Rishabh Agarwal

  • SAP Sr. Security Consultant / Lead Consultant
  • San Jose, CA
  • Member Since May 07, 2023

Candidates About

 

Rishabh Agarwal

SUMMARY

§  Over 10 Years of Experience in IT with specialization in SAP Security, SAP BASIS and GRC

§  Implemented several complete life cycle of SAP implementation project

§  Extensive experience in redesigning and troubleshooting Security for BI/BW, HANA, ECC, CRM, HR, PI/XI/PO, Portals, CUA and GRC Systems.

§  Experienced in multiple upgrades EHP 3 to EHP5, EHP 5 to EHP 7, BI 7.02 to 7.4

§  Experience in CUA Implementation

§  Compliance experience in SAP GRC and third party tools (Approva BizRights, CSI Accelerator) involving Access Control and Process Control

§  Mapped business functions and maintained the corresponding authorization object values in USOBT_C and USOBX_C

§  Successfully managed/delivered large/complex global projects around SAP GRC Implementation & Security audit deployment

§  SAP BASIS - Server Restart , Analyzing Dumps , Implementing Notes , troubleshooting transport issues , printer issues, RFC , system traces Performing end to end Archiving admin support project for the client 
Designed Security for SMART Grid and SMART Meters.

§  Designed BOBJ 3.1 and 4.1 Security

§  Designed Security for PO Systems

§  Experience in designing BI and HR security for multiple clients.

§  Designed HANA Security.

§  Served clients across multiple industries like Utilities, Retail, Consumer Goods & Services, Information Technology, and Public Sector.

§  Experienced building and motivating teams, helping in solution consulting, project effort estimation, management workshops, client presentations, solution accelerator propositions and business process management.

 

EDUCATIONAL AND PROFESSIONAL DEVELEOPMENT

Master of Business Administration (MBA), August 2013

HULT INTERNATIONAL BUSINESS SCHOOL,Boston,MA, USA

 

Bachelor of Engineering (B.E.) Computer Science, May2006

Maharishi Dayanand University, BMIET,Sonepat, INDIA

 

PROFESSIONAL EXPERIENCE

Apple INC.                                                                                                                                                   JuN 2016 - Present

SAP Sr. Security Consultant / Lead Consultant - Sunnyvale, CA

 

Managing the SAP Security for world leading consumer electronics giant. Handling21 Landscapes and user base of more than 250,000. Involved in multiple projects including developing custom tools for user provisioning, designing HANA Security, BOBJ Security etc.

 

§  Worked within a larger security team to manage access, security controls and risk identification within the SAP system.

§  Working with ABAP to customize SAP delivered BRM Tool to meet need of client and integrating with various home grown tool of Apple

§  Developing a tool to automate user provisioning in Non Production System for Apple.

§  Managing and administrating Roles for 19 Production Systems and User Base of more than 250000.

§  Designing HANA Security model for multiple projects.

 

 

 

AVNET INC.                                                                                                                                              Mar 2015 – jun 2016

Lead Consultant -Phoenix, AZ

 

End to end SAP Implementation for ECC, CRM, BI and SCM Landscape. Implemented HANA security and Redesigned BOBJ Security

 

§  Involved in end to end SAP Implementation for ECC, CRM, BI and SCM Landscape.

§  Worked within a larger security team to manage access, security controls and risk identification within the SAP system.

§  Created Functional Design with clients and developed roles making sure they are SOX compliant.

§  Mitigation on the basis of alternative controls to mitigate risks and educate management about conflict approval and monitoring, document process to monitor mitigation controls.

§  Implemented end to end BI Security with Analysis Authorizations.

§  Designed SAP Security for HANA and Security for BI 4.0

§  Designed Access Levels/User Security/Folder Security/Universe Security for BOBJ

§  Designed Security Solution for Native HANA objects.

§  Involved in handling day to day HANA Security including Creating Users/Granting Role to users/Defining and Creating roles/Assigning Privileges

§  Worked and troubleshooting on GRC10.1 for user/role provisioning.

§  Performed Role/Defect Updates in development during Realization phase

§  Created eCATT and LSMW scripts for user load and role assignment and maintenance.

§  Knowledge transfer to existing staff for BI and EP Security methodology

§  Documented Role design and reporting strategy across Infoproviders and business users with BI 7.0 Analysis Authorizations using RSECADMIN security tool

§  Worked with Functional and Development team to design SAP Roles and new security objects based on all new custom functionality implemented for business.

 

 

HOLCIM                                                                                                                                                        JAN 2015 - MAR2015

Team Lead – Dundee, MI

 

Helped client in their merger with Lafarge to become the largest cement manufacturer worldwide.Redesigned BI Security to merge data coming from new systems.

 

§  Helped merging data of two largest cement manufacturer.

§  BI redesign project.

