SAP GRC:● Installed, configured, upgraded, and customized SAP GRC suite versions 4.0 – 12 (Access Controls and Process Controls 10, 10.1, 12).● Integrated GRC with SAP IAG to automate provisioning and risk analysis for Ariba, IBP, and SFEC.● Implemented full Access Control modules (ARA, EAM, BRM, ARQ) and MSMP workflows with BRF+ customizations.● Managed GRC upgrades from 5.3 to 10/10.1/12, including data migration, HR triggers, and mitigating controls.● Configured SAP IdM 7.2 and SailPoint IIQ with GRC 10/12, integrating BPC 10.1 and GRC 10/12 for automated user management.● Led GRC Process Controls customizations, including manual, semi-automatic, and automatic controls, with SOX and SOD compliance.SAP Security:● Expertise in SAP Profile Generator (PFCG) for roles, profiles, user administration, authorization objects, and client copies.● Managed SAP HANA security, role design, transport, and user management.● Secured SAP modules (MM, OM, FI, CO, SD, HR) and handled mass user changes via SECATT and LSMW scripts.● Configured Central User Administration (CUA) and upgraded BW from 3.5 to BI 7.0, implementing analysis authorizations.● Developed structural authorizations for HR, SRM, and CRM, and implemented BPC 7.5 to 10.1 upgrades with GRC 10.1 integration.● Configured, managed and supported Fiori security on both Fiori Gateway and backend ECC systems.SailPoint:● Deployed and configured SailPoint IIQ 8.0, managing business processes for joiner, leaver, and provisioning.● Integrated SailPoint IIQ with SAP GRC 10/12 for risk analysis and provisioning, including PI/PO 7.5 and SAP BTP.● Connected SailPoint with CyberArk for privileged access management and debugged performance issues in distributed environments.SAP Cloud:● Set up and integrated IBP with IAG via SAP Cloud Platform (SCP) and configured SAP Cloud Connector to GRC 12.● Deployed SAP IAG for cloud application provisioning, integrating SailPoint IIQ with SAP GRC 12 and SAP IAG.

Founder RideConnect Inc. - a smartphone marketplace where anyone can create a transportation related service and offer that service to their customers.● Concept, design and architecture of the platform● Hiring, recruiting and staffing of teams● Project management, team lead● UI and UX design● Market analysis, segmentation and analytics● Customer outreach, investor outreach and partner outreach● Design and develop pitch decks, presentations and marketing material● Pitch and present concept in front of investors in Silicon Valley, New York City and Austin● Predicted Uber's problems in 2011 when RideConnect alpha 0.01 was released● Currently have released RideConnect version 1.1.2 on the app store and play store with 1500 downloads, over 350 recurring monthly users and a global reach

Blueprint, design, build and go-live of SAP GRC 10.1 ARM with HR triggers, BRF+, MSMP and user defaults● Assist customer with redeveloping manual processes to account for GRC automation● BRF+ customization for HR triggers to consider Company Code, Personnel Area and Export Control as well as request type specific customization● Work with security, HR and audit teams to address provisioning requirements for new user entitlements, termination of users and firefighter users● Design MSMP workflows to account for birthright entitlements as well as ad-hoc requests from end users● Develop custom function modules to consider company code and personnel area in the HR trigger application● Work with SAP resource to customize GRC to account for default roles based on Request Types● GRC screen customizations, portal and HANA connectivity, notifications customization

● Develop and implement User Access Reviews workflows, processes and best practices● GRC SME● Analyze, debug and fix issues with portal provisioning from GRC● Analyze and rectify user synchronization across landscape of over 70 systems● Develop a solution to implement export controls on users based on LDAP updates● Analyze and rectify repository synchronization issues across the landscape● Manage incidents on HPQC and ITSM as part of cutover and go-live efforts● Implement enhancements to the GRC workflows, create and manage transports and perform QA testing on various changes

● GRC Subject Matter Expert and Security lead ● Develop workflows, BRF+ designs and best practices for implementation● Manage onshore and offshore teams to develop GRC workflows, security roles and perform user acceptance testing and integration testing ● Coordinate with business teams to derive requirements, technical specifications and business processes ● SAP integration lead for Sailpoint IIQ to SAP GRC integration ● Conduct workshops and working sessions with customer teams and Accenture teams● Work closely with Java development team to integrate WSDL into Sailpoint IIQ in order to transmit bidirectional data via PI to SAP GRC ● Participate in security activities on HANA, ECC, CRM and Portal systems● Lead effort in defining business requirements for FERC, NERC and CIP compliance initiatives ● Develop security role changes to take into account FERC, NERC and CIP requirements● Organize rule set remediation workshops, engage business process leads to identify risks that need to be remediated, and mitigated ● Define best practices for day-to-day sustainability efforts for post go live support● Work with the implementation partner to develop security designs for SAP roles, including Portal and BI, as well as to integrate SAP with Sailpoint IIQ ● Configured SAP security roles for Fiori Gateway and backend access

