SAP Security Sample Resume 3
SAP Security Sample Resume 3
SAP Security Sample Resume 3
NAME
Contact No: +91 xxxxxxxxxx; Email: *********@gmail.com
SAP-Security Consultant
PROFESSIONAL SUMMARY
Total 6yeras.6 years of experience as a SAP Basis-Security Consultant.
More than 4 years of experience in Requirement gathering, Design, Development, and Maintenance of SAP
applications security
Experienced in working for Full Life Cycle Implementation (Re-Design) along with Global Roll- Outs, Post Go-
Live, and Production Support projects from Singapore.
Conducting periodic reviews, identifying & mitigating risks, measuring metrics, tracking project progress and
submitting status reports.
Knowledge of User Administration, Role Administration
Manage user administration utilizing SU01 and SU10, efficient usage of SE16, SUIM to retrieve data, and SU24
to enable / disable security checks. Determination of necessary authorizations to match business requirement
Analyzing SU53 reports. Switching on audit and going through the audit reports
Supported GRC AC 10.0 involving ARA, BRM, EAM and ARM modules
Activated BC sets for AC 10, creating and maintaining connectors
GRC Access Risk Analysis: configuration, setting up rule sets, creating and assigning mitigating controls to users
& roles using the multiple system option, assigning a single mitigating control to multiple risks, user mitigation
across systems and rule Ids, defining approval workflow for function maintenance
GRC Emergency Access Maintenance: configuration, assigning owners to FFIDs, assigning FFID to controllers
and fire-fighter users, creating reason codes
Skill set/Certifications
SAP: SAP 4.7, ECC 5.0, ECC 6.0, SAP GRC 5.3, SAP GRC AC 10
Front End: SAP Enterprise Portals 7.0 SP2/SP4,
Database: Oracle 8i, Oracle 11g, MS Suite
Operating System: Win 2000/2003/NT 4.0, UNIX Windows 2008,
Professional Experience
Project Details
Project Description:
Tetra Pak is the world's leading food processing and packaging solutions company.
After SAP Security Full Life Cycle (Re-design) implementation, provided Support for SAP Security and GRC for all
Global sites in ECC 6.0 and GRC 10.0.
I had worked as an Onsite (SINGAPORE) Team Lead and Co-coordinator at client location. I have
completed the Implementation Phases of all GBRs to all Tetra Pak entities using SAP/R3.Currently completed 5
rollouts for Different countries.(GME,SSEA,SSA,CSA,CEE,CGC,US,). As a Onsite co-coordinator, guiding the
offshore Team and conducting daily Status meeting with team on new requirement or changes.
ECC 6.0
.
Played an Onsite Coordinator Role in managing the Client, Team and all technical activities including Quality
checks for all activities.
User Administration - User creation and management of the access assignments.
Roles Administration - Creation and Maintenance of Roles along with modifying existing customized roles
(Single, Composite and Derived) and authorization objects which include complex design restrictions and
promote to Production Strategy according to the Business needs.
Updating transactions (managing authorization objects) to reduce the scope of authorization checks.
Troubleshooting and find out missing Authorizations, Tracing and referring service market place for Snotes.
Worked extensively on authorization objects, fields, organizational values and authorization profiles.
Performed transports and mass transports of roles.
Co-ordinate comprehensive testing of all roles and authorization object to ensure accuracy and Segregation
Of Duties (SOD).
Created profiles based on geographical and work-center organizational units.
Extensive interaction with Business Organization Managers to understand User and Role Mitigations and
Critical Transactions.
Designed various forms and templates for new user requests, roles, modifications, change management
process etc.
Worked extensively on Automatic Profile Generator (PFCG) for creating single, derived roles for modules
such as PP, MM, SD, and FI/CO.(Process OFSP,OFPM,OFCE)
Done role changes for R/3 where some customization needed as per the client requirement.
Performing Role synchronizations based on Activity and Object level.
Maintained the assignment of authorization object in SU24
2
CLASSIFIED PERSONNEL INFORMATION
Implemented SAP Security Full Life Cycle (Re-design) implementation in ECC 6.0.
Played an Onsite Coordinator Role in managing the Client, Team, Rollouts and all technical activities
including Quality checks for all activities.
