Ahmed S. Quadri, MBA
adz4oa@r.postjobfree.com 214-***-****
linkedin.com/in/ahmed-quadri
US Citizen with Security Clearance
Executive Summary
IT Consultant with over 12 years of experience focusing on SAP Architecture, infrastructure, cloud security, GRC & HANA. Worked on multiple SAP Security Lifecycles (analysis & conception, implementation, quality assurance, test and cutover). Handled security for the following Modules – ECC (All Modules), BI/BW/BOBJ 4.0/7.X (analysis authorization), HR (structural authorization), Solman, HANA, HANA S/4, FIORI/Mobile Apps, Enterprise Portal, CRM 6.0/7.0, Cloud Apps like SAC, SRM, PLM, CLM, SCM (APO), BPC, PI & GTS. Worked on Centralized User Provisioning by integrating IDM solution with AD, GRC, and other third – party solutions. Experienced in Assisting Internal/External Audit in various processes, reports, controls & risks. Worked in planning, configuring and implementing GRC AC 10.X,12.0 5.X/VIRSA Suite & PC 3.0/10.0.Knowledge in Integrating GRC Access Control with Enterprise-wide applications using Greenlight or Cloud IAG. Configured & implementing HANA Security using HANA Studio, build and maintained FIORI apps on HANA S/4 1709/1809. Implemented both Greenfield and Brownfield implementation of S/4 HANA 1709/1809 using ACTIVATE methodology and Software Update Manager tools of S/4 HANA. Upgrade & Support of several ERP implementations involving multiple modules, from system design stage to a “Go Live” stage. Managed and worked part of a team making it a successful impact to performance of the entire team. Ability to adapt quickly and work in teams, a can-do ability to take charge when necessary and drive the work to completion. Excellent communication skills, strong analytical and reporting skills, personal organization and interpersonal skills
Professional Experience
United States Army August 2020 - Present
SAP Security/GRC Lead
Hands on experience in GRC 12 AC Upgrade, Maintenance and Daily Support.
Security setup of new S/4 HANA implementations
Security setup of Nakisa 4.2
Role cleanup of FIN roles with Master/Derived Composite roles
Role development and production/project support
Well versed in supporting ARA, ARM, EAM & BRM modules of Access Control in GRC 12
Hands on experience in managing and handling security across ECC, CRM, BPC, GRC, BI/BW, HANA, Solman, SAC cloud app, SAVIYNT IDM applications and FIORI Apps
Worked with Directors and SME’s in identifying the road map for Reporting, forecasting, Analytics using BPC, HANA, Tableau and SAC Apps
Driven Data Access profiles for BPC 10.1 embedded model for more streamline, tangible way of securing reports and viewing live data without delays
Designed and developed security roles for a brown field implementation of S/4 HANA roll out
Configured new persona-based Fiori launch pad and transitioned end users from traditional NetWeaver business client to Fiori Launch pad.
Day-2-day support on design, build, test, support of S/4 back end & Front-end roles.
Worked with business to understand, design FIORI/ Mobile apps with a combination of catalogs and groups defining a highly simplified FIORI Launchpad to end users.
Lead Audit to make sure GFEBS SAP Systems are well complied and stream-lined without any Audit Deficiencies
Documented SOP’s on all processes involved in SAP security GRC and IAG integration space.
Interior Logic Group April 2019 – August 2020
SAP Security & GRC
Daily tasks include working tickets, incident prevention, user provisions/terminations
Process user provisioning via GRC 10.0, Create Request, Model User
Worked on modules HR, SD, FI, MM, PP, PM
BI 7 and BOBJ security
SAP HANA Security
SU01 user provisioning/terminations
Created and adjusted roles extensively with PFCG
Used Download/upload to move roles
Create security transports
Extensive use of SAP tables: AGR_1251, AGR_DEFINE, USER_ADDR
Worked with client to properly distribute/restrict user access
Experience with using UME for creation/adjustment of Portal users
Security with BI, R3, ECC, CRM, SOLMAN, Portal, CUA, BOBJ, Active Directory, HR
Setup users for CRM - Customer Complaint system
BI – use of RSECADMIN for user trace, auth. changes
Role Redesign Project for QA/Dev systems
Use of SQVI to gather reports for role redesign
S-user provisioning through SAP support Portal
OSS note user provisioning
Developer key/object registration and provisioning
Role testing and verification
ESS/MSS User/Role provisioning
PA20/PA30 HR 105 data
Duracell – Chicago, IL October 2017 – April 2019
SAP Security Consultant
Driven business discussions to understand and gather the Client’s needs on their current GRC 10.1 Suite implementation
Created project plan for GRC AC 10.1 implementation, set up controls at various stages of the Project to monitor and guide the implementation process.
Configured custom rule sets as per company needs.
Migrated firefighter data from legacy systems to GRC SPM component and involved in complete configuration
Worked on the MSMP Workflow Configuration, BRF+ and HR Triggers for custom Workflow development in Access Control
Configured SSO 3.0 for SAP, other systems using SNC and Logon ticket methodology.
Liaison between security team and business to transform business needs to security technical Requirements.
Extensively Involved in ECC, CRM, SCM, Solman, SAC, BI & BOBJ Security clean-up and redesign projects
Integrated IDM with GRC 10.1 for running risk analysis for New/change user requests
Involved in S/4 Security Training for in-depth knowledge, provided a roadmap to transition current SAP landscape to S/4 systems.
Delivered detailed documentation on GRC configuration, training material for end users and operating procedures manuals for security related work.
