Candidates About

 

Atul Saini 

SUMMARY:

·         Over 14 years of solid sap experience in SAP R/3 and Net weaver Technologies on Security and Authorizations with strong understanding of information security practices, sap best practices and SOX Compliance tools like GRC.

·         Completed 3 Full Life Cycle implementations in sap security, 4 support and 3 Up-gradations.

·         Experienced in working for Implementation, Go-Live, Post Go-Live, and Production Support projects.

·         Extensive experience in Requirement gathering, Design, Development and Maintenance of SAP application security.

·         Experienced in handling the security workshops and being the focal point for major security issues.

·         Implemented security for various modules like BI / BW, BO, SEM - BPS, FI, CO, MM, SD, PM, HR / HCM,  CRM, SRM, EBP, APO, XI, PI, EHS,WM, PS etc.

·         Amazing experience in implementing portal security for ECC, ESS, MSS, EC, ME, MII, BPC,BI,BO and Enterprise Portal (EP) etc.

·         Experienced in GRC10.1 (ARA, EAM, ARM and BRM) and GRC 5.3 (RAR, SPM, ERM and CUP) end to end implementations and worked on support as well.

·         Broad experience in maintaining Single, Composite, Master and Derived roles using Profile Generator (PFCG).

·         Extensive experience in creating Dialog, Service, Background and Communication User id creation using SU01 and SU10.

·         Experienced in Central User Administration (CUA) configuration, maintenance and troubleshooting. Experience in creating users and assigning roles through CUA.

·         Experienced in both Role Based and Position Based security models.

·         Experienced in development of Structural Authorization.

·         Very good knowledge of producing and analyzing reports in SAP using SUIM and security related tables (AGR*, USR*, etc) and customized Query reports.

·         Developed LSMW and ECATT scripts for user id creation and role assignment.

·         Worked on User/role remediation project for Sarbanes-Oxley Act (Section 404) using VIRSA / GRC System.

·         Experienced in working with Internal and External Auditors and keeping the SAP systems audit compliant.

·         Experience in writing SOX controls, SOX narratives, Technical Auditing process and Remediation process in highly demanding environments.

·         Extensive experience with resolving ticket issues and troubleshooting security authorization problems while adhering to Service Level Agreements (SLA).

·         Strong experience in SAP security Process Evaluation and advising client on sap best practices.

·         Experienced in supporting more than 70,000 users and 40 SAP client systems.

·         Ability to manage multiple tasks of production support and implementation projects.

·         Experienced in adhering to the Change Management Process for transporting roles and tables, security objects and maintaining the change documents.

·         Good understanding of ASAP and AGILE Methodology.

·         Great experience in User licensing, sap best practice and optimizing cost.

·         Experienced in providing security authorizations Training to the client.

·         Interfaced extensively with clients to gain insight and developed solutions to meet business needs across the entire SAP landscape.

·         Strong organizational and communicational skills combined with an aptitude to work both as a team member as well as an individual with minimum supervision, good work ethics, quality service, and proven results.

 

Technical Skills:

·         SAP Security Expert in SRM,BPC,ME,MII,PLM,ARIS,BO,BI, Solution Manager Security , Enterprise Portals,BPC, EC, EHS ,SRM portal security.

·         R/3 Security (FICO, MM, PP,EHS, SD, PM, WM,SMP,CRM,APO,SRM etc) on ECC6.00 and SMP(SAP Mobile Platform)

·         GRC Access Control 10.1(ARA, EAM, ARM and BRM) and GRC Access Control 5.3 Tools (RAR, CUP, SPM and ERM).

·         BI 7.0 & BO Security, HR Security, XI/PI Security, CRM Security, SRM Security and APO Security.

 

 

 

 

 

Education:

Guru Jambeshwar University of Science & Technology                                    2002-2005        

·         Masters of Business Administration (MBA) Distance Education

Maharishi Dayanand University                                                                        2000-2002

·         Masters of Computers Applications (MCA) Distance Education

Kurukshetra University                                                                                     1996-2000        

·         Bachelors of Computer Science

 

Visa Status: - US Citizen.

 

 Relocation: - Open for Relocation

 

Chronology of Professional Experience:

Pacific Gas & Electric                                                                                                                 May 2013-Till date

Sap Security Manager 

Platform:       SAP R/3 V.  ECC6.                  

System:         ECC6.0, BIW7.0, BPC, SolMan, GRC10 AC( ), MM, SD, WM, FI, HR, PI, PM, SMP    (SAP Mobile Platform), MII, EHSM, EC (Environmental Compliance) etc.

Company Details: Pacific Gas & Electric is one of the leading Natural Gas and Electric utility provider for northern and central California.It has nearly 37000 Sap users.

Responsibilities: 

·         Managing team of 9 sap security resources, 4 on shore and 5 offshore.

·         Assigning sap security resources to project and forecasting demands.

·         Managing support schedule, Project Demands and SOX.

·         Coaching team members and helping them in developing competences.

