• Continuous monitoring of critical system access• Work with the functional, development, and technical teams to ensure requirements are understood and have all possible details captured to develop the solution for application security.• Perform regular system audits to detect deviations of established procedures, role mapping, unauthorized system activity, and report findings.• Ensure that changes to roles and system are tested, approved, and completed according to DoD standards. Including regulatory and compliance requirements• Support identifying risks and designing the SOD (Segregation of Duties) Matrix• Provide support for users with security-related problems and assist functional and technical teams with troubleshooting critical issues, as it relates to security roles.• Support of program audit activities• Design and implement continuous monitoring controls.• Work closely with System Integrator SAP Security team• Administer solution that facilitate user provisioning/de-provisioning, authentication/authorization, and reporting based on business needs, industry best practices, and audit/regulatory requirements by working with functional team and business role owners!• Identify and implement continuous improvement opportunities to drive process efficiencies

• Maintained custom transaction codes to secure access for tables. • Tracked missing authorizations for user access problems and inserted missing authorizations. • Suggested authorization objects for newly created custom transaction codes based on functionality. • Created new derived roles based on company codes, plants and cost centers. • Analyzed business roles and mapped them to transaction codes according to business processes. • Worked with the Internal Audit teams closely for Continuous Improvement of Security, Authorization & Controls/Compliance areas to apply the best recommended practices involved assist the client in building processes & procedures for managing users & roles as per Sox compliance. • GRC 10.1, Access Controls, the different components utilized were SAP GRC Emergency Access Management - EAM (Fire Fighter), Access Risk Analysis and Access Request Management ARM (Access Enforcer).• GRC 10..1 Access Risk Analysis: Maintained Rulesets - Global and Critical; Maintained and corrected existing custom functions and risks to provide correct rule results; maintained mitigating controls, risks and owners for the same.• Created firefighter users in GRC system and assigned proper authorizations.• Supported GRC 10.1 implementation.• Communications with business and scheduled meetings for training purposes and understand their issues and provided appropriate solutions Designed, developed and administered user roles, profiles and authorizations

• Monitored System audit activities and ran audit reports for the client’s internal audit team.• Communications with business and scheduled meetings for training purposes and understand their issues and provided appropriate solutions• Front-line support for production end-user defect resolution and monitoring of SAP application access and security violations• Involved in SAP GRC suite implementation meetings with the business users to know about the SOD conflicts at transaction code level. Identifying Security's Key Role in Maintaining Sarbanes-Oxley Compliance• Perform high level support including problem determination for all SAP security needs within Development, QA, and Production SAP clients .• Design and assess SAP Access Control, including user provisioning, segregation of duty management, emergency access, and role management.

• Performs and manages complex IT projects - Designing, implement and provide technical leadership for all projects including the ability to interact effectively with customers, vendors, and peers.• Utilize standard Segregation of Duty (SOD) tools to validate user access privileges and role assignments identifying any potential SOD risk. Determine and implement any appropriate modifications to eliminate or mitigate any potential risk.• Perform regular system audits to detect deviations of established procedures, role mapping, and unauthorized system activity and report findings to management• Troubleshoot existing user roles, security objects and authorizations to resolve security issues.• Identify any gaps in existing security administration processes and procedures as well as areas for significant improvement, optimization and automation.• Develop, maintain, and implement security policies and procedures. Provide updates and training to junior Security team members on new and updated product support requirements

• GRC 10.1, Access Controls, the different components utilized were SAP GRC Emergency Access Management - EAM (Fire Fighter), Access Risk Analysis and Access Request Management ARM (Access Enforcer).• GRC 10..1 Access Risk Analysis: Maintained Rulesets - Global and Critical; Maintained and corrected existing custom functions and risks to provide correct rule results; maintained mitigating controls, risks and owners for the same.• Created firefighter users in GRC system and assigned proper authorizations.• Supported GRC 10.1 implementation.• Communications with business and scheduled meetings for training purposes and understand their issues and provided appropriate solutions.• Created new derived roles based on company codes, plants and cost centers. • Analyzed business roles and mapped them to transaction codes according to business processes. • Worked with Security Manager to bring awareness to their security team, how to simulate user provisioning in order to prevent reintroduction of SOD issues. • Conduct knowledge transfer and training for security team on the SOX SOD Remediation process

Worked with functional and business teams to develop and maintain roles and profiles. Worked on SAP check Indicators and default field values. Maintained custom transaction codes to secure access for tables. Tracked missing authorizations for user access problems and inserted missing authorizations. Suggested authorization objects for newly created custom transaction codes based on functionality. Created new derived roles based on company codes, plants and cost centers. Analyze business roles and mapped them to transaction codes according to business processes. Worked with the Internal Audit teams closely for Continuous Improvement of Security, Authorization & Controls/Compliance areas to apply the best recommended practices involved in configuration of Central User Administration across the landscape and defined field attributes for user maintenance and transferred users from child to central systems. Assist the client in building processes & procedures for managing users & roles as per Sox compliance. Worked with business analyst to clean up Roles from Segregation of Duties (SoD) conflicts using RAR. Performed User Level & Role Level Risk Analysis for SoD conflicts using offline and online analysis.

