Security Project
Resume:
Sushma M
Mobile : 609-***-****
Executive Summary:
• Around 10+ years of total IT industry experience in Design, Development and implementation of business applications. Experience include implementing and supporting security((ECC, BW, CRM, HCM, SCM & Portal) ) for SAP ECC 6.0/5.0/4.7/4.6C, GRC 5.3, GRC AC 10, Virsa 4.0, Net weaver 7 and Enterprise Portals (EP).
• Successfully implemented multiple SAP projects (full lifecycle) starting from blueprinting phase to Go-Live & Support.
• Supporting as a SME for multiple GRC projects.
Areas of Expertise:
• Extensive hands on experience upgrading security from R/3 4.x to ECC 6.
• Good experience with configuration, Implementation and upgrade of GRC AC 10, GRC 5.3 and Virsa
• Experience implementing GRC AC and upgrading from GRC 5.2 to 5.3 & GRC 5.3 to GRC AC 10/10.1 and Virsa 4.0 to AC 10/10.1.
• Audit support experience with E&Y and KMPG.
Professional Summary:
• Strong experience in SAP GRC applications and troubleshooting activities of Access Controls at the time of pre & post installations.
• Configurations Experience in Access Controls capabilities RAR, ERM, CUP & SPM and worked on reports.
• Defining Risks, Analyzing Risks, Creating Business Process, Rule creation, mitigation, Role Owner, Alerts, Analyzing management reports, Basic Configuration Settings in all AC capabilities.
• CUP Workflow configurations, Creating New Accounts, Lock & Unlocking, Change & Delete accounts, HR Triggers, Roles Assignment, Maintaining approval stages.
• Role creation, Maintenance, Reports, Role Attribute creation, Methodology creation, Role Provisioning, Role Synchronization.
• Integrating all AC capabilities, exposure to web services, BAPIs, RFC users, scheduling relevant back ground jobs, system configurations.
• Working experience on SUIM reports, scheduling background jobs.
• Strong exposure on SAP Authorization Concept, Profile Generator, Single Role, Composite Role, Derived Role concept, User Creation and using SOD rules.
• Experience on Transport Management System, Debugging skills, Applying Hot packages, manual notes.
• Worked on versions of 4.6C, ECC5.0 and 6.0 of SAP BASIS releases and CUA concept and Worked on GRC AC versions of 4.0, 5.2 & 5.3,
• Experience on GRC AC 10.0 applications and upgrade from 5.3 to AC10and 4.0 to AC10.
• Checking quality checks in GRC AC applications, Q-Index, Usability Checks, Performance checks.
• Proven ability to work independently and within team, exposure to multicultural work environment and having good communication skills both written & verbal.
• Involved in Preparing the project plan for GRC 10 implementation and migration project.
• Given KT session to project support teams on ARA,ARM,EAM and BRM.
• Given training to End users on GRC AC
• Created blue print documents, GRC-LDAP integration documentation,Migration project guide line, GRC-IDM integration documentation.
R/3 Security:
• Experience of SAP R/3 Security configuration, design, development, testing, implementation and production support.
• Maintenance of User Master Records, Profiles, Authorizations
• Role Design, Testing and Implementation.
• Troubleshooting SU53, ST01, SUIM.
• Extensive experience in User Administration and Role Assignment in CUA.
• Experience in SUIM: User Information System.
• Knowledge of analysis on authorizations.
Achievements:
• Got project HI-5 Award Q1 2011 in Optimal solutions for implementing Project on time.
• Visited NDPL customer as part of customer interaction program in SAP labs India Pvt. Ltd, Gurgaon.
• Got Eminence and Excellence Recognition 2012(Orion Award) twice from IBM Nov,2012 and Oct,2013
Technical Skills:
GRC TOOLS SAP R/3 4.6C,620.640,700
OPERATING SYSTEMS Windows-98/2000, XP
DATABASES Oracle 9i,
DOMAIN KNOWLEDGE SAP GRC 5.2 and 5.3 & 10.0, Virsa Access Enforcer, Virsa Compliance Calibrator, Virsa Fire Fighter, Virsa Role Expert
SAP GTP,CSS/CSN,SAP security
Project Profile
Project 1:
Title SAP GRC
Client Schweppes, New York
Duration April 2014 to Till Date
Roles & Responsibilities:
• Involved in the project planning, design documentation.
