Security Sap
Resume:
Syed Alam
Global SAP Security Analyst/ Specialist/ Administrator
Dallas-McKinney, Texas
Cell #- 919-***-****
E-mail - *******@*****.***
US Citizen with Public Trust and Secret Security Clearance
Global sap security analyst / SPECIALIST/ administrator
SUMMARY OF PROFESSIONAL EXPERIENCE:
Several years of Global SAP Security and Authorizations experience with Commercial, US Federal & Defense, IBM Internal & External Global Services projects and Industries
Experience in Full Life Cycle Implementation using ASAP Methodology in various versions of R/3 including 3.1H, 4.0, 4.5B, 4.6C, R/3 4.7, ECC 5.0 and ECC 6.0 from Project preparation to Design to Post-Production phase on different projects in Public, Defense and Private sectors.
Extensive experience with Automatic Profile Generator (PFCG), Authorization object maintenance, Problem analysis and troubleshooting, LSMW, SAP GUI & ECATT Scripts, transporting roles, HR Security, Auditing, Segregation of Duties (SOD) and Sarbanes-Oxley Compliance etc.
Well acquainted with Central User Administration (CUA) in both single and multiple system landscape.
Outstanding experience in performing Upgrades from 4.6C, 4.7 to ECC 6.0 and BW 3.5 to BI 7.
Outstanding hands on experience in Strategizing and Implementation of SAP Security Model Design, Develop, Identified risks and implemented security solutions for wide range of projects and clientele.
Experience in SOX Remediation projects with VIRSA 4.0 and GRC (SAP Access Control 5.2, 5.3). Worked closely with Internal and External Auditors on Segregation of Duties (SOD) conflicts to make it SOX compliant
Hands on experience in Developing and Implementation of SAP Security Strategy for ECC, CRM, HCM, Solution Manager, PLM and BI/BW Roles for Small, Medium and Large industries e.g. DoD GCSS (Global Combat Support Systems) ARMY (1.6 Million end-users) and US NAVY ERP PSS1 DoD one of the largest SAP implementations.
Designed and developed thousands of SAP Security Single, Derived, Composite, Object and Localization Roles for R/3, BI/BW, CRM, HCM, PLM, Firefighter, cFolders including ITAR restrictions and Localizations using Profile Generator for SD, SM, GTS, PLM, MM, FI, CO, PP, PM, WM and IM in 4.0, 4.5B, 4.6C, R/3 4.7, ECC 5.0 and ECC 6.0 environment.
Experience in implementing and working with HR Security including Structural Authorizations and Position Based Security (PBS).
Experience on Audit projects and working as a liaison between the Security team and Auditors.
Experienced in leading SAP security teams in audit efforts by helping in defining the audit rules and automating the reports by defining the programs specifications.
Hans-On experience in creating and monitoring SAP Security batch jobs, e.g. Update user master record.
Delivered SAP Security Training Course to the customers.
Supported Test Cycles including Unit, Regression, Negative and User Acceptance Test using HPQC tool to fix and communicate with the testers.
Strong understanding of SAP security management principles, SAP application security implementation methodologies, role based access controls, distributed systems administration, and distributed system recovery.
Experience in establish and maintain SAP Security Policies, Procedures and Standards.
Experience in working independently completing complex security related tasks, make major contributions in assuring deliverables meet contract and work plan objectives and take on tasks of increased complexity.
Strong analytical and diagnostic skills, great communicator as well as team player, operate with high integrity, and extremely motivated with a strong desire to exceed customer expectation.
Professional Experience:
ACCENTURE FEDERALCONSULTING:
SAP Security Analyst/ Specialist/ SOD/GRC (10.0) Sustainment: 12/2014 – Present
Reviewed, re-designed, re-developed and modified ECC 6.0 SAP Security Model, Strategy, End User Roles, User Ids, Naming convention for the User and Roles, Policies and Processes for DLA project
Provided technical leadership around security initiatives, User Administration, SOX compliance, SOD conflicts and mitigations, designed, developed and modified several End-User Roles and Authorizations using profile generator
Gather requirements, estimate, analyze, design, develop, test, and deliver assigned tasks
Identified security tables for the queries and reports for specific business groups/users
Communicated with team members about the project updates, issues and next development steps.