Click to edit position descriptionConfigured security roles for several modules in SAP. Used Profile Generator to maintain roles, generate and assign authorization profiles. Designed, developed and administered user roles, profiles and authorizations.Re-designed security roles across different modules to meet clients changing landscape. Monitored System audit activities and ran audit reports for the client’s internal audit team. Created custom roles, t-codes, custom objects, custom object classes and implemented table and program security and global maintenance of authorization checks. Troubleshot and solved user access problems as a part of the production support team. Interacted with external audit teams to solve inconsistencies and user violations in the system

Configured security roles for several modules in SAP. Used Profile Generator to maintain roles, generate and assign authorization profiles. Designed, developed and administered user roles, profiles and authorizations.Re-designed security roles across different modules to meet clients changing landscape. Monitored System audit activities and ran audit reports for the client’s internal audit team. Created custom roles, t-codes, custom objects, custom object classes and implemented table and program security and global maintenance of authorization checks. SAP environment Production support ECC 6.0 -Structural HR, BO,BW, BI.7, CRM,IDM and SCM.Troubleshoot and resolved user access problems as a part of the production support team. Interacted with external audit teams to solve inconsistencies and user violations in the system.Technical design, development, testing, implementation, support, and documentation of Security roles and objects within an ECC 6.0 SAP environment Production support ECC 6.0 - Structural HR, BW, BI.7, CRM, IDM 7.1and BPC and Insurance module (DSP), SRM, and SCM

Worked with functional and business teams to develop and maintain roles and profiles. Worked on SAP check Indicators and default field values. Maintained custom transaction codes to secure access for tables. Tracked missing authorizations for user access problems and inserted missing authorizations. Suggested authorization objects for newly created custom transaction codes based on functionality. Created new derived roles based on company codes, plants and cost centers. Analyze business roles and mapped them to transaction codes according to business processes. Worked with the Internal Audit teams closely for Continuous Improvement of Security, Authorization & Controls/Compliance areas to apply the best recommended practices involved in configuration of Central User Administration across the landscape and defined field attributes for user maintenance and transferred users from child to central systems. Assist the client in building processes & procedures for managing users & roles as per Sox compliance. Worked with business analyst to clean up Roles from Segregation of Duties (SoD) conflicts using RAR. Performed User Level & Role Level Risk Analysis for SoD conflicts using offline and online analysis. Created various background jobs to generate different reports in Risk Analysis and Remediation. Experienced with SPM administration, which includes assign FF IDs to ID Owners & Controllers, maintain configuration table, Reason Codes and critical transaction codes. Troubleshoot authorization related problems, analyzed system traces and user buffers. Work with GRC10, ECC6, SRM, CRM, BPC,HANA,BOBJ.IDM 7.3 and BW

Configured security roles for several modules in SAP. Used Profile Generator to maintain roles, generate and assign authorization profiles. Designed, developed and administered user roles, profiles and authorizations.Re-designed security roles across different modules to meet clients changing landscape. Monitored System audit activities and ran audit reports for the client’s internal audit team. Created custom roles, t-codes, custom objects, custom object classes and implemented table and program security and global maintenance of authorization checks. Troubleshot and solved user access problems as a part of the production support team. Interacted with external audit teams to solve inconsistencies and user violations in the system.

Managing business workshops for requirement gathering and conversion of business requirements into technical design/matrix and documentation.Technical design, development, testing, implementation, support, and documentation of Security roles and objects within an ECC 6.0 SAP environment Production support ECC 6.0 - Structural HR, FI/CO BI.7,CRM,and BPC and Insurance module (DSP), SRM, CCM.Analyzed systems for Sarbanes Oxley compliance, identified all potential Segregation of Duties issues and create a plan for compliance and execution of a project to mitigate all issues. Created GRC reports and tables for SOX/SOD analysis and user provisioning. Worked with Security Manager to bring awareness to their security team, how to simulate user provisioning in order to prevent reintroduction of SOD issues. Conduct knowledge transfer and training for security team on the SOX SOD Remediation process. Assist the Security Team in fixing upgrade issues in the various modules due to new authorizations causing failures during testing.

SAP ECC 6.0, P1 with NW 7.0, BI 7.0, GRC 5.3, Sun IDM CE, and PBF. Calibrator, Access Enforcer, Firefighter and Role Expert tools. Created portal groups with combination of roles and assigned the groups to end users. Created new roles for ECC 6 systems: FI, CO,, HR, MM, PP, QM, modules, based on concepts of task roles and position roles Security support for integration testing, user acceptance testing, and training efforts Used Profile Generator to maintain roles, generate and assign authorization profiles. Coordinated with other teams to ensure that security settings meet the business requirements and align with the defined controls and standards.

Instrumental in analysis, design and implementation of SAP Security Upgrade from 4.6C to ECC 6.0 Upgraded all the roles with new functionality. Used GRC Compliance Calibrator tool to identify roles level, user’s level SOD conflicts, SAP assessment and remediation. Primarily responsible for the pre and post system refresh steps for Security processes. Worked closely with BASIS team on transports and refresh processes at all stages of the project .Assisted the testing group users in their security issues, at various stages of the upgrade project. Experienced with Sarbanes Oxley (SOX) and segregation of duties (Sod’s).

Redesigned and retrofitted the roles for FI/CO, MM, PP, SD and HR in compliance with segregation of duties principles. Tested functional unites and integration testing.Documented and integrated security solutions into application functional and technical roles.

Troubleshoot and resolve existing roles .Provide support and maintenance in user administration for the project and assist with day-to-day maintenance for the business users Monitor requests for access to ensure solutions are performed in a timely manner. Created Composite and single roles for the user groups. Assisted teams with User Acceptance Testing.

Analysis of Functional Specifications - Creation of Roles Profiles - Modification of Existing Roles Profiles use CATT Scripts as available - Transport of Roles Profiles and Validation - Unit testing of work completed - Test Box work to include Test ID creation - Regenerating Profiles, assigning roles profiles as needed - Production Role Profile validations - Production Updates for Segregation of Duties. SAP Security functions version 3.1H and 4.6C including but not limited to Role Profile Creation with Profile Generator or without activity groups , Role Profile Modification, Working with composite roles and transports - Knowledge of use of CATT Scripts for security work and Virsa - Compliance Calibrator