SAP Security Sample Resume 3

Download as doc, pdf, or txt
Download as doc, pdf, or txt
You are on page 1of 5

CLASSIFIED PERSONNEL INFORMATION

NAME
Contact No: +91 xxxxxxxxxx; Email: *********@gmail.com
SAP-Security Consultant
PROFESSIONAL SUMMARY
Total 6yeras.6 years of experience as a SAP Basis-Security Consultant.
More than 4 years of experience in Requirement gathering, Design, Development, and Maintenance of SAP
applications security
Experienced in working for Full Life Cycle Implementation (Re-Design) along with Global Roll- Outs, Post Go-
Live, and Production Support projects from Singapore.
Conducting periodic reviews, identifying & mitigating risks, measuring metrics, tracking project progress and
submitting status reports.
Knowledge of User Administration, Role Administration
Manage user administration utilizing SU01 and SU10, efficient usage of SE16, SUIM to retrieve data, and SU24
to enable / disable security checks. Determination of necessary authorizations to match business requirement
Analyzing SU53 reports. Switching on audit and going through the audit reports

Have knowledge on GRC AC10.0(Internal Training System)

Supported GRC AC 10.0 involving ARA, BRM, EAM and ARM modules
Activated BC sets for AC 10, creating and maintaining connectors
GRC Access Risk Analysis: configuration, setting up rule sets, creating and assigning mitigating controls to users
& roles using the multiple system option, assigning a single mitigating control to multiple risks, user mitigation
across systems and rule Ids, defining approval workflow for function maintenance
GRC Emergency Access Maintenance: configuration, assigning owners to FFIDs, assigning FFID to controllers
and fire-fighter users, creating reason codes

Skill set/Certifications
SAP: SAP 4.7, ECC 5.0, ECC 6.0, SAP GRC 5.3, SAP GRC AC 10
Front End: SAP Enterprise Portals 7.0 SP2/SP4,
Database: Oracle 8i, Oracle 11g, MS Suite
Operating System: Win 2000/2003/NT 4.0, UNIX Windows 2008,

Professional Experience

Presently Working with [COMPANY NAME],India as SAP SECURITY Consultant


from Feb 2011 to Till Date
Worked with [COMPANY NAME], Mumbai, India as SAP-Basis-Security
Consultant from June 2008 to Jan 2011.
CLASSIFIED PERSONNEL INFORMATION

Worked with [COMPANY NAME],Gurgoan,India as Technical support Executive


for AT&T from September 2006 to May 2008
Worked for [COMPANY NAME], India junior executive Engineer from August 2004
to April 2005.

Project Details

Client : [COMPANY NAME] (July 2012 November 2014)

Skill Set : SAP Security and GRC 10.0


Project Name (Client): AB Tetra Pak (Sweden & Singapore)
Project Name : SAP Security Support
Designation : Assistant Consultant
Project Role : SAP Security and GRC Consultant
Work Location : Singapore and Kolkata

Project Description:

Tetra Pak is the world's leading food processing and packaging solutions company.

After SAP Security Full Life Cycle (Re-design) implementation, provided Support for SAP Security and GRC for all
Global sites in ECC 6.0 and GRC 10.0.

Environment: ECC 6.0 and GRC 10.0.

Roles and Responsibilities:

I had worked as an Onsite (SINGAPORE) Team Lead and Co-coordinator at client location. I have
completed the Implementation Phases of all GBRs to all Tetra Pak entities using SAP/R3.Currently completed 5
rollouts for Different countries.(GME,SSEA,SSA,CSA,CEE,CGC,US,). As a Onsite co-coordinator, guiding the
offshore Team and conducting daily Status meeting with team on new requirement or changes.

