Manager
Resume:
Mauro Velazco
Av. Miguel de Cervantes *, *****. Madrid – Spain
E-mail: adpkyh@r.postjobfree.com
Phone: +34-662-******
Extract
Information Security Specialist. Certified ITIL v3. CCNP, CRISC. Azure OpenShift. Service Delivery Onboarding, WebMethods Admin, API Management, Software AG platform Transversal Admin (Policy Manager, Command Central, Designer, Integration Servers). Participation in ethical hacking tests, as well as audit work and information technology consulting to the financial, services, pharmaceuticals and telecommunications. API Manager. Datasets for reporting (BBDD, Developments and Operations). SharePoint and Office 365 Admin. ABAP 4. SAP Security, GRC Certified. Management SAP roles and profiles. SAP Audit Management. SAP Technical Lead, SAP Project Manager. Identity and access management (QUEST Manager). Extensive knowledge on platforms such as Solaris, AIX, HP- UX, Linux, Windows, AS/400 and Stratus. Also, on handler’s database like SQL Server, Sybase and Oracle. Project management, supplier management. Managing internal and external audits.
Work Experience
January 2017 – Current…
Shared Operations Systems and Cloud
AXA; Madrid, Spain - Paris, France.
ü Architecture, DevOps and all workflow Administration about the following Apps; (Digital Web, IAM, B2C, OpenShift, Web Console, GitHub, Jboss, Ansible Tower, Arrakis, AMQ, Azure, ESG & EIP).
ü Regular updates and communication of emerging ESB and transversal Applications
ü Responsible for development and delivery of optimal and exceptional support of JENKINS solutions to support the strategic growth.
ü Communication and Improvement plan with EIP and ESG CoE AXA GO.
ü Provide technical and analytical guidance. Makes recommendations and acts to direct the analysis from PKI (Certificates Administration).
ü WebMeth re-engineered processes to leverage advantages (Business area).
ü Microsoft Azure Global Admin (DevOps duties).
ü Software AG platform Admin (Policy Manager and GUI for ESG, Command Central – Integration Servers and Designer for EIP).
ü Test management based in Postman and SoapUI.
ü Managed master data conversion and transactional data creation for 4 implementation cycles.
ü JIRA and SILVA monitoring and receiving tickets outgoing.
ü Implemented an end-user web interface that utilized SiteMinder, SiteScope and B2C.
ü Manage all aspects of Project life cycle to facilitate successful delivery to executive team.
ü Functional duties with direct communications with clients or another AXA entity.
ü Dashboards, Problems, Apps and Microservices maintenance (Dynatrace, Pandora and Kibana).
ü Identify, analyze and recommend business systems solutions to management having broad business impact.
ü Providing a framework for project planning.
ü Software AG and project implementation methodology.
ü WebMeth DevOps (CentraSite, Jenkins, Crossvista, Policy Manager and AIFManagementConsole).
ü Mediators and Integration Server Admin (Web, Putty, SFTP and/or WinSCP).
ü Service Delivery Onboarding (Competence Center Staff).
ü IDM Services Delivery and Maintenance (7.2 and upper).
ü Develops working knowledge of industry regulations, restrictions, and laws, and ensures service department adheres to all regulations.
ü Installation and maintenance of Hybris B2C commerce systems.
ü AMQ landscape & provisioning monitoring.
ü Oversees team members performing inspections, preparing reports, and doing repairs.
ü Sorting security issues according with Financial responsibilities.
ü Maintaining strong relationships with manufacturers, dealers, and Sales Representatives.
ü Participate in internal knowledge transfer to extend and enhance the Emeriti’s competence center team.
ü Work on projects within an AMS context. These can be both big & small. Examples of recent new projects are Payroll implementations, GDPR (SAP ILM) implementation, Time redesign, etc.
ü Supported post Go-Live for key HR issues and enhancements.
ü VIGI Alerts configuration.
ü Designing, implement and support Cloud for Customer (C4C).
ü Displays extensive working knowledge of industry standards and practices,
ü Handling complaints and queries (from customers and staff).
ü Resolving service desk problems and improving service methods to increase the service desk's productivity and customer service.
ü Functional specifications for new requirements & preparing blueprint for any projects.
ü Platform Engineer (Elastic Search, VIGI, Audit Logs and Kibana).
ü Integration Server Admin, WebMethods / SAP Integration.
ü Compliance through integration with LDAP.
ü Advising clients in service-oriented architectures (Functional).
ü Support clients in defining and documenting IAM business processes.
ü Played key role in data migration from Legacy Systems to AXA systems.
