, Fire Fighter). He is experienced in all phases of the project life cycle with expertise in scoping, planning, upgrading and implementing SAP Security. He has worked as Team Lead/ SAP Security Consultant/ or Lead SAP Security Administrator for different industries that includes Pharmaceuticals, Manufacturing, Telecommunications and Utilities/Energy.


MS Degree in Information System Engineering (M.S.I.S.)

Drexel University, Philadelphia, PA.


BASIS SECURITY Administration (Introduction) - SAP America, Waltham, MA

Material Management Module (Introduction) - SAP America, Waltham, MA.

QA Assurance Training from Zarantech Inc.

ITIL Fundamental Training, Zarantech Inc.

SAP BI on HANA 7.3 Data Warehouse Training from Zarantech Inc.

SAP Business Analyst Training, Zarantech Inc.

PMP Training from

Security Tools: SAP GRC 5.3Virsa (Compliance Calibrator, Access enforcer and

Firefighter), SAP User Management Engine, SAP Net Weaver Identity

Management (IDM 7.0), CUA, SAP Solution Manager 4.0 (Solution Manager), and Single Sign On for Windows Active Directory, HP Quality Center, Load Runner.

Work Status

U.S. Citizen.

Professional Experience

JB Airways, New York, New York. May 2014- Current.

SAP Security Engineer

Environment: ECC 6.0, BI 7.0, SAP BPC, FICO, SCM, HCM, MS FIM, SQL SEVER, SAP BOBJ, SAP BW 7.0. HP Service Center 12.0

Planned and implemented Business Object BOBJ design from CMC, across landscape.

Perform the GAP analysis for the Security Business processes

Monitored TRIVOLI issue tickets and resolved SAP Security related issues for BW, ECC and Portal as well as IBM MIIS.

Designed and configured Application for SAP BW and ECC and updated HPQC defects.

Participated in re-certification process for ECC sensitive roles and profiles for HR modules (compensation, Benefits and payroll).

Performed SQL Server and SAP application risk analysis and set up meetings with Engineers to discuss risks and strategy to improve remediation.

Performed security design for the Web Application in SAP environment for HR ESS MSS and LSO functionalities and SA

Worked on Jet blue customized security volunerability tools for different applications.

Responded to Audit inquiries for password policy for SAP application and Database users.

Worked on MS FIM (Identity Access management application) for troubleshooting SAP Authorization related issues.

IT Analyst, Becton-Dickinson, Franklin Lakes, NJ June 2012-May 2014

Environment: ECC 6.0, BI 7.0, GRC 5.3 CC, Access Enforcer 5.3, CRM, SCM, BPC. HP Service Center, Oracle 11i, HP Quality Center

Provided testing results to GRC issues for HR Triggers for New Hire and Termination functionalities.

Monitored HP Service center issue tickets and resolved SAP Security related issues.

Planned and implemented PRGN_COMPRESS program to all the production systems ( 20+) to remove duplicate roles assigned to business users ( 12000 +)

Worked on HPQC to create the test scripts and defects for testing ERP Application functionality scenarios.

Performed (EAM) Emergency Access management configuration for Fire Fighter role in GRC.

Created Mitigation Control in GRC to mitigate critical risk.

Created and modified Roles in BRM (Business Role management) before transporting to production.

Maintained MSMP workflows for AC (Access Control) as per business requirement in GRC.

Daiichi-Sankyo, Parsipany, NJ. July, 2007 – June 2012.

SAP/ IT Security Lead,

Environment : ECC 6.0, BI 7.0, Portal 7.0, SQL Server 2008, Windows 2003, VIRSA 5.3 CC, Access Enforcer 5.3, Firefighter 5.3

Proposed and implemented the proper business procedure to process incoming security related requests from DSI Business users (5000 +)

Designed and Built the SAP BW application security for (500 + users) for BI 7.0 HR, BI SCM, BI FI reporting queries.

Designed and maintained Position based SAP Security strategy for DSI business users for HR, SCM, FI, AP, AR, CO modules as per DSI business requirement.

Organized Security Role change request and new user request documents for auditors.

Owned the new security requests from business users go through appropriate approval process from Security Business Owner and testing in QA before it goes in to Production

Resolved post go live day to day security and basis related issues for DSI Business users.

