Ramon Sanchez

  • Lead SAP Security
  • Gibbstown, NJ
  • Member Since May 12, 2023

Candidates About

 

Ramon Sanchez

SUMMARY:

·         SAP consultant with Security technical design, development, testing, implementation, support, and documentation expertise in an SAP environment including GRC 10.1, ECC6, HR/HCM, SRM, CRM, BPC,EAM, HANA,BOBJ, IDM 7.3,SCM,APO,ARIS and BW..

·         Communicate effectively with professionals in both group and one-to-one situations.

·         Analyze problems and requests and expertise in implementing software packages and hardware configuration. 

·         Exceptional trainer and motivator also communicate well with other; within and across teams.

·         Managing business workshops for requirement gathering and conversion of business requirements into technical design/matrix and documentation.

·         DOD Security Clearence

 

PROFESSIONAL EXPERIENCE:

 

08-2015 -05-2017           NAVY  NAVSUP                       Mechanicburg PA                                   Mail Sail Group

Lead SAP SECURITY

 

·         Maintained custom transaction codes to secure access for tables.

·         Tracked missing authorizations for user access problems and inserted missing authorizations.

·         Suggested authorization objects for newly created custom transaction codes based on functionality.

·         Created new derived roles based on company codes, plants and cost centers.

·         Analyzed business roles and mapped them to transaction codes according to business processes.

·         Worked with the Internal Audit teams closely for Continuous Improvement of Security, Authorization & Controls/Compliance areas to apply the best recommended practices involved assist the client in building processes & procedures for managing users & roles as per Sox compliance.

·         GRC 10.1, Access Controls, the different components utilized were SAP GRC Emergency Access Management - EAM (Fire Fighter), Access Risk Analysis   and Access Request Management ARM (Access Enforcer).

·         GRC 10..1 Access Risk Analysis: Maintained Rulesets - Global and Critical; Maintained and corrected existing custom functions and risks to provide correct rule results; maintained mitigating controls, risks and owners for the same.

·         Created firefighter users in GRC system and assigned proper authorizations.

·         Supported GRC 10.1 implementation.

·         Communications with business and scheduled meetings for training purposes and understand their issues and provided appropriate solutions

 

 

04-2015-06-2015            QVC                            West Chester  PA                                       Judge Inc

Lead SAP SECURITY

·         Worked with business analyst to clean up Roles from Segregation of Duties (SoD) conflicts using RAR. 

·         Performed User Level & Role Level Risk Analysis for SoD conflicts using offline and online analysis.

·         Created various background jobs to generate different reports in Risk Analysis and Remediation.

·         Experienced with SPM administration, which includes assign FF IDs to ID Owners & Controllers, maintain configuration table, Reason Codes and critical transaction codes.

·         Troubleshoot authorization related problems, analyzed system traces and user buffers.

·         Work with GRC10, ECC6, SRM, CRM, BPC,HANA, BOBJ, IDM 7.3 and BW

·         Managing business workshops for requirement gathering and conversion of business requirements into technical design/matrix and documentation.

·         Coordinated with other teams to ensure that security settings meet the business requirements and align with the defined controls and standards.

 

2-2014-12-2014              Baker Hughes            Houston TX                                                 TCS

Lead SAP SECURITY

·         Configured security roles for several modules in SAP. Used Profile Generator to maintain roles, generate and assign authorization profiles.

·         Designed, developed and administered user roles, profiles and authorizations.

·         Re-designed security roles across different modules to meet clients changing landscape.

·         Monitored System audit activities and ran audit reports for the client’s internal audit team.

·         Created custom roles, t-codes, custom objects, custom object classes and implemented table and program security and global maintenance of authorization checks. SAP environment Production support ECC 6.0 -Structural  HR, EAM,BO,BW, BI.7, CRM,IDM,ARIS and SCM.

·         Troubleshoot and resolved user access problems as a part of the production support team. Interacted with external audit teams to solve inconsistencies and user violations in the system.

·         Technical design, development, testing, implementation, support, and documentation of Security roles and objects within an ECC 6.0 SAP environment Production support ECC 6.0 - Structural HR, BW, BI.7, CRM, IDM 7.1,EAM,ARISand BPC and Insurance module (DSP), SRM,  and SCM.