Administered the security landscape and provided support for the team members to resolve all issues.
Analyzed existing security roles for SOX / SOD issues utilizing GRC that would require remediation effort and role redesign
Performing GRC/SoD Sustainment Support activities for Access Control..
Supported Developers key, OSS ids, CUA administration including adding and deleting clients
Worked with security and audit teams to resolve security related conflicts. Prepared technical check list for sensitive authorization objects.
Participated in morning and evening conference calls to make sure that all concerned were kept up to date on any current and future planned security changes
Provided production support. Processed SAP user access requests and supported troubleshooting of day-to-day access related issues.
Provided guidance and assistance to functional, business, test, developer and security teams handling day-to-day support and post production support of SAP Security.
True team player with hands-on experience in SAP Security and Authorizations.
Following and enforcing all Accenture Federal and Client policies, rules and regulations.
Meeting service commitments for assigned deliverables and proactively provide work status.
Updating / Maintaining documentation and finding ways to improve documentation methods on the team.
Suggesting areas for improvement within the team and across the project.
Expressing ideas and solutions in a clear, concise manner either in writing, verbal communication, or professional presence.
Escalating and communicating issues with team leadership.
Providing Weekly Status Reports to Team Lead.
Contribute to the creation of team Standard Operating Procedures through job aid creation, update, socialization, and maintenance.
Resolving production development issues independently and providing assistance to Junior Administrator
CROWN EQUIPMENTS:
Global Business Design Projects for NA, LA, Europe (EMEA) and Asia-Pacific 10/2013 – 11/2014
Global SAP Security Analyst/ Specialist/ Administrator:
As a SAP Security Architect, Analyst and Lead I was responsible to provide technical directions, guidance, build SAP Security Strategy, Design, Development, Implementation, Maintenance, Role development, User Administration, Security Model, SOX compliance, CUA admin, and Test phases.
For new SAP ECC 6.0 implementation I have gathered business requirements to build End User Roles.
Worked along with the functional teams to set and resolved the authorization object level data and problems in various modules
Created report variants, identified controls, generated access reviewed security reports using the transaction SUIM for user access, roles, profiles and authorizations, lock/unlock user in client etc
Developed ECC End User Roles, Project Team Roles and Business Team Security Roles per the requirements
Produced gap analysis to identify alternate solutions specific to SAP security requirements and provided technical recommendations on design and architecture improvements.
Developed many Single / Master and Composite roles for the Project teams (STP, PTP, QTC, HTR, TTM, BTR and HTR) to support overall project including SAP ECC, CRM, HCM, PLM, APO, PI/XI, BOBJ, Solution Manager, BASIS, SAP Security and cFolders,
Created and Configured Central User Administration (CUA) for multiple system landscape
Created a Global SAP Security Strategy for the entire company to implement position based Global End User Roles
Worked with process and business owners to define the authorizations needed for End Users.
Designed, developed and created ECC 6.0 SAP Security Models, Strategies, End User Roles and User Ids
Created Global User and Roles Naming convention document
Created and Establishing Processes, Policies and Procedure for future use.
Transported project roles across the landscape to restrict project team access.
Helped HR creating On-Boarding process for the new hires.
Created a test environment with Test Users and Roles.
Participated in morning and evening conference calls to make sure that all concerned were kept up to date on any current and future planned security changes
OWENS ILLINOIS:
Global Process Design Projects for NA, LA, Europe and Asia-Pacific 04/2010 – 10/2013
Global SAP Security Analyst/ Specialist/ Administrator:
Created a Global SAP Security Model for the entire company to implement Global Roles and Authorizations in North America, Latin America, Europe and Asia Pacific.
Recently implemented ECC60 and APO for Canada, USA, Ecuador, Peru, and Columbia with zero SOD conflicts and moving towards Argentina, Brazil, Europe and Asia Pacific.