Organized meeting with SAP HR, FI and SCM team leads/security business owners to discuss Position based Security Strategy and its impact on current Organization structure.

Provided DSI Compliance officer or Security business owners SAP application user access status and change history.

Worked with operation team and other groups to resolve failing Security and HR related background jobs.

Monitor the Production and Non Production systems after the Go-live.

Through service desk application, not only keep track of ALL CR requests created and assigned to SAP Security group. but also, resolve them quickly during the Post Go live War Room sessions

Performed Daily Security Support for SAP HR Structural Authorization, SAP HR PD (Performance Development), Appraisal/MSS /ESS and SAP HR ECM compensation security development with Deloitte Consultant for wave 2.

Presented the HR Security Approaches to the HR Functional Team & the Management

Trained new Help Desk Staff (Edison and home office) on resetting the password for BW production and installing BEX Analyzer for BW SAP FI module Reporting.

Resolved day to day BW-FI and BW HR reporting security related issues.

Resolved day to day BW-SCM reporting Security related issues.

Organized Security Role change request and new user documents for auditors on DAILY basis as a post go live support wave.

Confirmed new security requests from business users go through appropriate approval and testing PROCESS before it goes in to Production.

Provided suggestions and resolved day to day security and basis related issues as a post go live wave1 support.

Assist DSI Compliance Officer for user level SOD risk analysis in VIRSA 5for SCM, HR and FI module of SAP Application.

Configured HR Triggers for GRC environment

Worked closely with KPMG Auditors to provide appropriate findings and end user access facts that they need and follow the recommendation to improve SAP application security

Worked with DSI internal Auditor team to resolve Security related SODs issues to ensure proper control/regulation is in place.

Provided DSI Compliance Officer ROLE level risk analysis for ECC SCM, HR and FI module on weekly or daily or ad-hoc basis.

Used GRC 5.3 tool to analyze risk IDs for SOD violations and involve security business owners, auditors to resolve it.

Installed GRC 5.3 RAR, ERM and CUP on Windows platform, Configured the HR Triggers and Workflow for the DSI Access Security Approval Process.

Performed the post-installation activities for the GRC 5.3 RAR, ERM and CUP.

Used GRC 5.3 ERM to maintain ECC 6.0 Roles and profiles.

Recommend Solutions to Compliance Officer to resolve SOD for different User Groups.

Performed User level analysis with DSI Compliance officer and internal Auditors on daily or weekly basis to analyze post go live SOX related issues.

Coordinated Security activities with SAP FI, HR and SCM security business owners to discuss Security restriction strategy and SOD issues related to any risk associated with roles and profiles on monthly basis

Organized Security Role change request documents and folders for auditors on DAILY basis.

As a Backup Basis support, Installed EPP (Enterprise Production Portal system 7.0) as per installation script and complete Validation Document with screen shots and get sign off from Validation Team.

Performed Post-Installation Activities for Enterprise Portal Production with Basis Team.

Evaluated and implemented ways to mitigate the current risk by modifying existing Roles and Profiles (1500+).

Created own ECATT scripts to perform Day to day operation related HR security tasks such as assigning position to New Hires, Creating User ID for New Hires, Changing Position for Transfers and Promotion on ECC and BI systems.

Configured Solution Manager Security Roles and profiles for the Solution manager Change Management project.

Netcom-system, Long Island, NY 06/06 –07/07

Team Lead

Environment: SAP 4.6C, Windows 2003, BI 3.0 A, FI, HR, AP, AR modules.

Performed SAP Security Administration functions -- Creating new Roles, Modifying existing Roles, User Administration using Solution Manager. Solved production authorization problems by analyzing user buffers. Supported Security around SAP FI, CO, AP, AR and HCM modules. Assisted in conducting gap analysis between business requirements and SAP’s available features.

Involved in appropriate profile mappings, role assignments and testing through the SAP BW BEX analyzer.

Used ECATT to automate security tasks and user management.

Solved highly technical and complex problems across the SAP landscape as it relates to security authorizations.

Recommended improvements to strategy, application usage, or process by applying knowledge of the business processes in various functional areas with overall security requirements

Redesigned SAP Security approval process for FI module business users and assisted in troubleshooting day to day security related issues.