Reyes Coca Cola Bottling – Chicago, IL June 2017 – October 2017
SAP Security Consultant
Enterprise wide role segregation for syrup-prep sale
Security setup of new S/4 HANA implementation
Weekly Security status update meeting with business
Role cleanup of FIN roles with Master/Derived composite roles
Role development and production/project support
GRC Access Request and Role import
HANA role creation
HANA user access troubleshooting with trace
SAP HANA Cockpit
Dart – Mason, MI April 2016 – June 2017
SAP Security Consultant
Security Administration of ECC, BW/BI, CRM, Portal, BOBJ, XMII
Installation and setup of SAP QA test lab environment for research
GRC 10.0 Training
SAP Security advanced training
SAP Basis/NetWeaver Training
Helped with Audit SOX/SOD (segregation of duties)
Role architecture (Composite/derived roles)
Use of transactions SU01, PFCG, PFUD, SUPC, SUIM
Authorization object creation with SU24
Custom t-code creation with SE93
Daily use of GRC 10 – Model User, Access Request Creation
Extensive experience with modules HR, SD, FI, MM, PP, PM
BI and BOBJ security
Mass User Creation/Lock/Unlock SU10
Created Users with SU01
Created and adjusted roles with PFCG/SU53/ST01
Load balancing by user group assignments for application server logins
Used Download/upload/transports to move roles
Create security transports
Created authorization objects with SU21
Mass generation of profiles with SUPC
User Master Data Reconciliation with PFUD
Used SAP tables: USR02, AGR_DEFINE, USER_ADDR
Created users in the Portal via the UME
Worked with client to properly distribute/restrict user access
Created access for SAP support via service market place
Experience with using UME for creation/adjustment of Portal users
Security with BI, R3, ECC, CRM, SOLMAN, Portal, CUA, BOBJ, Active Directory, HR
Experience with Audit requirements/process
Knowledge of Segregation of Duties (SOD) / Sarbanes-Oxley
Worked on BPC prototype solution for assigning teams and data access profiles through back end roles.
Extended Custom SOD tool across PPM & SRM modules as well.
Configured SAML Assertion to enable SSO for the External vendors through sourcing
Defines project timelines, resource allocation from security and basis standpoint.
Provided documentation to business users for training and testing purposes.
Sysco – Houston, TX November 2014 - April 2016
SAP Security Consultant
Developed security blueprint, involved in the role development strategy for ECC, CRM, BI/BW 7.X, BOBJ, BPC, SRM, CLM and Enterprise Portal 7.0
Conducted evaluation & redesign of existing user provisioning and user access approval process
Lead External Audits for multiple client sites by reviewing as per SOX compliance act and other Sysco controls related to ISO, FDA and ITGC
Worked on re-structuring Sysco’s IT risk and control policies to align with audit controls
Visited multiple client sites to audit and gather evidence on multiple controls based on the tools they have been using, Physical evaluation of data center sites and other security controls.
Worked on audit, documenting the ITGC controls and Entire IT Audit Controls as per Sysco policy
Involved in signing off the external audit controls with required evidence for multiple clients.
Delivered extensive documentation, training material, operating procedures manuals
Mizkan America – Chicago, IL September 2014 - November 2014
SAP Security Consultant/GRC
Involved in development of security across multiple modules ECC, CRM, BI/BW, BPC, NFE & Enterprise Portal.
configured emergency access management, automated user provisioning, access risk analysis modules in GRC 10 access control
Worked on CUA model for a centralized user maintenance across multiple systems
Worked on MSMP workflow configuration, BRF+ and function modules for custom workflow development in access control
Created a custom rule set in RAR with org rules activated which can be tailored to multiple org units
Integrated GRC 10.0 with BPC through a separate path with automatic backend assignment, a manual stage for front-end data access profile and team assignments.
Upgraded NWBC 3.0 to 4.0 and was in the frontline in resolving the NWBC compatibility issues with the back end
Involved in initial stages of implementing HANA during the customer ramp up
Worked on HANA Studio creating user & role authorization
Worked with SAP closely in defining the analytic & system privilege’s in HANA Studio
United States Army – Virginia, Arizona, Massachusetts November 2011 - September 2014
SAP Security Consultant
Developed security blueprint and involved in the role development strategy for a worldwide release of ECC 6.0.
Developed security models for ECC, HR, SCM, GTS, SRM, BI/BW, CRM 5.0 modules
Created of CUA and controlling user access through the golden client
Provided reports to the internal, external auditors and created custom audit roles based on audit needs.
Involved in installation and configuration of VIRSA CC & FF.
Identified and created mitigation controls, risk I. D’s for SOD issues based on audit feedback.
Configured Owners, Controllers and security setup along with various configuration parameters in firefighter.
BW 3.5 (Legacy) & BI 7.0 support & administration.
Designed reports for SOX Audit liaisons for tracking SOD Cleanup progress, criticality etc.
Configured CUA to handle multiple systems and integrated with LDAP
Analyzed the SOD conflicts for the new and existing changes in roles
Formulated a security development plan defining the roles of the SAP Security team.
Worked on Assigning authorizations through the Org Structure for HR Model
Capital One – Plano, TX November 2006 - August 2011
Jr. Business Analyst
Capital One Financial Corporation is an American bank holding company specializing in credit cards, auto loans, banking, and savings accounts. It has developed a reputation for being a technology focused bank. Capital One has 755 branches and 2,000 ATMs. It employs 48,800 across the United States.
Acted as a main point of contact and served as a liaison between clients and IT personnel.
Coordinating efforts with different workgroup Business Analyst, Project Managers, Architecture, Business SME’s and other consultants with estimation and timelines.
Education
MBA University of Phoenix 2008 - 2010
Bachelor in Business University of Bangalore 1999 - 2002