As a SAP Security Analyst, Administrator and Specialist I am responsible to provide technical directions, guidance, build strategy, design, development, implementation, maintenance, role development, user administration, security model, SOX compliance, CUA admin, test phases, developer’s key, OSS ids and security processes to the Global SAP Security team.
Worked along with the functional teams to set and resolved the authorization object level data and problems in various modules
Created report variants, identified controls, generated access reviewed security reports using the transaction SUIM for user access, roles, profiles and authorizations, lock/unlock user in client etc
Developed ECC End User Roles, Project Team Roles and Business Team Security Roles per the requirements
Currently supporting three different SAP Production systems (ECC 5.0 and 6.0) in four regions (NA, LA, Europe and Asia-Pacific) with three different set of roles.
Designed and implemented Position role based security, based on SOD according to SOX compliance.
Produce gap analysis to identify alternate solutions specific to SAP security requirements and provide technical recommendations on design and architecture improvements.
Provided global leadership in Cut Over coordination, Business Processes, Review and Approval of all new production releases, Change Management and ensure SOX Compliance in designing and implementing operating processes and procedures
Involved in Pre Migration of sensitive data validation, Post Migration data validation for Installed base and user Master records
Successfully upgraded 4.6C to ECC60 in Asia Pacific in April 2013.
Leading and supporting Global SAP Security team and actively working on several projects.
Work very closely with Business, Audit and Audit controls to eliminate SOD conflicts by roles, positions and end users before Go-Live.
Participated in morning and evening conference calls to make sure that all concerned were kept up to date on any current and future planned security changes
Proud of myself to bring many SAP Security technical solutions for Global use within my company.
With my strategic thinking I always tried to provide technical solutions in any situation to exceed the solution process which helps avoid future problems and workload
EMERGYS CORP CONSULTING:
Internal and External Projects with Emergys Corp 07/2008 – 04/2010
SAP Security Analyst/ Specialist/ Administrator/ Consultant:
Since this was the consulting company so, I had to play different job roles such as Global SAP Security Architect, Lead, Analyst and Administrator with many customers in several projects.
Created Project Plan with timelines and reviewed company’s Project plans for the customers.
Created a test environment with Users and Roles.
Provided expert advice on the tools functionality, reports, and user interface.
Identified security tables for the queries and reports.
Tested and validated multiple reports and Function Modules.
Communicated with team members with project updates, issues and next development steps.
Administered the security landscape and provided support for the team members to resolve all issues.
Analyzed existing security roles for SOX / SOD issues utilizing VIRSA that would require remediation effort and role redesign for the first Go-Live
Designed and Implemented SAP Security Road Map for remaining company’s external projects.
Designed and Configured SAP security landscape for existing and new external projects
Conducted planning and preparation with detailed review and modification of Project plan to include all relevant redesign steps
Designed, developed and created ECC 6.0 SAP Security Models, Strategies, End User Roles, User Ids, Naming convention for the User and Roles, Policies and Processes for Internal and External projects
Provided technical leadership around security initiatives, Portal user administration, SOX compliance, SOD conflicts and mitigations, designed and developed several End-User Roles and Authorizations using profile generator for FI, CO, SD, MM, SM, QM, PS, PLM, WM, GTS and PP modules.
Supported Developers key, OSS ids, CUA administration including adding and deleting clients, Heat tickets, Regression Test, Negative & Positive Role Testing and UAT for different modules and several other security related responsibilities
Worked with security and audit teams to resolve security related conflicts. Prepared technical check list for sensitive authorization objects.
Participated in morning and evening conference calls to make sure that all concerned were kept up to date on any current and future planned security changes
Provided production support. Processed SAP user access requests and supported troubleshooting of day-to-day access related issues.
Provided guidance and assistance to functional, business, test, developer and security teams handling day-to-day support and post production support of SAP Security. I am a true team player with hands-on experience in SAP Security and Authorizations.
.