ü Visualize the health of your digital business in one place with dashboards.
ü Work with internal infra teams to enable the implementation and disaster recovery solutions for Ops, Apps and Cloud.
ü Excellent knowledge about Layouts, Language Adaptations, Code list restrictions and other Administrator activities.
ü SAP Documents enterprise architecture design and analysis work.
ü Service Bus Production Mediators Component Arquitecture.
ü Maintain the SOX work paper tool (CCS).
ü Solution architect skillset and background.
ü Governance, risk and compliance (GRC) refers to a strategy for managing an organization's overall governance.
ü Execute audit procedures to evaluate the accuracy and completeness of System Reports and End User Computing Spreadsheets.
ü Add client/servers’ certificates (get it from the website), intermediate and root in the Mediator truststore and Integration Server jvm cacerts.
ü SAP provisioning framework strong knowledge.
ü HTTPS ports creation on each node on STG/PRD integration servers.
ü SOX program co-owner full cycle. IT audit or IT controls experience.
ü SharePoint and Delivery Flow structure (Releases, Firewall, Certificates, Virtual Services and Packages).
ü SOX Auditor collects review and analyzes data pertaining to information systems functions.
ü NetWeaver IdM within the framework of synchronization of identity data.
ü Workflow an approval process based on business rules and policies to assign and maintain access rights for users across multiple systems.
ü ESG DevOps and Infra support transversal platforms (Level 1 – 2).
ü Implementations on new version on ESB as architect.
ü Perform as member of high performance and provide solutions alert architecture team supporting business-oriented project development effort.
ü Debug services, access to the logs, solution for log access WebMeth.
ü Regular maintenance work (planned / monthly) including duty in ESG.
ü Adapters config in AMQ.
ü Disaster recovery simulation on ESG platform machines.
ü Virtual Directory Service and Identity Center (IS Admin).
ü Business continuity-assurance behavior and workload.
ü Platform normal behavior and availability will be resume and monitoring.
ü Handling of operation support activities about LDAP security/authorizations (Level 3).
ü Business development activities, shaping the solution plan and delivery approach for IAM transformations.
ü Monthly security patch of Myriam servers.
ü Alerts creation in SiteScope, and open incidents to Level 1 and 2 teams (Myriam/Servers/Windows).
ü Check Status of CPU, Memory and Disks (Myriam servers).
ü Status of the controls about IAM Regional (Corporate Directory, Provisioning Server, Reverse Proxy External, SiteMinder).
ü Identity Manager, SiteMinder Federation, Windows Authentication and Myriam Portal Administration.
ü B2C Performing, debugging and troubleshooting sessions.
ü Design, monitor and maintain a world-class Privileged Access Management solution.
ü Development and deployment of provisioning & deprovisioning workflows.
ü Clean the system and make the system Risk free (GRC).
ü Identify risks and approve risks for monitoring (ECC6, BW, BO, Enterprise Portal, CRM, SRM, PI and GRC) and sub-systems (JDA Supply Chain - Hybris E-Commerce)
ü SAP HCM and related HR applications user accounts, permissions and access rights requests (Level 3 and Functional duties).
ü Implementation of Mediator/Hybris Solutions to enhance the client s business functionality and overall performance.
ü Present formal presentations and executive summaries to senior management to provide recommendations and status updates.
ü Engaging with Clients in understanding their requirements, scoping, discovering and defining solutions.
ü Identity Lifecycle, Roles, SoD, privilege access etc.
ü Security projects, especially Identity & Access Management owner.
ü Provides organizational change management in support of migration from current IAM platform and solutions.
ü Communicates availability requirements for SSO accessibility.
ü Develop and innovate SSO solutions to add value and enhance the standard end user experience.
ü Evaluate legacy SSO technologies (ADFS Federation, SiteMinder WAM, and Azure SSO) and develop a Roadmap towards future-oriented and user- and cloud-friendly protocols.
ü Design and implement enterprise-wide access management and single sign-on infrastructure built on CA SiteMinder, including Proxy and Federation components.
ü Provide Level 2/3 support. Work with help desk and other teams to troubleshoot and resolve/fix issues and bugs. After-hours work as needed for Level 3 escalations and/or deployments.
ü Expertise in Installing, configuration, deployment and maintenance of the SiteMinder components the Policy Server, Web Agent, Policy Store and Key Store.
ü Lead discussions on IAM architecture, process, and governance development.
ü Provide presales support by developing Levels of Effort, responding to Requests for Proposals, and contributing to Statements of Work.