ECC 6.0
.
Played an Onsite Coordinator Role in managing the Client, Team and all technical activities including Quality
checks for all activities.
User Administration - User creation and management of the access assignments.
Roles Administration - Creation and Maintenance of Roles along with modifying existing customized roles
(Single, Composite and Derived) and authorization objects which include complex design restrictions and
promote to Production Strategy according to the Business needs.
Updating transactions (managing authorization objects) to reduce the scope of authorization checks.
Troubleshooting and find out missing Authorizations, Tracing and referring service market place for Snotes.
Worked extensively on authorization objects, fields, organizational values and authorization profiles.
Performed transports and mass transports of roles.
Co-ordinate comprehensive testing of all roles and authorization object to ensure accuracy and Segregation
Of Duties (SOD).
Created profiles based on geographical and work-center organizational units.
Extensive interaction with Business Organization Managers to understand User and Role Mitigations and
Critical Transactions.
Designed various forms and templates for new user requests, roles, modifications, change management
process etc.
Worked extensively on Automatic Profile Generator (PFCG) for creating single, derived roles for modules
such as PP, MM, SD, and FI/CO.(Process OFSP,OFPM,OFCE)
Done role changes for R/3 where some customization needed as per the client requirement.
Performing Role synchronizations based on Activity and Object level.
Maintained the assignment of authorization object in SU24

2
CLASSIFIED PERSONNEL INFORMATION

Created the Customized transaction in SE93


Analyze and troubleshoot security issues using SU53 , ST01 and SUIM
Worked with security related tables such as AGR_TCODES, AGR_USERS and AGR_DEFINE etc.
Worked in GAPs and Prepared DDID for new requirement
Created HP QC scripts for Mass activities
Solved authorization error, worked in a new requirement which occurs during UAT and Hypercare
Sending the Users logon report to Client during UAT and Hypercare period
Prepared project related documents such as Induction documents and procedure documents
Sending the status report to Client
Good Team handling skills and work closely with the team members.

Implemented SAP Security Full Life Cycle (Re-design) implementation in ECC 6.0.
Played an Onsite Coordinator Role in managing the Client, Team, Rollouts and all technical activities
including Quality checks for all activities.
Extensive experience in Requirement gathering, Design, Development, and Maintenance of SAP security.
Worked on Implementation with Bolt-On (Enabler) Roles concept in ECC 6.0.
Designed and built roles as per Matrix file for Full Life Cycle implementation.
Worked on many small projects related to creation & customizing in Transaction-Object level to provide the
solution for complex scenarios.
Setting up testing environment for Unit Testing, Integration Testing & User Acceptance Testing (UAT) and
managed security authorizations test defects using HP CIC. Also Coordinated with Functional Designers
(testers) to fix all test defects.
Preformed Cutover activities like mass replacement of all old roles with new roles and mass Role
assignment for all Users related to the Rollouts.
Preformed Pre Go Live checks along with Quality checks for each rollout.
Provided and Coordinated the Hypercare support (post Go-Live support) for every site related to respective
Global Rollouts.
Very good knowledge of producing and analyzing reports in SAP using SUIM, and security related tables
(AGR*, USR*, etc) and customized Query reports.
Troubleshoot user roles, tracing the users, security authorization objects and custom reporting authorization
objects to debug/troubleshoot an authorization error, resolving the issue by giving required authorizations (SUIM,
SU53 & ST01).
Administered Users, Authorization Data and Authorization Profiles.
Creation and Maintenance of custom transactions, objects, fields & activity groups.
Provided Knowledge Transfer & Trainings for all new joining team members.

Client: Kingfisher Project (May 2011 June 2012)



Roles and Responsibilities:

Designing and Modifications of Single and Positional roles based on the requirement.
Performing Role synchronizations based on Activity and Object level.
Daily activities monitoring by using tool called Dawn Patrol.
Daily Activities Monitoring in Update Records, User Maintenance, Lock Entries, OS Monitor, Transport Logs,
and Performance Monitoring
Applying OSS notes when recommended.
Checking SOD conflicts using Compliance Calibrator and taking the corrective actions.
Setting up the connections when required to create source systems.
Checking the SAP system connections and performing the buffer refresh when there is any connectivity
issue.
Good Team handling skills and work closely with the team members.
Provide knowledge transition to junior team members.
Extensively used Automatic Profile Generator (PFCG) to create and maintain Parent and Child/Derived roles
and to Upload and Download of roles.
Transporting the change requests from the Development environment to Testing/QA environments.
Extensively used tables like AGR_USERS, AGR_TCODES, AGR_1251, AGR_DEFINE etc.
Extensively Used SUIM (User Information System) to pull various reports for audit monitoring
Trouble shoot authorization errors using SU53 and by system trace ST01

3
CLASSIFIED PERSONNEL INFORMATION

ONISTE FRANCE CE KITS

Resolve users daily problems (lock, unlock, and reinitialize passwords, no access to a transaction).
User Administration which includes Users Creation, Assigning Profiles and Authorizations to users.
Good understanding of Derived and Master roles concepts.
Troubleshooting authorization issues for all the users in timely manner.
Weekly Activities (Separation of inactive users from SAP, HR New/Change hires activity)
Managing Queues of requests Applix, Assysts requests) and assigning to different team members based on their
seniority and complexity of the requests.

