SAP version: SAP ECC 6.0 (latest EHP7), ECC 5.0, 4.7, 4.6C, 4.6B

SAP modules: SAP R/3 4.6B, 4.6C, 4.7, ECC 5.0, ECC 6.0, MM, FI/CO, HR, SD, PP

HCM Security

SAP BI 7.0, BW/BI, BOBJ, HANA

CRM, SRM, Solution Manager

SAP Enterprise Portal

GRC 5.3 (RAR/SPM), GRC 10.0 (ARA/EAM/ARM/BRM) components, GRC Process control 2.5

IDM tools: HP Service Manager, Access Manager, Sail point, IBM Tivoli manager, Espresso

Office tools: MS (MS-Word, MS-Access, MS-Excel, PowerPoint)

Databases: SQL, MS Access 2000/97, MS SqlServer2000

Project Type

Consultant at APPLE Inc. (Nov 2014- August 2016)

Role

SAP Security and GRC Lead

Environment

SAP ECC (6.0), SAP EP (7.0), Solution Manager, HANA, BI 7.0, GRC 10.0/10.1

Responsibilities

·         Lead SAP Security implementation, SOD Compliance Projects and Security production Support team

·         Track Security issues, role modifications with focus on SOD risk compliance

·         Build a strategy, vision and roadmap for attaining effective and efficient identity and access management controls

·         Lead the day-to-day activities of ERP advisory engagements for a variety of clients including process design, package implementation lifecycle support, and project reviews

·         Conduct meetings and working session workshops to discuss and implement the approved design

·         Draft design documents to cover all functionality configured for ongoing support

·         Work with the technical development teams to create custom function modules to enhance standard functionality to fit the complex cross process-id usage requirement

·         Built complex usage of multiple custom document objects using standard same message class and building custom notification template id's

·         Draft project plan and process design documents to cover all functionality offered vs. what is actually needed

·         Work with the SOX team to discuss implementation strategies for custom transactions and programs and to enable/disable rule set objects as required and approved

·         Development of tailored security and controls techniques in conjunction with system upgrade (i.e. ERP)

·         Handle multiple projects at various countries and time zones simultaneously

Project Type

The Clorox Company (CPG company) Service delivery lead

Role

SAP Security Service and Compliance Management

Responsibilities

·         Manage day-to-day Security support and analyze/resolve complex issues on time. Lead the best shore Security support team (IT an SAP Security).

·         Work with the Business on a daily basis to analyze security concerns and areas of improvements/suggest new enhancements.

·         Recognize and evaluate potential dangers and risks within business process chains as it relates to security in order to protect Organization through the use of the Governance, Risk and Compliance tool.

·         Lead the deployment of global and consistent Identity and Access tool and processes.

·         Manage periodic CSA audit activities and relevant access remediation in support of External Audits. 

·         Building a strategy, vision and roadmap for attaining effective and efficient identity and access management controls

·         Analyze reported problems, enhancement requests, and minor and major role redesign for feasibility and appropriateness;

·         Manage Risk control related matters including SAP security, role methodology and process and controls. 

·         Engage other groups in finding solutions to identified compliance issues, plan and schedule work for the Security Technical Team, monitor and report on progress, and make adjustments as required;

·         Monitor completion of work assignments; track progress and ensure completion of all daily tasks involving User and authorization administration.

·         Developing Governance reports and progress dashboards for governance board meetings.

·         Assist the SAP Support group in developing strategy for optimizing the use of SAP, and assist in business case development and advise on the feasibility of potential future projects.

·         Maintain an awareness of SAP Security and GRC, best practices, and SAP trends and directions.

·         Recommend security strategies that are aligned with the City’s business strategy and are consistent with SAP’s enterprise architecture and strategic direction and computing platform standards.

·          Responsible for creating and maintaining supporting documentation for SAP security technical design and configuration.

·          Define the Audit sectors for each Fiscal year and reviewing the provisioning and maintenance procedures around those.

·          Past projects- SAP Upgrade, Identity & Access Management Integration Projects and SAP security outsourcing.

Project Type

SAP implementation projects and application maintenance

Role

SAP Security team lead

Responsibilities

·         Led Onsite Security Support team responsible for SAP Security role design, implementation and support for SAP ECC/HR/BI/CRM/SOLMAN on GUI and Net weaver platforms.

·         Designed an efficient security strategy for the company's future releases

·         Implemented HR Position based Security using Structural Authorization.

·         Developed Security solutions for HR Payroll Work management modules and supported SAP BI7.0 with analysis authorizations using RSECADMIN

·         Configured VIRSA CC 5.0 (former GRC Access control) across all ECC modules.

·         Identify potential IT & Process risks beyond traditional audit findings for SOX compliance

·         Fully documented security landscape, procedures, and notes for turn-over to client

·         Participated in requirements gathering, assessment, design, configuration and testing activities for SAP security.

Project Type

United Health Care – IT development and support

Role

Sr. SAP Security Analyst

Responsibilities

• Completed a SAP security enhancement on MM Purchasing functionality.

·         Designed SAP security using best practices and standards after gathering business requirements from end users.

• Completed a Business Process Reengineering project for implementing SAP R/3. Implemented business controls in SAP through the definition of a controls process.
• Designed and maintained Security roles using PCFG/profile generator/CATT /LSMW scripts.
• Performed auditing and SOD check using compliance calibrator tools.
• Performed high-risk analyses for MM and SD business processes to assess all high-risk transactions and analyzed all the company's legacy interfaces with SAP.
• Assisted in implementing SOLMAN for raising Change requests for Production.

Project Type

AMD (IT services and catalog management)

Role

IT Security Analyst

Responsibilities

• Performed User administration and assigning them to SAP security policies and groups
• Tier 2/3 level support as part of SAP Security Administration
• Responsible for maintenance of Oracle 9i and Oracle 8i Database running on Windows/Unix platforms.
• Job involved planning and installation of Oracle 9i Databases.
• Resolved database performance related issues in production environment.
• Responsible for backups and recovery for Oracle Database.