IBM GLOBAL BUSINESS SERVICES:
IBM Global Business Services, Research Triangle Park N.C 05/1987 – 07/2008
SAP Senior Security Analyst/ Specialist/ Admin/ Consultant:
Worked with many IBM Internal and External projects including Commercial, Federal and Defense medium or large size projects. One of the largest SAP implementations I had worked were US Army and US Navy projects, mission was to reinvent and standardize Army and Navy business process for acquisition, financial and logistics operations. SAP’s DoD largest implementation of its application to date in terms of number of end users and modules.
Worked and supported many SAP security E2E cycles, created and maintained SAP 4.6C, 5.0 and ECC 6.0 Roles and Authorizations
Designed, developed, created and maintained ECC 6.0 SAP R/3 roles and authorizations, supported User administration, SOX compliance, SOD conflicts and resolutions, BW roles, GRC access enforcer and Portal user administration, developers key, OSS ids, CUA administration including adding and deleting clients, defect, role verification for Access Enforcer, Integration Test, Negative Role Testing and UAT for different modules and several other security related responsibilities.
Provided leadership around Security issues, prepared and presented proto-types and proof of concepts to Team Leads and Functional team members. I had provided SAP ECC 6.0 Security Strategy for the development of End User Roles and Authorizations required to dynamically supporting the entire US Army (1.6 Million End Users).
I had supported many IBM Internal projects and performed the following activities/tasks/responsibilities.
As a SAP Security and Basis team member I had supported Hardware Fulfillment, RDx and SAPP teams. I had worked on MMLC (Material Master Lead Client) Project for various teams. Defined and established numerous ALE connections between US to Germany, Austria, UK and Japan systems. Distributed IDOC's across the systems. Accomplished successful conversion of all authorization profiles developed manually to the ones created with the latest Profile Generator tool with minimal system impact.
Supported and maintained User administration. Design and developed End User Role in 4.6-ECC 5.0 environment. I was involved and supported problem determination and resolution for customer, developer, tester and other teams for various systems on a regular basis.
Carried out and managed transports in development, integration and production systems.
Client administration included (copies, delete, import and export). Also, processed non-locals transports from other IBM SAP development projects, Configuration/Setup of TMS in SAP, Analyzed transports that imported with errors or warnings. Supported ALE included maintain Customer Distribution Model, Generated partner profiles, Established RFC connections, Port creation, Logical system definition, added and deleted msg. types, filters and values from the model. Installed OSS Notes by using Notes assistant application and sometimes manually repaired the broken codes and also, coordinated problems and issues with SAP through corporate messages.
Created, maintained, and monitored system change request (SCR) through Lotus Notes Database.
Strong Team player and always available to provide support for all teams.
SYSTEM APPLICATIONS:
Operating Systems Experience:
SAP on WINDOWS / XP/Vista, Informatica (I2-DF) on AIX, Novell Netware 3.11 Server for both Ethernet and Token ring with Dos / Windows, OS/2 clients, UNIX, Stand Alone AIX operating system on PS/2, OS/2 1.3, 2.0, 2.1 and 3.0 Warp manually and through Netdoor, Experience in installing OS/2 LAN Server, Additional Server and Requester on OS/2 and DOS, DOS 7.0 and applications, TCP/IP on OS/2, DOS and WINDOWS 3.1.
COMPUTER APPLICATIONS:
Personal Computer Applications:
HPQC, Service Now, Jera, Lotus 123, Works, Freelance, Quicken, AmiPro, Dirutility, Norton, Utility, Windows 3.1 and other applications.
ABAP/4, BASIC, PASCAL, COBOL, PLI, DBASE III & IV, LOTUS, C, REXX, Mainframe Applications:
Hands on experience in using VM, MVS Mainframe Operating Systems, AIX, TSO, REXX programming.
EDUCATION:
Novell Certified Netware Engineer (CNE). 1994
Bachelor’s in Computer Science. 1990
IONA College, N.Y.
Department of Defense Certifications:
Successfully completed the following DoD and ARMY Certification courses:
DoD Information Assurance Awareness
Computer Users Security (IA Awareness)
Information Assurance Security Officer Certification (IASO Management Level 1) 40 hrs course.
Information Assurance Technical Level 1
Contact this candidate