PATNI COMPUTER SYSTEM,

Client: ROHM and HAAS, Philadelphia (USA)


Role: SAP Production Support (August 2009 Jan 2011)
Roles and Responsibilities:

Extensive experience in SAP Security Administration & Authorization including Activity Groups, Profile
Generator (PFCG),
Performing Everyday PFUD background job to check if authorization profile is generated for all roles and
user comparison is done for all the roles etc in all the systems (R/3,BW,CRM,LSO,GEMS,APO)
Managing (Moving/rejecting) transports between all system landscapes, after reviewing the approval from
various Business Process leads.
Resolve users daily problems (lock, unlock, and reinitialize passwords, no access to a transaction).
User Administration which includes Users Creation, Assigning Profiles and Authorizations to users.
Working knowledge of Segregation of Duties analysis and auditing requirements.
Creation/Change of users account through SAP GRC (Virsa Access Enforcer tool)
Performing Weekly and Monthly production build activities (Moving transport requests to Production
systems on weekend and updating the build sheet in portal).
Performed User based and System Audit on(Weekly/Monthly) basis.
Weekly Activities (Separation of inactive users from SAP, HR New/Change hires activity)
Managing Queues of requests (GRC Access Enforcer, Request Center, Maximo requests) and assigning to
different team members based on their seniority and complexity of the requests.
Authorization Data and Authorization Profiles Trouble-shoot authorization problems using Repository
Information System
Providing On call support in weekends for high priority requests.

GRC Experience

GRC 5.3 Support performed administrative activities.


GRC request creation, approvals, rejection and closed.
Approving and rejecting GRC requests as per the business process.
Performing Risk Analysis and requests sent for approval for SOD conflicts.
Re-routing and forwarding requests.
Requests are put on hold incase if required information is not provided.
Created profiles based on geographical and work-center organizational units.
Supported GRC AC 10.0 involving ARA, BRM, EAM and ARM modules
Activated BC sets for AC 10, creating and maintaining connectors
GRC Access Risk Analysis: configuration, setting up rule sets, creating and assigning mitigating

4
CLASSIFIED PERSONNEL INFORMATION

controls to users & roles using the multiple system option, assigning a single mitigating control to
multiple risks, user mitigation across systems and rule Ids, defining approval workflow for function
maintenance
GRC Emergency Access Maintenance: configuration, assigning owners to FFIDs, assigning FFID
to controllers and fire-fighter users, creating reason codes
GRC Access Request Management: configuring MSMP workflows for different request types.
GRC Business Role Management: configuration, role settings, role methodology configuration, creating
BRF+ rule, assigning condition group type to BRF+ rule, defining role methodology processes, associate
role methodology process to condition group, creating role approval workflow, role mass maintenance and
mass risk analysis.

[COMPANY NAME] (June 2008 August 2009)


Roles and Responsibilities:

Daily activities monitoring by using tool called Dawn Patrol.


Daily Activities Monitoring in Update Records, User Maintenance, Lock Entries, OS Monitor, Transport Logs,
and Performance Monitoring
Client Copy
Transports across the systems.
SAP Security production support for all 6 clients
Create, Change or modify users accounts and established security policies and procedures.
Information gathering for Quarterly Audit for critical roles and transactions.
Information gathering for implementation of support roles
Worked on Enhancements and Defects.
Effectively analyzed trace files and tracked missed authorizations for users access problems and inserted
missing authorizations manually
Used STMS, SE01 to transport the Objects/Roles from Development to QA and then to Production.
Documented the procedure for all SAP tasks process and controls.
Monitor the Service Desk inbox on regular basis to track the transport requests.

Academic Profile:
B E. (Electrical and Electronics Engineering), Coimbatore Institute of Technology, 2004

Personal Information:

Nationality: Indian
Date of Birth: dd mm yyyy
Marital Status: *********
Languages Known: English, Hindi

Place:
Date: (NAME)

You might also like