§  Incorporated Security solutions of parent company helping them to merge all data.

 

consumers energy                                                                                                                          aug 2013 - jan 2015

SAP Sr. Security Consultant– Jackson, MI

 

Handled multiple projects including ECC Upgrade, BI Upgrade, CRM Upgrade, HANA Implementation, BOBJ Migration from 3.1 to 4.1, SMART Meter Implementation, PO Implementation, Production Support

 

§  Worked in Database migration from Oracle to HANA for BI Landscape.

§  BI upgrade project from 7.02 to 7.4

§  Designed BOBJ 4.1 Security as per Business Requirements

§  Migrated Security Objects from BOBJ 3.1 to BI 4.1

§  Designed roles and groups for PO systems

§  Worked with SAP team in PO Implementation

§  Designed Security for HANA Studio

§  Experienced and strong with Security Audits, SOX Section 404 compliance and Audit Information System. Used SAP audit transactions and configured audit and reporting through SM18, SM19 & SM20.

§  Designed security for SMART Meters/Smart Grid.

§  ECC upgrade from EHP5 to EHP7, CRM upgrade from EHP3 to EHP5.

§  Worked on multiple Service Pack and Release Upgrades for ECC/BI/CRM/XI/Portals.

§  Designed roles/security for Smart Energy Implementation companywide.

§  Configuring UME to connect to LDAP for Authentication and have developed data flows between SAP systems to corporate LDAP directory.

§  ImplementedBI Security for the Client.

§  Redesigning ECC, BI and HR Security.

§  Involved in Implementation ofGRC 10.0 AC, and integrating with IDM

§  Involved in technical workflow implementation of Compliant User Provisioning, Super-User privilege management, enterprise role management and Risk analysis & remediation.

§  Involved in Designing strategy & roadmap for SAP GRC 10 Access Control and role restructuring.

§  Experienced in Creation of functional specifications of applications which were integrated to SAP GRC and providing technical requirements for the same

§  Post installation Activities for Access Control

§  BC sets Activation

§  Access Risk Analysis Configuration for User level & Role level Analysis

§  Access Control Repository jobs

§  Jobs scheduling for Authorizations/User/Role/Profile sync

§  Batch Risk Analysis

§  User Access Management Post installation steps

§  Assisted in Securing tables and worked on categorizing several unclassified SAP tables to authorization groups.

§  Produce gap analysis to identify alternate solutions specific to SAP security requirements and provide technical recommendations on design and architecture improvements.

§  Designed a comprehensive security Matrix that documented the security design and controlled the user requests in the production environment.

§  Implemented CUA on Solman.

§  Developed Roles for ChaRM Implementation.

§  Designed, developed, and maintained structural authorizations and standard/derived roles for position-based HR security strategy, driven by complex span-of-control requirements for commercial divisions

§  Performed gap analysis, conducted risk assessments, managed issues, designed and documented procedures.

§  Set up security by INFOAREA, INFOCUBE, ODS, PSA, INFOOBJECT, QUERY and WORKBOOKS.

§  Configured roles and authorization objects to secure reporting users.

§  Created LSMW scripts for mass user administration.

§  Created roles based on BW/BI reporting environment like common role, folder role.

§  Limited the query access within the BExAnalyzer.

§  Implemented Info Object Security (field-level security) for reporting users and also created custom reporting authorization objects.

§  SPOC for HR and BI Security

§  Developed SOD rule sets for Biz Rights.

§  Defined new process for client which reduced cost and effort for various tasks.

 

accEnture,                                                                                                                                                                   2009-2012

Sr. SAP Security Consultant

 

 

Anheuser-Busch InBev                                                                                                              June 2010 -Aug 2012

Sr. SAP Security Consultant

 

Designed, implemented and supported Security Roles and Authorization for SAP ECC, BW/BI, XI/PI, HR, Portal, FICO, MI, Sol Man, MDM, SRM, APO and CRM. Periodically performed security auditing, SOD/SOX compliance checks and conducted Security trainings for SME’s and new joiners.

 

§  Handled SAP Security for more than 25,000 users and maintenance of more than 20,000 roles.

§  Prevented Sarbanes-Oxley(SOX) compliance violations throughuse of CSI Accelerator, including Segregation of Duties (SOD) and Firefighter.

§  Experienced with reading ABAP code to analyse authority checks and calls with programs

§  Experienced with R/3 releases versions 4.6C through ECC5.0 & ECC6.0 Netweaver on various modules like MM, PP, SD, FI, CO, PS, PI, and BI / BW, HR & CRM and Enterprise Portal.

§  Managed the user authorization process which included creation and modification of users, role assignment, locking/unlocking and password generation.

§  Configured CUA and troubleshooting.

§  Participated in all phases of an enterprise implementation of SAP ECC 6.0, and provided support post-implementation, working with hosting provider to implement enhancements, fixes, and upgrades.