• Configured Pre-Post installation steps related to AC component.
• Configured MSMP workflow for New access,change access, Delete access,Lock/Unlocking, Functional creation, Mitigation control id creation, Risk id creation,Fire fighter id request and also Role approval in Access request management.
• Configured SOD and UAR workflows.
• Email notification settings and scheduled the back ground jobs.
• Created Owners, Mitigation Controllers, Risk owner, Security lead Point of contact.
• Created FF owners, Controllers and Firefighter id’s for Emergency access request.
• Customized rule set uploaded, Generated the Rule set.
• Created the Methodology process for Role management and also created role attributes.
• Imported the roles for provisioning and maintained the Mandatory fields for the Roles.
• Run the background jobs to sync Authorization data, User sync, Role Sync and Profile Sync.
• Transported the GRC related TR’s from Dev to Production.
• Trouble shoot the Configuration issues like Email notification error, MSMP workflow trigger errors, Role /User level risk analysis issue,Auto provisioning errors.
• Creation of BRF plus rules based on client requirement for MSMP workflow.
• Lead design, creation and delivery of GRC 10 solutions for SAP Security and Compliance.
• Design, configuration, and implementation of Risk Analysis (ARA/RAR), User Provisioning (ARM/CUP), and Fire Fighter (EAM/SPM).
• Analyzed and configured GRC 10 (AC) Global Rule Set per clients’ processes/standards.
• Develop (Fire Fighter) roles and workflow approval process in GRC 10.
• Configure Access Controls (AC10) for reporting and rule maintenance.
• Create the SAP profiles and roles required to provide access to SAP by a defined functional position and implement and fully utilize SAP GRC Security Tools.
• Created SoD Matrix based on SAP Transactions and Authorization Objects.
• Implemented SOD conflicts administration strategies and managed remediation tasks to comply with SAP/SOD requirements.
• Design & Create Security Profiles based on functional and technical needs of all security roles and authorizations for all SAP modules (ECC 6.0, BW, SRM, CRM, Portals, & HR).
• Implemented LDAP integration with GRC.
• Conducted end user training to business users.
• Prepared the test plans, Test scripts and Testing documentation
Project 2:
Title SAP GRC
Client Hill share Brand– GRC 5.3 to 10.1 Migration
Duration October 2013 to March 2014
Roles & Responsibilities:
• Responsible for preparing GRC 5.3 Configuration and Master data baseline document.
• Performed post installation configuration like activating BC sets.
• Worked closely with Basis team to get AC 10.1 plug Ins installed on all target systems and installation of Migration tool on GRC 5.3.
• Migrated Configuration, Master data and Transactional data from GRC 5.3 to GRC AC 10.1 for RAR, CUP, SPM and BRM.
• Performed Intra Migration activities like Creating connections, connection groups, performing Auth, Repository syncs, maintain configuration settings.
• Performed Post migration steps including activation of MSMP workflow BC sets, generation of rule, maintaining workflow stages.
• Supported post migration data validation activities in SPRO and NWBC.
• Good understanding and experience with BRF+ (Business Rule Framework).
• Created Initiator, Agent and Routing rules with in BRF+.
• Created and modified workflows, AC owners, Rules, Mitigation Controls to meet the business requirements.
• Scheduled background jobs for EAM, BRM,ARA and ARM.
• Responsible for preparing UAT test document.
• Implemented Password self-service(PSS) for User authentication with LDAP system
• Configured CUA set up in GRC 10.1
• Prepared the test plans, Test scripts and Testing
• Responsible for preparing all end user training documents.
• Resolved all UAT related issues.
Project 3:
Title SAP GRC
Client Century link, Los Angles
Duration February 2013 to September 2013
Roles & Responsibilities:
• Responsible for preparing GRC 5.3 Configuration and Master data baseline document.
• Performed post installation configuration like activating BC sets.
• Worked closely with Basis team to get AC 10 plug Ins installed on all target systems and installation of Migration tool on GRC 5.3.
• Migrated Configuration, Master data and Transactional data from GRC 5.3 to GRC AC 10 for RAR, CUP, SPM and BRM.