ü Must have in-depth understanding of Cyber-security regulations, governance, corporate security standard, and policies and procedures.
ü Lead client discussions mapping business requirements to the Hybris platform.
ü Periodic testing of rules and mitigation controls (GRC-Auditing).
ü Managing datasets for reporting (BBDD, Developments and Operations).
ü Security & authorizations Web Admin (Develop, Create and Admin) Level 2 and 3.
ü Provide Cost Benefit Analysis on selected business processes to assemble input into business case.
ü Establish insurance to cover impact of a security incident (GRC).
ü Risk management involves Identification of key risks in an organization.
ü Policy Manager accesses for all countries and all systems (request new policies, changing policies).
ü SQL-Server Integration services.
ü Delivering Solution Architecture about WebMeth applications and integration with other applications.
ü Update and improvement of the database through Software AG.
ü Stablish communication from ERP and WEB dispatcher.
ü Coordinating work with cross-functional team leaders and monitoring and reporting on project status.
ü Automatic controls configuration in GRC Process Control.
ü Integration Server General Admin.
ü DR planner and implement.
ü Implementation/ rollouts/ enhancements of Digital Web projects for both, existing clients and new customers.
ü Implementation of security settings (roles, authorizations).
ü Perform the necessary unit test batteries to ensure a correct implementation of the solutions.
ü Automatically alert the management department when high impact risks, analysis about end to end (SoD).
ü ESG-EIP Workflow integration.
ü Business units, lines of business or departments. Audit entities define the audit planning strategy (GRC).
ü Manage tasks of all staff involved with projects. This includes both internal and external resources.
ü Ongoing maintenance of the software configuration within the Transversal application.
ü Architect and Implementation Jenkins project.
ü ERP, Portal and BW Maintenance (Internal Audit).
ü Daily monitoring of jobs that are necessary for the GRC application(s) to run effectively and efficiently.
ü B2C Integration with IAM.
ü Responsible for managing IT Service Management processes, all associated tools and vendor relationships.
ü Framework Admin.
ü Segregation of Duties, business process income and expense transactions.
ü Role Change and Creation Workshops in GRC.
ü Developing and managing project specifications, technical design and requirements.
ü Integration flow prevents redundant data entry and encourages efficient use of resources.
ü Risk & Control, business processes and data structures Lead Process.
ü Microsoft Management Console.
ü Access Controls and Process Controls in an HCM environment.
ü Managed team that supported LDAP, SAP R3 / BW, SharePoint, Oracle, SQL y WebMeth.
ü Monitor carefully and manage IT services (AWS).
ü Establish metrics, monitor carefully the utilization of AWS.
ü Constant improvement of processes and procedures with AWS managed services.
ü Coordinate priorities between the IT department and final users.
ü Design manage and admin on CentraSite (Control Manager).
ü Providing the high-level link to external partners and ensuring that this works effectively.
ü Adds, removes, and updates license assignments for users.
ü Lead process of issue identification and resolution.
ü SharePoint Building integration solutions or simple workflows in Designer.
ü Estimated project budget and describe the main project expenses.
ü IDM business roles and assignment and Manage risk tracking process.
ü Monitors production and quality to customer/stakeholder/sponsor standards.
ü Scalability, Interoperability and Portability Analysis.
ü Metrics against the plan, Reporting and Documentation.
ü Creating organization-specific training documentation.
ü Web Services Transition, SiteMinder Config, One-Trust Configuration.
ü Certificates internal Owner, Warning configuration in SiteScope.
ü IAM Myriam Report, Test Client SoapUI, Myriam Admin.
ü LDAP Audit, API-Portal, API Status.
August 2016 – January 2017
Segurity Arquitect
Atos SE (Banc Sabadell); Barcelona, Spain.
ü Actual situation analysis, architecture design.
ü Service Delivery Onboarding
ü Manage and workflow of security models.
ü Deploy project plans, evolution status and tunning.
ü Deliver new functionality required by the business while protecting the integrity of existing services.
ü Recruit, select, training, assign, schedule, coach, counsel and discipline employees.
ü Management security policies Windows systems and Unix.
ü Microsoft Office SharePoint server portal implementation and upgrade.
ü Citrix and Wintel systems admin.
ü Workflow Applications about Directories Tech (Radius, LDAP, Active Directory).
ü Access Identity.
ü Ensure team follows best practices and maintain service level agreements.
ü Privileged access management (TPAM).
ü Reporting and Documentation.
ü Material Lists for Material.
ü SSO Solutions.
ü Control Access solutions and Strong Authentication.
ü File protection systems and BBDD.