§  Managed requirements gathering, design, testing, training, implementation and post-implementation support of an enterprise implementation of SAP ECC 6.0

§  Worked directly with business users, implementation team members, and the implementation partner modelling, designing, developing, testing, and implementing appropriate access controls based on business need.

§  Generated and supported new business opportunities and increased client user satisfaction which resulted in multiple client appreciation letters.

§  Addressed multiple ongoing problems impacting Accenture/Team credibility and established myself as expert and key contributor, and won project award for client value creation for the same.

§  Created LSMW and eCATT scripts for mass user and role administration which reduced time and minimized cost for the client.

§  Utilizing SU24 to enable / disable security checks

§  Created solution documents for repetitive issues which are used for giving KT to new joiners.

 

TARGET CORP.                                                                                                                                       MAR 2008 - JUN 2010

SAP Security Consultant

 

Implementation project where work involved mainly development of roles based on client specification and SOD/SOX rules, also securing the client data in production by implementing GRC 10.0 and other tools in SAP systems.

 

§  Worked within a larger security team to manage access, security controls and risk identification within the SAP system.

§  Working experience with security infrastructure like access controls, firewalls, IDS/IPS identity and access management, Web access control/Management, LDAP etc and worked with Business process owners to grant accesses to users.

§  Created Functional Design with clients and developed roles making sure they are SOX compliant.

§  Designed SOD rules for business transaction and processes which were uploaded in GRC for SOD Matrix.

§  Experience with implementation and maintenance of SAP GRC products CUP, SPM, ERM, RAR and good knowledge of GRC 10 products.

§  Mitigation on the basis of alternative controls to mitigate risks and educate management about conflict approval and monitoring, document process to monitor mitigation controls.

§  Risk Analysis, Risk Identification, classification with reference to Business Process Owners, Identifying the Critical Tcodes with in Business Processes, taking the Industry recognized Tcodes.

§  Rule Design and Management, Classifying the Rules and generation of rules at Tcode (Action) & authorization levels (Permission).

§  Classifying the Role attributes by Business process, Sub-Process, Functional Area, Custom fields, maintenance of authorization data.

§  Maintained GRC Rules update by uploading the new changes required for Transactions and Authorization objects.

§  Involved in the GRC tools implementation like Compliance calibrator, Access enforcer, Role Expert and Virsa fire fighter.

§  Designed and implemented roles for ECC, BI, HR, and BASIS for support team and project users.

§  Worked directly with business users, implementation team members, and the implementation partner to model, design, develop, test, and implement appropriate access controls based on business need.

§  Registering Developer and Object Keys from SAP Service Market Place.

 

HEWLETT-PACKARD                                                                                                                         JUN 2007 - MAR 2008

SAP Security Consultant

 

§  Provided SAP Security and Basis planning, implementation, testing, and support for upgrade of R/3 landscape from 4.6C to ECC 6.0.

§  Created over 100 customized end user roles and menus, plus hundreds of "mini-roles" to allow for low-level modular access control.

§  Responsible for all Security-related aspects of upgrade and good experience with monitoring.

§        Documentation of all the procedures and involved in end user training.

§  Trouble shoot R/3 security problem by using different scenario such as system trace, parameter change, buffer reset, SU53, and SU56 in order to find security problem.

§  Creating custom ( Z ) authorization objects for the Z programs to make controls using SU21.

§  User support, resolve end user problems on day-to-day basis.

§  Work with profile generator (PFCG) in creating roles, profiles, composite roles & derived.

§  SAP User Access Management and Auditing for Sarbanes-Oxley Compliance requirements and remediation of security roles for SOD conflicts.

§   24X7 Production Support.

§  Worked with the Business Process Owners to restrict sensitive transactions and security authorizations, and ensured segregation of duties across business areas. Created segregation of duties and single critical transaction policies for IT security.

§  Maintained all the instance profiles in development and production systems.

§  Experienced in creating CATT scripts for User creation, User deletion, role deletion, assigning roles to users etc. SCAT.

§  Analyze Root Cause of Authorization Problems and fix the missing authorizations

§  Ran security reports for critical transactions and objects and for users who never logged on

§  Worked with functional team leads to define the new transactions.

§  Worked on SAP Check Indicator Defaults and Field values, reduced the scope of Authorization checks using transaction SU24 and maintained check indicators for Transaction codes.

 

 

 

ACADEMIC PROJECTS

·         ‘Retail Management System’ as a part of the final year project in 2008-2009:  Developed Retail Management System using C#.Net which track inventory more efficiently and automates billing for bookstore.

·         Library Management’ Project on C++ as a part of XIIth Class project in 2004-2005: Developed Library Management System which manages library database, automates calculation of fine and send reminder to students which have their due date approaching to return the book.