Extensive experience in Requirement gathering, Design, Development, and Maintenance of SAP security.
Worked on Implementation with Bolt-On (Enabler) Roles concept in ECC 6.0.
Designed and built roles as per Matrix file for Full Life Cycle implementation.
Worked on many small projects related to creation & customizing in Transaction-Object level to provide the
solution for complex scenarios.
Setting up testing environment for Unit Testing, Integration Testing & User Acceptance Testing (UAT) and
managed security authorizations test defects using HP CIC. Also Coordinated with Functional Designers
(testers) to fix all test defects.
Preformed Cutover activities like mass replacement of all old roles with new roles and mass Role
assignment for all Users related to the Rollouts.
Preformed Pre Go Live checks along with Quality checks for each rollout.
Provided and Coordinated the Hypercare support (post Go-Live support) for every site related to respective
Global Rollouts.
Very good knowledge of producing and analyzing reports in SAP using SUIM, and security related tables
(AGR*, USR*, etc) and customized Query reports.
Troubleshoot user roles, tracing the users, security authorization objects and custom reporting authorization
objects to debug/troubleshoot an authorization error, resolving the issue by giving required authorizations (SUIM,
SU53 & ST01).
Administered Users, Authorization Data and Authorization Profiles.
Creation and Maintenance of custom transactions, objects, fields & activity groups.
Provided Knowledge Transfer & Trainings for all new joining team members.
3
CLASSIFIED PERSONNEL INFORMATION
Resolve users daily problems (lock, unlock, and reinitialize passwords, no access to a transaction).
User Administration which includes Users Creation, Assigning Profiles and Authorizations to users.
Good understanding of Derived and Master roles concepts.
Troubleshooting authorization issues for all the users in timely manner.
Weekly Activities (Separation of inactive users from SAP, HR New/Change hires activity)
Managing Queues of requests Applix, Assysts requests) and assigning to different team members based on their
seniority and complexity of the requests.
Extensive experience in SAP Security Administration & Authorization including Activity Groups, Profile
Generator (PFCG),
Performing Everyday PFUD background job to check if authorization profile is generated for all roles and
user comparison is done for all the roles etc in all the systems (R/3,BW,CRM,LSO,GEMS,APO)
Managing (Moving/rejecting) transports between all system landscapes, after reviewing the approval from
various Business Process leads.
Resolve users daily problems (lock, unlock, and reinitialize passwords, no access to a transaction).
User Administration which includes Users Creation, Assigning Profiles and Authorizations to users.
Working knowledge of Segregation of Duties analysis and auditing requirements.
Creation/Change of users account through SAP GRC (Virsa Access Enforcer tool)
Performing Weekly and Monthly production build activities (Moving transport requests to Production
systems on weekend and updating the build sheet in portal).
Performed User based and System Audit on(Weekly/Monthly) basis.
Weekly Activities (Separation of inactive users from SAP, HR New/Change hires activity)
Managing Queues of requests (GRC Access Enforcer, Request Center, Maximo requests) and assigning to
different team members based on their seniority and complexity of the requests.
Authorization Data and Authorization Profiles Trouble-shoot authorization problems using Repository
Information System
Providing On call support in weekends for high priority requests.
GRC Experience
4
CLASSIFIED PERSONNEL INFORMATION
controls to users & roles using the multiple system option, assigning a single mitigating control to
multiple risks, user mitigation across systems and rule Ids, defining approval workflow for function
maintenance
GRC Emergency Access Maintenance: configuration, assigning owners to FFIDs, assigning FFID
to controllers and fire-fighter users, creating reason codes
GRC Access Request Management: configuring MSMP workflows for different request types.
GRC Business Role Management: configuration, role settings, role methodology configuration, creating
BRF+ rule, assigning condition group type to BRF+ rule, defining role methodology processes, associate
role methodology process to condition group, creating role approval workflow, role mass maintenance and
mass risk analysis.
Academic Profile:
B E. (Electrical and Electronics Engineering), Coimbatore Institute of Technology, 2004
Personal Information:
Nationality: Indian
Date of Birth: dd mm yyyy
Marital Status: *********
Languages Known: English, Hindi
Place:
Date: (NAME)