ü Part Objects (Maintainable Item) affected.
ü Positions and List of Objects.
ü DLP / IRM.
ü Vendor Management Services (Development SAP, BASIS, Oracle, web portals, databases, “Albaran”).
ü SAP Access to all systems in all environments (request for new roles, changes in roles).
ü Maintains relationships with technology, software, and security vendors.
ü Management Roles depends the request of business (Business Roles Creation, changes in existing business roles).
ü Provide regular management reporting on IT activities, business projects and initiatives to the International IT Service Management lead.
ü Program called Transaction and Batch Inputs.
ü Trace transactions and general analysis.
ü SAP Admin: Creation, Generation and Transport (MM, SD, CO HR, QM, PM, PP, FI, BW, BI.).
ü Network Monitors usage and performance, implements procedures for network optimization, reliability, and availability.
ü Fix any issue with the reports in general, including pool tables in objects (SE38).
ü Management and coordination requirements for development projects and SAP implementations.
ü Experience in functional and performance testing in SAP developments.
January 2016 – July 2016
Business Application Security Specialist
SICPA S.A; Madrid, Spain – Lausanne, Switzerland.
ü Security & authorizations SAP Admin (Develop, Create and Admin) in the following modules: Controlling, Customer Service, Demand Planning, EH&S and RM, Finance, Human Capital Managment, Inventory To Fulf., Investment Managment, Master Data Managment, Order To Cash, Plant Maintenance, Procure To Pay, Project System, Quality Managment.
ü Managing datasets for reporting (BBDD and Operations)
ü Microsoft Office SharePoint server portal implementation and upgrade.
ü Engage with internal staff and customers; develop site usage reports, etc.
ü Manage support tickets, and monitors service health.
ü Reporting and Documentation.
ü Manage risk tracking process.
ü Scalability, Interoperability and Portability Analysis.
ü KPI s aligned with IT, HR and Logical Security Department.
ü Service to manage identity (Authentication) & access (authorization): Account creation & authorization request, role modeling and the approval workflow.
ü Management of all Maintenance Activities.
ü End-user accounts creation & modifications (SICPA employees + externals).
ü SAP accesses for all countries and all systems (request new roles, changing roles).
ü Business Roles management (Create new Business Roles, changing existing Business Roles).
ü Maintenance and Information Systems Maintenance and Management improvements.
ü New applications to assign access if done based on groups.
ü New Sharepoint sites to assign access based on AD groups.
ü PM Management Control.
ü Shared folders management (share folders creation & modifications; access rights management).
ü Security groups management (groups creation and modifications; membership management).
ü Distribution Lists management (creation and modifications; membership management).
ü Creation of Business Roles based on given requirements for all SICPA entities (using Quest).
ü Monitor and migrate documents for File Servers.
ü Roles used for SharePoint Analysis.
ü Support and help processing daily requests.
ü Analysis existing Active Directory groups and integrate them with IAM - all AD groups: distribution list, file server.
ü Maintenance Cost Analysis.
ü Ensure full integration with IT and business systems starting with HR by including distribution lists, active directory groups, security.
ü Groups and file server access as well as SAP.
2009 - 2015
Information Security Supervisor Jr.
Montana Industries Corporation; Valencia, Venezuela – Houston, USA.
ü Programmer analyst ABAP, Exits, Objects, Workbench, Smartforms, SapScripts, Gateway.
ü Information Security Process owner and Service Manager (Level 2 – Level 3).
ü 7.01 AS Abap Netweaver.
ü Developments classes depending on the object interfaces (SE24).
ü Creating new version Tx s (SE37).
ü Cleaning Work Management.
ü Service Desk Process owner about IT Security.
ü Editing any report, pool tables in objects, among other things (SE38).
ü SAP Migration, Netweaver to 7.4 and CRM 2005
ü Batch Inputs, Call Transactions Programs.
ü Tx s Analysis (Trace).
ü Display settings Master Data SAP users (USR01).
ü Mobile scenarios and the planning of maintenance projects for the plant.
ü Abap Designer.
ü Migration progress R/2 - R/3. Queries – Reports.
ü SAP DevOps Admin: Create, Generate and Transport (MM, SD, CO. HR, QM, PM, PP, FI, BW, BI, WM).
ü Checkpoint.
ü SAP Printer Management.
ü SharePoint.
ü Flora Archiv Admin.
ü Fundamentals of Windows Server 2008 Active Directory (Course 6424A).
ü Managing and Maintaining Windows Server 2008 Active Directory Servers (Course 6432A).