Troubleshoot client’s issues on new analysis authorizations and concepts around security.

Continued SAP security support of SAP environment including security development, incident monitoring, trouble shooting.

Performed Access Review, Groups Creation/Modification, Authorization Traces for Troubleshooting.

Configured and Built HCM Benefit and Pay Roll related Roles for HR Users with P_ORGINCON.

Provided the Business Approval Process Solution to the client for the SAP Application Access.

KHOJ Consulting Inc. Oak Land, NJ. 08/05 – 06/06

Client: AES & Campbell Soup

AES, Arlington, VA. 05/06 - 06/06

Environment: SAP 4.6C, HR, SCM, FI, CO modules, BW 3.0B, CRM 3.0B

Team Lead, SAP

Provided daily R/3, BW and Security technical support for GLOBAL implementation.

Created Master/Derived roles and defined user category for GLOBAL Project.

Performed client export/import and remote client copy for user data.

Designed FI and BI Security Strategy for the global users with Different reporting needs.

Assisted BI users for troubleshooting query access related issues for info cubes, info areas, info sets using RSECADMIN.

Performed User and Role analysis in VIRSA for US offices.

Prepared SAP Security Documentations for procedures & SAP Security policies and procedures.

Created/ refined Support roles for Basis, Security, Portal and roles for Payroll, HR and ESS.

Ensured SAP Sarbanes-Oxley (SOX) compliance by configuring and using VIRSA Access Controls Suite: Compliance Calibrator, Firefighter, Access Enforcer

Worked with the business functional teams, supporting teams and Internal Audit to create security roles according to a designed strategy to prevent the introduction of SOX compliance violations.

Implemented Single Sign On with SAP ERP, BW and non SAP systems, user mapping and integrated Microsoft Active Directory Server with Portal.

Installed and deployed Central User Administration (CUA) on SAP ALE functionality.

Reviewed critical and sensitive authorizations, implemented improvements to meet audit requirements and used Audit Information System.

Created own ECATT & LSMW scripting for mass execution of Security tasks.

Implemented MSS and ESS security using HR Contextual Structural authorizations


Campbell Soup, NJ. 08/05 - 03/06

Lead Performance Tester

Environment: Mercury Load Runner 8.1, Oracle Database, SAP 4.6C, SCM, PP, FI,CO, AP, AR modules.

Analyzed and resolved the networking, Database and OS related issues for SAP application.

Installed and Configured Load Runner 8.1, Oracle Monitor, CCMS monitor, Network Delay Monitor and OS monitor.

Communicated and proposed testing results and suggestions to Basis Team and Networking Team.

Mercedes-Benz, Montvale, NJ 04/04 – 05/05

SAP Basis Security Administrator

Environment: SAP 4.6B, AIX 5.1, FI, CO, MM, WM modules.

Installed Support Packages and Kernels for SAP R3.

Performed daily SAP, Oracle and Unix technical support.

Created roles for MM, PP and HR modules.

Scheduled the batch jobs through Redwood.

Monitored MQ series and IDOCS through SAP R3.

Acted as a coordinator between MBUSA and SAP Germany to coordinate activities.

Installed Oracle 8.1.7 on NT platform.

Worked with the Portal Team & the Basis Team to avoid the pitfalls of the potential problems

SAP America Hosting, Newtown Square, PA. 05/03 – 04/04

Clients: Sentry, Energizer, and Schick.

SAP Basis Security Technical Support

Supported Go-live activities for all the customers.

Performed installation of 4.7 Enterprise server on NT/2K platform with Oracle 9.2

Performed SAP client export/import and client copy for SAP R3 4.6C.

Installed SAMBA on HP UNIX platform to create mount point for FS.

Applied Hot packages and oracle patches and Plug Ins.

Set up print servers on NT platform and UNIX platform.

Deleted an SAP Client Using an SAP Executable and R/3 Functionality

Administered 8000 + users by Creating a New User by Copying an Existing Users list, Changing a User's Password, Setting User Defaults, Viewing System Users Operations on Multiple Users, Sending System Messages.

Global Crossing, Madison, NJ 06/02–04/03

SAP Technical Support

Environment : SAP 4.6C, HR, FI, MM/PP modules, BW 2.0B, Sun Solaris.