• Performed Intra Migration activities like Creating connections, connection groups, performing Auth, Repository syncs, maintain configuration settings.
• Performed Post migration steps including activation of MSMP workflow BC sets, generation of rule, maintaining workflow stages.
• Supported post migration data validation activities in SPRO and NWBC.
• Good understanding and experience with BRF+ (Business Rule Framework).
• Created Initiator, Agent and Routing rules with in BRF+.
• Created and modified workflows, AC owners, Rules, Mitigation Controls to meet the business requirements.
• Scheduled background jobs for EAM, BRM,ARA and ARM.
• Responsible for preparing UAT test document.
• Implemented OIM for Request submission and Request status.
• Resolved all Web services related issues.
Project 4:
Title SAP GRC
Client Sentient Energy, Burlingame CA
Duration September 2012 to January 2013
Roles & Responsibilities:
• Configured Pre-Post installation steps related to AC component.
• Configured MSMP workflow for New access,change access, Delete access,Lock/Unlocking, Functional creation, Mitigation control id creation, Risk id creation,Fire fighter id request and also Role approval in Access request management.
• Email notification settings and scheduled the back ground jobs.
• Created Owners, Mitigation Controllers, Risk owner, Security lead Point of contact.
• Created FF owners, Controllers and Firefighter id’s for Emergency access request.
• Customized rule set uploaded, Generated the Rule set.
• Created the Methodology process for Role management and also created role attributes.
• Imported the roles for provisioning and maintained the Mandatory fields for the Roles.
• Run the background jobs to sync Authorization data, User sync, Role Sync and Profile Sync.
• Transported the GRC related TR’s from Dev to Production.
• Trouble shoot the Configuration issues like Email notification error, MSMP workflow trigger errors, Role /User level risk analysis issue,Auto provisioning errors.
• Creation of BRF plus rules based on client requirement for MSMP workflow.
• Lead design, creation and delivery of GRC 10 solutions for SAP Security and Compliance.
• Design, configuration, and implementation of Risk Analysis (ARA/RAR), User Provisioning (ARM/CUP), and FireFighter (EAM/SPM).
• Analyzed and configured GRC 10 (AC) Global Rule Set per clients’ processes/standards.
• Develop (FireFighter) roles and workflow approval process in GRC 10.
• Configure Access Controls (AC10) for reporting and rule maintenance.
• Create the SAP profiles and roles required to provide access to SAP by a defined functional position and implement and fully utilize SAP GRC Security Tools.
• Configure GRC Access control tool to avoid SOD conflicts to comply with Sarbanes-Oxley (SOX) regulation using RAR, CUP, and SPM.
• Analyze SAP Segregation of Duties (SOD) conflicts and recommend corrective action.
• Created SoD Matrix based on SAP Transactions and Authorization Objects.
• Implemented SOD conflicts administration strategies and managed remediation tasks to comply with SAP/SOD requirements.
• Design & Create Security Profiles based on functional and technical needs of all security roles and authorizations for all SAP modules (ECC 6.0, BW, SRM, CRM, Portals, & HR).
• Created LDAP configuration for user data master source
Project 5:
Title SAP security
Client Armstrong- Implementation project
Duration May 2012 to August 2012
Roles & Responsibilities:
• Creation of users, locking/unlocking of users, deletion of users.
• Password resetting, Locking and changing the validity date for the expired users.
• Mass User Maintenance.
• Creating user groups for easy administration and groups.
• Producing reports using User Information system and tables.
• Single, Composite, Master and Derived roles creation and Performed unit testing.
• Role modifications and adding missing authorizations.
• Performing user master comparison.
• Identifying potential SOD issues before assigning new roles to the user.
• Maintaining the Authorizations and restrictions according to client requirement.
• Worked with security tables such as AGR* & USR*, etc.
• Transport of roles across clients in the landscape Development to Quality.
• Analyzing and solving the missing authorizations and day-to-day security issues that are being raised by the users.
• Providing End user Support and resolved all the end user related issues.
• Analyzed root cause of security failures to resolve help desk tickets, support unit and integration testing of roles.
• Tracing missing authorizations objects using ST01 and recommending appropriate roles for the end users.
