SAP GRC SECURITY CONSULTANT
R.Ajay Kumar Email:***************@*****.***
Ph: +91-984*******
EXPERIENCE SUMMARY
• Having 3.4 years of experience as SAP GRC SECURITY CONSULTANT which contains SAP R3, GRC security and Virsa.
SAP SECURITY SKILLS
As an SAP Security Consultant:
• User Administration: User ID creation, modification, password resets, lock and unlock SU01.
• Provide solutions for user administration issues.
• Mass user creation SU10.
• Creation of roles as per the requirement of the functional people using PFCG and created
Derived and Composite Roles.
• Role maintenance and creating transport request for roles.
• Generated and maintained authorizations and authorization profiles based on existing roles.
• Involved in configuration of Central User Administration (CUA) and maintained users.
• Tracing missing authorizations objects using ST01 and SU53 and recommended appropriate roles for the end users.
• Extensively used SUIM.
• Generated security reports for users who never logged on.
• Restricted table access through Authorization groups.
• Worked with the tables USR*, AGR*, USH*.
• Extensively worked on audit logs using SM18, SM19, and SM20.
• Analyzing detailed report of Users, User Status, Roles, T-Codes and Objects.
• Run security reports for critical transactions and objects and for users who never logged on.
• Worked on the Authorization Objects/issues of end users for R/3 using S_TABU_DIS, S_DEVELOP, S_PROGRAM.
• Worked with BI objects S_RS_COMP, S_RS_COMP1 and S_RS_AUTH, S_RFC.
VIRSA & GRC
• Experience on Virsa Compliance Calibrator (CC)/ Risk Analysis and Remediation (RAR). Super User Privilege Management (SPM).
• Understanding of SOX, Audit and Segregation of Duties issues.
• Creating FFID’s and assigning to Fire Fighters, owners and controllers.
• Assigning the fire fighter ID to fire fighters when required.
• Extracting the fire fighter log for the fire fighter ID's.
• Producing SOD Analytical Reports against Users, User Groups, Roles and Profiles using RAR.
• Performing User & Role analysis to find the exiting SOD violation for users and roles.
• Performing remediation & mitigation against various risks for users & roles.
EDUCATIONAL SUMMARY
Bachelor of Technology (Information Science and Technology) from Nagarjuna University – 2008
SAP SKILLS
Packages : SAP 4.7 EE, ECC 6.0, NW 2004 SR2
Applications : SAP R/3 Security
Tools : SAP GRC Access Control (RAR, SPM)
Databases : Oracle 9i, 10g
Operating System : Windows (2000 & 2003 server)
• Knowledge on installation of 4.7 EE, ECC 6.0, Net weaver 7.0.
• Knowledge on System Landscapes.
• Daily Monitoring troubleshooting and support for ERP SAP R/3
• Client Administration: Creation / Deletion/ local / remote client copy.
• Monitoring the status of Background jobs, Work Process, health checks, analyze system logs.
• Configuring TMS, Applying Patches.
• Configuring RFC CONNECTION between the systems in LANDSCAPE
• User support, trouble shooting & provide solutions.
PROJECT EXPERIENCE:
Project #1:
Client : ACG Worldwide
Role : SAP GRC Security Consultant
Environment : GRC AC 5.3, N.W 7.0, Oracle 10.2.0.2
Duration : June 2010 – Till Date
Description:
ACG Worldwide has a presence in over 100 countries with its products and services, employing approximately 3,200 members that strive to provide world-class technology across multiple domains. We offer a complete range of solutions beginning with empty capsules; granulation and coating; capsule filling; tabletting; packaging films; blister packing and carton packing to the end-of-line solutions.
Roles & Responsabilites:
• Involved in Configuration of GRC components such as Risk Analysis and Remediation (RAR) and Super user Privilege Management (SPM)
• Created function ID’s and Risk ID’s, Generated rules, Analyzed SOD violations, Mitigation control maintenance, and Alert monitoring for Risk Analysis and Remediation (RAR)
• Configuration of super user provisioning on user based FFID’s
• Used Virsa Fire Fighter to give emergency access to Fuctional Technical & audit team members.
• Created and assigned FFID’s to Owner’s, Controller’s to FFID’s and maintained configuration table.
• Configured RFC’s and JCO RFC connections.
• Assigned super user roles to users for emergency access.
• Set up background jobs for USER/ROLE/PROFILE synchronization of high and medium alert.
• Used RAR to create, manage, maintain execute RISKS and generate RULES
• Monitor SOD conflicts at User and Role Level.
• Scheduled periodic GRC jobs for SOD violations and Fire Fighter Logs
• Created, configured and maintained Firefighter ID, roles, log reviews
• Extensively worked on PFCG to create Menu-based roles and maintained single, derived and composite roles.
• Maintained Field values, check indicators for transaction codes
• User Administration (SU01) – Creation/Maintenance/Deletion/Termination as per the business requirements.
• Worked with the authorization objects like S_TABU_DIS, S_TABU_CLI, S_RS_COMP,
S_RS_AUTH, S_DEVELOP, S_PROGRAM.
• maintained users in Central System by using Central User Administration (CUA)
• Analyzed critical security authorization errors and troubleshooting using t-codes ST01, SU53 and SUIM.
Project #2
Client : Schneider Electric
Role : SAP Security Consultant
Environment : ECC 6.0, Oracle 10g
Duration : Sep 2008 – May 2010
Description:
Schneider Electric is a Global, innovate and responsible company provides technology and integrated solutions to optimize energy usage in markets like energy & infrastructure, industry, data centers, buildings and residential. With a unique portfolio in electrical distribution, industrial automation, critical power & cooling, building management and security. Schneider Electric is the only global specialist in energy management and a world leader in energy efficiency.
Role & Responsibilities:
• Interact with SAP Basis Administrators, regarding authorizations and roles
• Updating profiles in the user master records, profile comparisons using mass compare (PFUD), report PFCG_TIME_DEPENDENCY to schedule time dependency.
• Worked on Important authorization objects like S_DEVELOP, S_PROGRAM,S_TABU_DIS
• Proficient in user Administration (SU01) – user profile creation / maintenance , maintaining users in Central System by using Central User Administration (CUA)
• Role administration (PFCG) - Role creation/maintenance, role assignment, running user comparisons, assigning authorization objects to roles, use of SAP default templates for users.
• Extensively worked on profile generator to create Menu-based roles and maintained single, derived and composite roles.
• Mass User creation and role assignment.
• Analyzed missing authorization errors and troubleshooting using t-codes ST01, SU53.
• Experienced on tables like USR*, AGR*, USH* and Reports like RSUSR*.
• Monitored security related Reports, Transaction codes and Users.
• Performed transports and mass transports of roles.
• Resolved Helpdesk tickets/issues using Ticketing Software tool, Performed Quarterly, half-yearly and Annually Health checks.