ü Installing and Configuring Windows 7 Client (MS6292A Course).
ü Windows Server 2008 Network Infrastructure Configuring and Troubleshooting.
ü Backup and Snapshots (In our IBM storage).
2006 – 2009
Technician
Arimen Tech C.A; Valencia, Venezuela.
ü IT Management Workshop.
ü Congress Linux Ubuntu.
ü Measurements systems.
ü Advance Excel, Power Pivot and Pivot Table.
ü Site surveys for wireless communications.
ü HP Recorder.
ü Data center management.
ü Applied information economics.
ü Meaningful Usage and IT Healthcare.
ü Analyze and Deliver presentations on general indicators of Miele.
ü Attention to dealers concerning the analysis processes opcodes.
ü Handling cases Statistics customers time authorized, quality control, costs up, flat pieces.
ü Calculating monthly Installed Capacity and Retention.
2002 – 2006
Systems Supervisor
Consolitex S.A; Valencia, Venezuela.
ü First Meeting of Students of Telecommunications.
ü Third Conference on Telecommunications Engineering.
ü Day Network Engineering and Telecommunications.
ü Microsoft Windows Operator.
ü Office Management.
ü Introduction to Operating Systems.
ü Software audit & quality.
ü B2B.
ü B2P.
ü P2P.
ü Personal Growth Course.
ü Speed Reading Course.
ü Project Management.
Education
2002 – 2009 Universidad Tecnologica del Centro (Unitec)
Networking and Communications Engineer.
Certifications
ü ADM940 - ABAP Authorization Concept, Authorizations and Transaction Management.
ü ADM950 – Secure SAP System Management, Auditing in SAP.
ü ABAP IV in SAP R/3 from 6.20, 7.0 and SAP CRM.
ü CCNA – Cisco Certified Network Associate Routing.
ü ISO 27001: 2005, Lead Auditor in Information Security: ISO 27001: 2005.
ü ITIL V3 - Foundations.
ü SSCP (Systems Security Certified Practitioner)
ü Information Security Pro.
ü Six Sigma Green Belt.
ü CCNP - Cisco Certified Network Professional.
ü SAP Governance, Risk and Compliance Concepts GRC100.
ü SAP Governance Risk and Compliance - Access Control GRC300.
ü SAP BusinessObjects Risk Management GRC340.
ü CRISC - Certified in Risk and Information Systems Control.
SAPEP Foundations – SAP NetWeaver Portal.
Projects
ü Planted FI- GL, FI -AP, FI- AA (Design, Arquitect, Develop and Admin).
ü Customizing in TRM: Administration, Credit Analyst, Department Loans.
ü Development of internal transactions (ZFF63 - Create alert treasury and ZFF7B - Anticipating Treasury) to request Finance Management.
ü Methods and Configuration in ESS/MSS with end users, trainning and documentation.
ü Create and configuration of the organizational structure and construction of all valid relationships using (PPOCE – PPOME).
ü Design and Admin CATTS Users and Super Users.
ü Process migration R/2 - R/3. Queries – Reports.
ü Create Roles based on specific requiements of all users depending on the country SICPA (With Quest).
ü Migrate BBDD SAP BI to SharePoint Sites.
ü Create data change alert before the entry of goods from SAP EWM to ERP.
ü Design of new stores of raw materials and waste new company. (Physical and virtual). Locations and space management, inventory control, automatic replenishment, managing customer orders and manufacturing orders. Collect controls checks.
Skills
ü Bilingual (Spanish/English).
ü Knowledge of Sarbanes-Oxley 404 legislation (SOX 404).
ü Technical, Operational and Escalation Leader (All levels).
ü Strong analytical and technical skills
ü Knowledge to configure Router, Switches and Management of all kinds of networks.
ü Team management, planning, project strategy, control, coordination and segregation of duties.
ü Troubleshooting and conflict management.
ü Very High knowledge level about Logical Security (Certificated).
ü Familiar with programming languages (SQL, JAVA, ABAP, C ++).
ü Operating Systems Windows, MAC, Linux, UNIX, NT and MS-DOS.
ü Strong skills to identify software, infra, connectivity and integrations issues.
ü API Management.
ü Ability to prioritize the workload, constantly meet deadlines and take the appropriate level of independent action if necessary.
ü Usage of mobile technologies already tested (software and hardware).
ü Problem solving, Decision making, Critical thinking and Team work.
ü Attention to details, Analytical thinking, Time management, Work under pressure.
ü Integration of all SAP modules.
ü Security Management.
ü Windows, active directory and mail servers Administration.
Contact this candidate