·         Production Support, Sox Analysis, Re-Designing Security, Fixing Defects.

·         Setting up weekly team meeting and getting status on projects, support tickets and issues.

·         Reporting support ticket status to management.

·         Setting up relationship between IT and other business segment.

·         Setting up SLA’s and right expectations on sap security deliverables.

·         Setting up team building activities.

·         Promoting Knowledge sharing and back up each other.

·         Troubleshooting high visibility authorization issue by using SU53, ST01and RSECADMIN tcode.

·         Worked on defining SOX controls and monitoring process.

·         Did Role remediation and redesigning for ECC roles.

·         Managed and delivered security for Leak survey project, Material Traceability Project, AMBBS, EDGIS project.

·         Implemented GRC10.1(ARA, EAM, ARM and BRM )

·         Created roles for sap modules like SD, MM, WM, FI, HR, PM, BW/BI etc. according to business requirements using tcode PFCG.

·         Created Customized auth objects using tcode SU21 and field were created using tcode SU20 and were linked to tcode by using SU24.

·         Created Auth Groups in SE54, maintained table TDDAT and assigned the auth group to a table. To maintain the security and access to critical tables.

·         Designed security for SMP (SAP Mobile Platform), MII, EHSM (Employee Health and Safety, EC (Environmental Compliance) etc.

·         Open connections for sap and raising messages for sap for issues.

·         Creating OSS ids, S-user ids, Developer keys, Object keys Maintains Secure area at Sap Market Place.

·         Resolving daily routine Support tickets.

·         Worked on user licenses and saved 2 million dollars by correcting license.

 

Managing Sap Security team, Support shift & Projects

·         Assigning support schedule and project to 9 sap security resources.

·         Developing skills and knowledge in sap security team.

·         Reviewing progress of each teach member and coaching on development.

·         Promoting team to discuss complex security issues in team meeting.

·         Delivering cost effective and efficient solution to business.

·         Monitoring fire fighter activities and logs for sap security team.

·         Designing sap security polices and updating them according to current process.

·         Auditing and reviewing quality of work and deliverables.

·         Handling sap security escalations.

·         Overseeing projects for sap security needs.

·         Designing security for new Sap projects and products, sharing concepts and knowledge within team.

·         Continuously striving for process improvement and effective & effective solutions.

·         Creating training material for team.

·         Managing and checking SOX controls.

·         Setting up team goals and individual team member goals.

·         Finding areas for continuous growth and improvement.

·         Setting up workshops for business.

 

Daily Production Support:-

·         Worked on daily production support security tickets of SD, MM, WM, FI, HR, PM, BW/BI ,EC,MII,EHSM portal and ECC portal. Defined SLA’s for tickets. Troubleshooted daily authorization issues.

·         Gathered requirement and designed new End user, Batch user and CPIC user roles.

 

Role Remediation project (SD, MM, WM, FI, HR and PM):-

·         Worked on gathering requirement and redesigned roles for SD, MM, WM, FI, HR and PM module on the basis of tcode usage by business. Designed new roles according to business tcode usage and remediated old roles for critical and sensitive authorization objects and tcodes. The objective was to lower down the no of SOD violations and mitigation controls. Cleaned up BI/BW roles for HR info cubes and Info areas.

 

Implemented (Access Risk Analysis-ARA) GRC10.1 AC

·         Activated BC sets for AC10 using Tcode SCPR20.

·         Activated Services for GRC10 .1 AC using Tcode SICF.

·         Created CONNECTORS and connected child systems like ECC, SRM and BW.

·         Maintained 1000 Parameters for ARA.

·         Set up background jobs for Role, authorization and profile sync.

·         Configured and Maintained GRC Rule Set and customized ruleset. Created local and Global rule set according to client requirement.

·         Created risk ids and defined High, Medium and Low risks.

·         Created Mitigation controls and assigned mitigation controls to controllers and owners for monitoring.

·         Tested SOD report at user level, Action level and permission level.

·         Configured sensitive tcodes and power fulauth objects.

·         Used ARA to Determine and report if any risks will be introduced by simulating the addition of transactions, Roles, or Profiles to a User ID. This powerful feature effectively eliminates new risks being introduced to production.

 

Implemented (Emergency Access Management-EAM) GRC10.1 AC

·         Configured Emergency Access Management-EAM GRC10.1 Common components.

·         Maintained 4000 parameters for EAM in GRC10.1AC and Use Centralized EAM.

·         Created Fire Fighter Ids in Child systems like ECC, SRM, and BW etc.

·         Created Fire Fighter Controller and owners in EAM system and assigned Controller role and owner Role.

·         Assigned Fire Fighter Ids to fire fighter users. Tested functionality.

·         Maintained reason code and email template for sending logs approval email.

·         Trained user EAM and prepared training material.

·         Trained Fire Fighter Controller and Fire Fighter Owners on how to audit logs and approve them.

·         Tested log reports with Transaction logs, Session logs and change logs.

