Post Job Free
Sign in

Sap Security

Location:
HYDERABAD, AP, 500045, India
Salary:
5.5 lakh
Posted:
February 28, 2012

Contact this candidate

Resume:

SAP GRC SECURITY CONSULTANT

R.Ajay Kumar Email:***************@*****.***

Ph: +91-984*******

EXPERIENCE SUMMARY

• Having 3.4 years of experience as SAP GRC SECURITY CONSULTANT which contains SAP R3, GRC security and Virsa.

SAP SECURITY SKILLS

As an SAP Security Consultant:

• User Administration: User ID creation, modification, password resets, lock and unlock SU01.

• Provide solutions for user administration issues.

• Mass user creation SU10.

• Creation of roles as per the requirement of the functional people using PFCG and created

Derived and Composite Roles.

• Role maintenance and creating transport request for roles.

• Generated and maintained authorizations and authorization profiles based on existing roles.

• Involved in configuration of Central User Administration (CUA) and maintained users.

• Tracing missing authorizations objects using ST01 and SU53 and recommended appropriate roles for the end users.

• Extensively used SUIM.

• Generated security reports for users who never logged on.

• Restricted table access through Authorization groups.

• Worked with the tables USR*, AGR*, USH*.

• Extensively worked on audit logs using SM18, SM19, and SM20.

• Analyzing detailed report of Users, User Status, Roles, T-Codes and Objects.

• Run security reports for critical transactions and objects and for users who never logged on.

• Worked on the Authorization Objects/issues of end users for R/3 using S_TABU_DIS, S_DEVELOP, S_PROGRAM.

• Worked with BI objects S_RS_COMP, S_RS_COMP1 and S_RS_AUTH, S_RFC.

VIRSA & GRC

• Experience on Virsa Compliance Calibrator (CC)/ Risk Analysis and Remediation (RAR). Super User Privilege Management (SPM).

• Understanding of SOX, Audit and Segregation of Duties issues.

• Creating FFID’s and assigning to Fire Fighters, owners and controllers.

• Assigning the fire fighter ID to fire fighters when required.

• Extracting the fire fighter log for the fire fighter ID's.

• Producing SOD Analytical Reports against Users, User Groups, Roles and Profiles using RAR.

• Performing User & Role analysis to find the exiting SOD violation for users and roles.

• Performing remediation & mitigation against various risks for users & roles.

EDUCATIONAL SUMMARY

Bachelor of Technology (Information Science and Technology) from Nagarjuna University – 2008

SAP SKILLS

Packages : SAP 4.7 EE, ECC 6.0, NW 2004 SR2

Applications : SAP R/3 Security

Tools : SAP GRC Access Control (RAR, SPM)

Databases : Oracle 9i, 10g

Operating System : Windows (2000 & 2003 server)

• Knowledge on installation of 4.7 EE, ECC 6.0, Net weaver 7.0.

• Knowledge on System Landscapes.

• Daily Monitoring troubleshooting and support for ERP SAP R/3

• Client Administration: Creation / Deletion/ local / remote client copy.

• Monitoring the status of Background jobs, Work Process, health checks, analyze system logs.

• Configuring TMS, Applying Patches.

• Configuring RFC CONNECTION between the systems in LANDSCAPE

• User support, trouble shooting & provide solutions.

PROJECT EXPERIENCE:

Project #1:

Client : ACG Worldwide

Role : SAP GRC Security Consultant

Environment : GRC AC 5.3, N.W 7.0, Oracle 10.2.0.2

Duration : June 2010 – Till Date

Description:

ACG Worldwide has a presence in over 100 countries with its products and services, employing approximately 3,200 members that strive to provide world-class technology across multiple domains. We offer a complete range of solutions beginning with empty capsules; granulation and coating; capsule filling; tabletting; packaging films; blister packing and carton packing to the end-of-line solutions.

Roles & Responsabilites:

• Involved in Configuration of GRC components such as Risk Analysis and Remediation (RAR) and Super user Privilege Management (SPM)

• Created function ID’s and Risk ID’s, Generated rules, Analyzed SOD violations, Mitigation control maintenance, and Alert monitoring for Risk Analysis and Remediation (RAR)

• Configuration of super user provisioning on user based FFID’s

• Used Virsa Fire Fighter to give emergency access to Fuctional Technical & audit team members.

• Created and assigned FFID’s to Owner’s, Controller’s to FFID’s and maintained configuration table.

• Configured RFC’s and JCO RFC connections.

• Assigned super user roles to users for emergency access.

• Set up background jobs for USER/ROLE/PROFILE synchronization of high and medium alert.

• Used RAR to create, manage, maintain execute RISKS and generate RULES

• Monitor SOD conflicts at User and Role Level.

• Scheduled periodic GRC jobs for SOD violations and Fire Fighter Logs

• Created, configured and maintained Firefighter ID, roles, log reviews

• Extensively worked on PFCG to create Menu-based roles and maintained single, derived and composite roles.

• Maintained Field values, check indicators for transaction codes

• User Administration (SU01) – Creation/Maintenance/Deletion/Termination as per the business requirements.

• Worked with the authorization objects like S_TABU_DIS, S_TABU_CLI, S_RS_COMP,

S_RS_AUTH, S_DEVELOP, S_PROGRAM.

• maintained users in Central System by using Central User Administration (CUA)

• Analyzed critical security authorization errors and troubleshooting using t-codes ST01, SU53 and SUIM.

Project #2

Client : Schneider Electric

Role : SAP Security Consultant

Environment : ECC 6.0, Oracle 10g

Duration : Sep 2008 – May 2010

Description:

Schneider Electric is a Global, innovate and responsible company provides technology and integrated solutions to optimize energy usage in markets like energy & infrastructure, industry, data centers, buildings and residential. With a unique portfolio in electrical distribution, industrial automation, critical power & cooling, building management and security. Schneider Electric is the only global specialist in energy management and a world leader in energy efficiency.

Role & Responsibilities:

• Interact with SAP Basis Administrators, regarding authorizations and roles

• Updating profiles in the user master records, profile comparisons using mass compare (PFUD), report PFCG_TIME_DEPENDENCY to schedule time dependency.

• Worked on Important authorization objects like S_DEVELOP, S_PROGRAM,S_TABU_DIS

• Proficient in user Administration (SU01) – user profile creation / maintenance , maintaining users in Central System by using Central User Administration (CUA)

• Role administration (PFCG) - Role creation/maintenance, role assignment, running user comparisons, assigning authorization objects to roles, use of SAP default templates for users.

• Extensively worked on profile generator to create Menu-based roles and maintained single, derived and composite roles.

• Mass User creation and role assignment.

• Analyzed missing authorization errors and troubleshooting using t-codes ST01, SU53.

• Experienced on tables like USR*, AGR*, USH* and Reports like RSUSR*.

• Monitored security related Reports, Transaction codes and Users.

• Performed transports and mass transports of roles.

• Resolved Helpdesk tickets/issues using Ticketing Software tool, Performed Quarterly, half-yearly and Annually Health checks.



Contact this candidate