 

12-2012 –1 2-2013                 American Water       Cherry Hill N.J.                                           Auripro

SAP GRC/SAP SECURITY

·         Worked with functional and business teams to develop and maintain roles and profiles.

·         Worked on SAP check Indicators and default field values.

·         Maintained custom transaction codes to secure access for tables.

·         Tracked missing authorizations for user access problems and inserted missing authorizations.

·         Suggested authorization objects for newly created custom transaction codes based on functionality.

·         Created new derived roles based on company codes, plants and cost centers.

·         Analyzed business roles and mapped them to transaction codes according to business processes.

·         Worked with the Internal Audit teams closely for Continuous Improvement of Security, Authorization & Controls/Compliance areas to apply the best recommended practices involved in configuration of Central User Administration across the landscape and defined field attributes for user maintenance and transferred users from child to central systems.

·         Assist the client in building processes & procedures for managing users & roles as per Sox compliance.

·         Worked with business analyst to clean up Roles from Segregation of Duties (SoD) conflicts using RAR. 

·         Performed User Level & Role Level Risk Analysis for SoD conflicts using offline and online analysis.

·         Created various background jobs to generate different reports in Risk Analysis and

 

 

3-2012 – 10-2012 Johnson & Johnson    Piscataway N.J                                             Wipro Tech

SAP SECURITY Architect       

·         Configured security roles for several modules in SAP. Used Profile Generator to maintain roles, generate and assign authorization profiles.

·         Designed, developed and administered user roles, profiles and authorizations.

·         Re-designed security roles across different modules to meet clients changing landscape.

·         Monitored System audit activities and ran audit reports for the client’s internal audit team.

·         Created custom roles, t-codes, custom objects, custom object classes and implemented table and program security and global maintenance of authorization checks. SAP environment Production support ECC 6.0 -Structural  HR, BO,BW, BI.7, CRM,IDM and BPC

·         Troubleshoot and resolved user access problems as a part of the production support team. Interacted with external audit teams to solve inconsistencies and user violations in the system.

 

8-2011 – 03-2012  PSEG  Newark NJ                                                                                                      CCSI INC.

SAP  SECURITY

·         Managing business workshops for requirement gathering and conversion of business requirements into technical design/matrix and documentation.

·         Technical design, development, testing, implementation, support, and documentation of Security roles and objects within an ECC 6.0 SAP environment Production support ECC 6.0 - Structural HR, BW, BI.7, CRM, IDM 7.1and BPC and Insurance module (DSP), SRM, CCM and IDM7.3.

·         Analyzed systems for Sarbanes Oxley compliance, identified all potential Segregation of Duties issues and create a plan for compliance and execution of a project to mitigate all issues.

·         Created GRC reports and tables for SOX/SOD analysis and user provisioning.

·         Worked with Security Manager to bring awareness to their security team, how to simulate user provisioning in order to prevent reintroduction of SOD issues.

·         Conduct knowledge transfer and training for security team on the SOX SOD Remediation process.

·         Assist the Security Team in fixing upgrade issues in the various modules due to new authorizations causing failures during testing.

 

10-2009 -07-2011 Amtrak, Washington D.C.                                                             BAYFORCE INC

SAP  SECURITY

·         SAP ECC 6.0, P1 with NW 7.0, BI 7.0, GRC 5.3, Sun IDM CE, and PBF. Calibrator, Access Enforcer, Firefighter and Role Expert tools.

·         Created portal groups with combination of roles and assigned the groups to end users.

·         Created new roles for ECC 6 systems: FI, CO, HR, MM, PP, QM, modules, based on concepts of task roles and position roles Security support for integration testing, user acceptance testing, and training efforts Used Profile Generator to maintain roles, generate and assign authorization profiles.

·         Coordinated with other teams to ensure that security settings meet the business requirements and align with the defined controls and standards.

 

 

 

 

 

 

 

 

 

 

10-2007 - 2-2009 Lockheed Martin / Orlando Florida                                                INNOVATIVE SYSTEM

SAP SECURITY

·         Instrumental in analysis, design and implementation of SAP Security upgrade from 4.6C to ECC 6.0 Upgraded all the roles with new functionality.

·         Used GRC Compliance Calibrator tool to identify roles level, user’s level SOD conflicts, SAP assessment and remediation.