 

Implemented (Access Request Management-ARM) GRC10.1 AC

·         Worked on Maintaining MSMP Workflow and customizing workflow

·         Maintained template for email communication and access request submission.

·         Worked on Specific Settings for Provisioning and Managing Users.

·         Worked on End User Personalization Forms.

·         Worked on setting user request types and approvers in ARM.

 

 

 

 

 

 

Designed and Implemented Security for (LS)Leak Survey Project, (MT)Material Traceability Project, AMBBS and EDGIS Project.:-

·         Gathered requirements and designed sap security roles for MT, AMBBS, EDGIS and LS projects. These projects used SAP ECC and SAP mobile plate form. It was Integration of Sap with Ipad and Android tablets using SYCLO.

·         Designed role for Mobile (like Field tech) and non-mobile user (like surveyor, asset strategist, Supervisor etc.

 

Worked on MII (SAP Manufacturing Intelligence Integration), EC and EHSM (SAP Environment, Health, and Safety Management) portal systems:-

·         Designed and implemented portal roles and portal groups for MII (SAP Manufacturing Intelligence Integration), EC and EHSM (SAP Environment, Health, and Safety Management) and EC (SAP Environmental Compliance 3.0)

·         After pilot Go-live these systems were migrated to LDAP from UME data base.

 

SOX External &Internal Audit:-

·         Worked with external and internal auditor on providing SOX evidences for each SAP and GRC control.

·         Worked on writing SOX controls and narratives.

·         Worked on defining new process to remediate SOX deficiencies.

 

INFOSYS (Client:- Nike Inc.)                                                                                                     Nov2012 - May 2013

Sap Security Manager

Platform:              SAP R/3 V.  ECC6.                  

System:                ECC6.0, BIW7.0, SolMan, GRC (RAR, SPM) etc.

Client Details:      Nike, Inc is engaged in the Design, development, manufacturing and worldwide marketing and sales of footwear.It has nearly 45000 Sap users.

Responsibilities: 

·         Managed team of 4 on –shore and 6 off –shore team members.

·         Worked on Production Support high visibility issues.

·         Reported weekly ticket status to management.

·         Validating team member’s work and delivering to client.

·         Worked on SOX reports and evidences and answered SOX questions.

·         Did Role remediation and redesigning for ECC and BW roles.

·         Created roles for Sap Solman and supported it.

·         Worked on Firefighter creation / assignment through SPM (Super user Privilege Management) Mapped Firefighter ID’s to owners and Controllers.

·         Worked on Transport Management, transporting roles from development to quality and then to production system.

·         Creation of Test ids for different test scenarios as per client requirement.

·         Creation/modification of single/composite/derived roles as per the requirement.

·         Worked on producing and analyzing reports in SAP using SUIM, and security related tables (AGR*, USR*, etc.), and SUIM reports.

·         Worked on Mass user management using SU10. Uploaded user and roles through SECATT and LSMW.

·         Authorization Profiles: Generating authorization profiles, inserting missing authorizations, maintaining open authorization fields and organizational values.

 

Managing SAP Security team

·         Managing sap security off-shore and on-shore team and making sure proper hand shake is happening.

·         Maintained support shift schedule and on –call schedule.

·         Prepared team goals and individual goals for long term and short term.

·         Developing project plans for security activities and assigning to team members.

·         Managing priorities, defining SLA’s, handling escalations.

·         Setting up survey for clients and discussing feedback.

·         Discussing support ticket and projects dash board with management.

·         Monitoring team performance on team and individual goals.

·         Setting up security workshops.

·         Maintaining documentation at share point, making sure documentation is according to current process.

·         Developing relationship with business.

·         Making sure team is compliant with Company policies, sox controls and process.

·         Monitoring and checking sap security system health.

·         Validating and submitting reports to Internal and external auditors.

·         Helping SOX team in defining controls and monitoring it.

 

Implemented SAP BIW Security

·         Created BW roles for reporting users using S_RS_ICUBE, S_RS_COMP, S_RS_COMP1 and S_RS_FOLD objects.

·         Created BW roles for administrator users using S_RS_ADMWB, S_RS_IOBJ, S_RS_ISOUR, S_RS_ISRCM, S_RS_ICUBE, S_RS_MPRO etc.

·         Created analysis authorization through RSECADMIN and assigned to role through auth object S_RS_AUTH.

·         Worked on Tracing analysis auth through RSECADMIN trace and fixing auth issues.

 

Migrated GRC from 5.3 to GRC10:-

·         Worked on GRC upgradation from GRC5.3 to GRC 10 migrated GRC rule sets, Fire fighter Ids, FF controllers and owners.

·         Created training materials for end users on User access request, FF id usage and FFid request approval.

·         Created connectors and connected child systems.

·         Prepared SOD analysis and troubleshooting user request doc.

·         Supported and worked daily GRC tickets.

 

 

EDF Renewable Energy                                                                                                              Oct 2011- Oct 2012

Sap Security lead                    

Platform:                   SAP R/3 V.  ECC6.                  

System:</