Sap Senior Security Manager
Longmont, Co
Detail oriented manager responsible for all quality, SOX and FDA security design controls in the SAP and connecting systems. As strategic security architect, provided security design solutions for mergers and acquisitions, country expansions and governmental control initiatives.• Upgraded GRC to versions 10.0 and 10.1 to provide enhanced role owner and fire fighter solutions.• Trained managed services provider security team, ensuring proficiency in security design and support processes.• Led the SAP ERP Central Component security upgrade from ECC 5 to ECC 6.• Ensured FDA compliance by configuring GRC risks to search for role or user breaches.• Authored standard operating procedures to allow security processes to be followed uniformly and provide auditability.• Enhanced GRC 10 implementation to include automatic provisioning, reducing user access time by five days.• Installed and maintained Onapsis X1 vulnerability tool, ensuring data security.• Interviewed, coached and supervised security staff of 15, enabling the implementation of over 100 changes and 800 requests yearly.• Provided security architecture and business team workshops that explained the security design and controls processes.• Installed the Fiori GRC mobile platform, allowing SAP users a method to create and approve access requests on any Apple or internet linked computer.• Ran and maintained ERP security in a dual landscape single production instance.• Created Fiori help and training documents to aid end users in new tool.• Rationalized all SAP user numbers for SAP license auditors for savings of over $1 million.• Performed quarterly SOX attestations of the SAP system, assuring the finance team could file quarterly.• Configured GRC controls in the SAP IMG, enabling segregation of duties automatic monitoring.