As a Security Support: Resolved day-to-day requests for creating users, changing passwords, modifying activity groups/Roles, Mass lock and unlock of users, Mass changes to user parameters, running SUIM transactions to get the list of users with specific Auth.

Built new Roles, troubleshoot access related issues for business users for HR, FI, MM/PP modules

Created new company wide approval Strategy for SAP Access related issues

Also as a backup, Performed BI Data loads (Master data and Transaction data) in BW production instance from flat file by scheduling Info packages, Refreshed the BW Test instance Database, Monitored Background Data loading jobs through BW Monitored tool, Removed the loads from Info cube, Installed Interactive Excel for BW SAPGUI, Reorg BW Database indexes, BW Table space Administration, User management.

Refreshed the Pre-production Database with Production Database on monthly basis.

Set up and troubleshoot network printer problems.

Installed and configured ITS 2.0 on Windows NT 4.0 system for BW ESS instances.

Troubleshoot for EC Gateway and PGP interfaces for Chase and Fidelity vendors.

Setup help files for SAP R/3.

Upgraded Kernels for 4.6D and applied hot packages for 4.6C and PI Extractor 2002 for BW 2.0B.

Updated Vertex Database and Monitored IXOS archiving software.

Monitored and supported BW and HR landscape for off-hours through CCMS tool.

Performed Client export and import, Client Copy, Client Unlock/Lock.

Performed Database refresh on monthly basis, reorg. table/index, extended table space, buffering table, back up database and offline archive logs with SAPDBA Tools, restored database for disaster and recovery.

Performed Daily Monitoring through CCMS.

Monitored Disk usage and Disk space on SUN E6500 through Veritas Volume Manager and Veritas Storage Administrator.

EDS, Newark, NJ 12/00 - 04/02

Client: Public Services Gas & Electric Services

Sr. SAP Security Basis Technical Consultant

Environment: SAP 4.6C, FI/CO, BW 2.0B, Oracle Database, Sun Solaris

Performed Security Support including Building Roles/Design for BW and SAP 4.6C FI, CO, AP, AR and HR and Energy Industry solution.

Resolved Complex Security related issues by troubleshooting and tracing users for access related issues for the 4.6C environment.

Worked with other Security Team Members to resolve

Performed System Monitoring for Enterprise systems SAP R3 4.6C for ORACLE database.

Troubleshoot user problems on daily basis including for BW 2.0B business analyzer and BW database problems and BW Security issues for the 2.0B.

Documented SAP security policies and procedures for R3, as well as components like BW, BCS, SEM and Portal.

Used Derived activity groups to create new activity groups and to transfer transaction codes from old ones to new ones.

Created and maintained SAP Authorizations, User Master Records, Table authorizations, Authority checks, Activity group creation, and profiles.

Worked with the technical teams to design technical security including table, report and program interface security for the production environment.

Analyzed customer programs and transaction codes for authority checks.

Worked with functional team leads to define the new transactions

Create/maintain of BW roles, Implemented and maintained BW Hierarchical Authorizations.

Coordinated the user account creation and termination policy with Human Resources and Operations

Secured roles by Company Code, Plant, Cost Center, Profit Center, and Purchasing Organization etc

Set up source system connections between BW 2.0 B systems and R/3 systems 4.6C.

Performed installation and post-installation of BW 2.0B system on NT along with team members.

Setup of the networked printers for BW landscape.

Scheduled job to load Master data and ECCS data load on BW-production info cubes.

Applied hot packages for HR & BW landscape.

Created Info catalogs, Info cubes, and ODS.

Scheduled Info package to load the data from flat File.

Configured system for early watch sessions by SAP on weekly basis.

Spearhead Consulting Group, NY 05/00-12/00

Client: American National Can, Chicago, IL.

SAP Technical Consultant

Planned and performed Upgrade from 31I to 4.6B on HP 11.00.

Performed Post Upgrade activities including setting up TMS, alert monitor, background jobs, printers, profile parameters for buffer, etc.

Performed Oracle database upgrade from 8.05 to 8.1.6

Performed Daily Oracle Administration activities such as Table space Administration, Reorg. Tables and Indexes, Manual Backups, moving data files etc.


Furnished upon request.

Contact this candidate