·         Primarily responsible for the pre and post system refresh steps for Security processes.

·         Worked closely with BASIS team on transports and refresh processes at all stages of the project

·         Assisted the testing group users in their security issues, at various stages of the upgrade project. Experienced with Sarbanes Oxley (SOX) and segregation of duties (Sod’s).

 

10-2006-5-2007 Sanofi Pharmaceuticals Swiftwater PA                                                                       1ST, Inc

SAP SECURITY

·         Redesigned and retrofitted the roles for FI/CO, MM, PP, SD and HR in compliance with segregation of duties principles.

·         Tested functional unites and integration testing.

·         Documented and integrated security solutions into application functional and technical roles.

 

4-2006-9-2006 Timet  Exton PA                                                                                                           Explorer Ltd

SAP SECURITY

·         Structural authorizations for Travel Module in HR

·         Troubleshoot and resolve existing roles.

·         Provide support and maintenance in user administration for the project and assist with day-to-day maintenance for the business users

·         Monitor requests for access to ensure solutions are performed in a timely manner.

·         Created Composite and single roles for the user groups.

·         Assisted teams with User Acceptance Testing.

 

3-2005 - 3-2006 Avaya Inc. Basking Ridge NJ                                                      ROTATOR Staffing Services Inc

SAP SECURITY

·         Analysis of Functional Specifications and creation of Roles Profiles

·         Modification of Existing Roles Profiles use CATT Scripts as available

·         Transport of Roles Profiles and Validation

·         Unit testing of work completed - Test Box work to include Test ID creation

·         Regenerating Profiles, assigning roles profiles as needed

·         Production Role Profile validations

·         Production Updates for Segregation of Duties. SAP Security functions version 3.1H and 4.6C including but not limited to Role Profile Creation with Profile Generator or without activity groups , Role Profile Modification, Working with composite roles and transports

·         Knowledge of use of CATT Scripts for security work and Virsa -Compliance Calibrator.

 

10-2001 - 03-2005 Rohm Hass Company Philadelphia PA                                                           WORLCO Staffing Services Inc

SAP SECURITY Support Analyst

·         Actively pursue & resolve SAP System User problems.

·         Analyze problems and requests. User administration (creating, changing and resetting user accounts, assigning profiles to users). 

·         User Administration to create and maintain all user Profile across the system landscape.

·         Procedures for user administration, profile creation, profile maintenance, security management for the SAP surrounding environment.

·         SAP Support of modules MM, SD, FI, CRM and HR, good Understanding of Roles, profiles and activity groups

·         SAP R/3 4.6c. Knowledgeable in standard SAP Security protocol.

 

4-2001 -  9-2001 Avaya Inc /                                                                                                                    IBM

SAP Support Somerset NJ

·         Tier II process support and trouble resolution.

·         Responsibilities include providing problem resolution and Functional explanation of business methods and procedures to users of support application

·         Working in Sales modules, Logistics, HR, as well Finance in SAP, also Siebel support.

 

 

 

 

 

 

 

 

 

 

02-1999  -  4-2001 CSC  Newark DE

SAP /ABAP/4 Programmer

·         Formulate and define application scope and objectives and devise/modify procedures to solve business problems

·         Develop and maintain application interfaces, reports, conversion programs, and custom functionality.

·          Prepare detailed specifications, from which programs will be written, and design, code, test, debug, and document programs.

·         Assist with developing business relationships and integrate activities with other IT departments to ensure successful implementation and support project efforts.

·         Set work standard to ensure business application systems are developed in a way that complies with architectural standards and established methodologies and practices.

·         Report to team leadership on the status of project efforts, anticipating/identifying issues that inhibit the attainment of project goals and implementing corrective actions

·         Foster and maintain good relationships with customers and IT colleagues to meet expected customer service levels.

·         Create BDC sessions for PP, BW, Fl, CO, SAP IDOC modules and MM, SAP4.0b and SAP 4.6b

 

EDUCATION: SAP Academy ABAP/4

BC305 Advanced R/3 System Administration

BC400 Abap Workbench Foundations

BC405 Techniques of List Creation

BC410 Developing User Dialogs

BC415 Communication Interface in ABAP

BC420 Data Transfer

BC505 Database Administration Oracle