• Analyzing the User Access Problems using SU53 and Providing Authorization reports through User Information System SUIM.
Project 6:
Title SAP security
Client PBS coal (US)-Implementation project
Duration May 2011 to May 2012
Roles & Responsibilities:
• Creation of users, locking/unlocking of users, deletion of users.
• Password resetting, Locking and changing the validity date for the expired users.
• Mass User Maintenance.
• Creating user groups for easy administration and groups.
• Producing reports using User Information system and tables.
• Single, Composite, Master and Derived roles creation and Performed unit testing.
• Role modifications and adding missing authorizations.
• Performing user master comparison.
• Identifying potential SOD issues before assigning new roles to the user.
• Maintaining the Authorizations and restrictions according to client requirement.
• Worked with security tables such as AGR* & USR*, etc.
• Transport of roles across clients in the landscape Development to Quality.
• Analyzing and solving the missing authorizations and day-to-day security issues that are being raised by the users.
• Providing End user Support and resolved all the end user related issues.
• Analyzed root cause of security failures to resolve help desk tickets, support unit and integration testing of roles.
• Tracing missing authorizations objects using ST01 and recommending appropriate roles for the end users.
• Analyzing the User Access Problems using SU53 and Providing Authorization reports through User Information System SUIM.
Project 7:
Title GRC Implementation(Internal)
Employer OPTIMAL SOLUTIONS
Duration October 2010 to April 2011
Roles & Responsibilities:
• Involved in SAP GRC Access Control 5.3 implementation
• Involved in configuration of SAP GRC Access control 5.3 tools: SPM, CUP, and RAR.
• Perform and Completion of Post Installation Tasks on CUP.
• Configuration of Compliant User Provisioning as per the Client requirements.
• Create/Maintenance of Initiators, Stages, WF Paths.
• Scheduling Background Jobs for Email Dispatcher, Email Reminder, Escalation, Stale Requests and Role Reaffirmation.
• Integration of CUP to RAR.
• Perform and Completion of Post Installation tasks on RAR.
• Design, develop and implementation of RAR configuration.
• Scheduling Background Jobs for Synchronization and Risk Analysis.
• Real Time Risk assessment.
• Simulation and Remediation.
• Create/Maintenance and documentation of Mitigation Controls.
• Maintenance or summary of all Risk Analysis and Remediation reports.
• Integration of RAR with CUP.
• Perform and Completion of Post Installation tasks on SPM.
• Design, develop and create/maintenance of SPM Configuration for all satellite backend systems and Front End.
• Scheduling Background Job for Logs.
• Providing/working on Log reports to support Auditing.
• Analyzing and solving the missing authorizations and day-to-day security issues that are being raised by the users.
• Providing End user Support and resolved all the end user related issues.
• Analyzed root cause of security failures to resolve help desk tickets, support unit and integration testing of roles.
• Tracing missing authorizations objects using ST01 and recommending appropriate roles for the end users.
• Analyzing the User Access Problems using SU53 and Providing Authorization reports through User Information System SUIM.
Project 8:
Title SAP GRC Access Controls
Employer SAP LABS INDIA PVT LTD.
Duration July 2005 to October 2010
Roles & Responsibilities:
• Creating different roles for SAP system and maintaining using GRC Enterprise Role Management
• Worked on other GRC tools Risk analysis and Remediation, Compliant User Provisioning, Super User Provisioning.
• Experience in creating and Maintaining Authorization object(SU20 to SU24)
• Analyzing and evaluating the technical security requirements for SAP R/3 Security
• Worked with security related tables (AGR*& USR*).
• Experience in setting up Central User Administration (CUA) and maintenance
• Accessed User info system (New user, Roles, Authorizations, User, T-Codes etc.) through SUIM regularly.
• Involved creating mass users, deleting mass users, locking and unlocking mass users.
• Troubleshoot R/3 security problem by using different scenario such as system trace
• Responsible for day to day technical support and resolution of security issues
• Resolve user’s daily problems (lock, unlock, and reinitialize passwords, no access to a transaction.)
• Assist users with access problems and questions using SUIM and SU53
• Working with cross teams, executing Point of Controls (POC) activities for ERM application
• Dedicatedly worked for PETROBRAS and ITC customer during the escalation of ERM
Contact this candidate