● Assisted in the upgrade from BPC 7.5 to BPC 10.1● Integrated BPC 10.1 with SAP GRC 10.1 for user provisioning● Performed knowledge transfer to customer teams on security concepts related to BPC 10.1● Identified processes for user access requests that incorporated BPC● Participated in security cleanup activities as part of the migration● Worked closely with BPC SME to ensure that teams, appsets, tasks, task profiles, and other configuration were properly represented and migrated in BPC 10.1

● Audited and examined GRC 10.0 implementation and performed the fit-gap analysis ● Setup decentralized firefighter for use across the enterprise● Conducted meetings, demonstrations and proof of concepts of various aspects of GRC so that the customer could decide on the course forward ● Configured MSMP workflows with custom BRF+ initiators and agents to address the client requirements, as well as to create customized workflows for customer needs● Developed documentation to support the client knowledge transfer ● Debugged various technical issues with the implementation and provide solutions, workarounds or best practice approaches● Worked with security to identify missing authorizations and configured custom GRC roles for the client environment

Performed configuration of the GRC 10.1 system, specifically ARA, EAM, BRM and ARQDebugged various technical issues with the implementation and provide solutions, workarounds or best practice approachesConducted meetings, demonstrations and proof of concepts of various aspects of GRC so that the customer could decide on the course forwardWorked with SAP on various fixes to address errors in the implementation, worked extensively with HPQC to document bugs, test cases and defects.Developed documentation to support the client knowledge transferConfigured HR triggers to allow new user creation and termination via GRC 10 when the user is created in HRConfigured BRM to use business roles, derived roles with org maps, custom naming convention, custom role creation methodology, custom approval processes using BRF+ and custom methodologies using condition groupsConfigured MSMP workflows with custom BRF+ initiators and agents to address the client requirements, as well as to create customized workflows for customer needsWorked with the client teams to execute testing exercises such as FUT, OQ, and PQ testingDebugged issues with EUP customization, background job errors, MSMP errors and other errors that required SAP notes to be implementedWorked closely with security to identify missing authorizations and configured custom GRC roles for the client environmentSetup UAR and SoD reviews and debugged various issues with BASIS on performance and background jobs

Scoped the GRC 5.3 landscape to assess the upgrade effort to 10.1Conducted workshops with the client to determine pain points, develop KDDs and other project documentation for the projectEvaluated the GRC 5.3 system to determine the fit-gap analysis for the GRC 10 upgrade

Reviewed the existing GRC 5.3 implementation to scope the upgrade path to GRC 10.1Created project plans, blue print documents and related change management documentation for the projectTechnical installation and configuration of sandbox, development, QA and production environments for GRC 10.1Conducted a data migration and upgrade of GRC 5.3 to GRC 10.1Worked with client to define business processes that utilize GRC in their environment. Scrapped GRC 5.3 upgrade and conducted a clean implementation of GRC 10.1Extensive screen customizations (SE80) and End user personalizationLandscape included ECC, CRM and APOIntegrated GRC 10.1 with LDAPSetup end user logon for self service password resets and new user requestsImplemented ARA, SPM, BRM and ARQCustom BRF+ flat rule development to account for client specific customizationsWorkflow customizations to enable automated Firefighter provisioning and log review processCreated training material for knowledge transfer in the form of videos and how-tosExecuted business workshops for rule set customizationEngaged the business to customize the risk analysis rule set, define business processes for continuous compliance, defined mitigating controls, and engaged the business in the workflow approval processIdentified custom transactions and custom risks that had been identified by the businessReprioritized risks based on business needWorked with SAP to resolve newly discovered issues in GRC 10.1 with LDAP and GRC 5.3 to 10.1 technical upgradesWorked with the SAP HANA team to implement SAP HANA integration with GRC

Upgraded from GRC 5.3 to GRC 10 SP12Debugged GRC 5.3 production issuesDefined best practices and revise existing processes in regards to new features in GRC 10Implemented workflows and migrate from 5.3 to 10Extracted GRC 5.3 Access Control data, with transformations and filters using the data migration tool , and import into GRC 10Worked with the SOX team to review business key controls within Process Controls 10Debugged issues due to authorizations related to Process Controls

Project planning, team management and client management of the GRC project at the clientIdentified hardware, team personnel and goal and deliverables for the execution of the project planConducted kick off meetings, update client dashboards and participate in client meetingsInstallation, configuration and upgrades of GRCFND_A and related plugins, notes and service packsIdentified security related issues at the client site, debug security issues, manage GRC roles and processes with BASIS

Installation, configuration and customization of GRC 10 SP13Customization and configuration of the rule setConducted workshops with the business to identify false positives, tighten up the rule set, configure functions and create custom risksConducted workshops with the business to define mitigating controls, processes to manage controls, change management processes and role remediation processesWorked closely with security to identify specific authorization objects that are used to identify risks and then work with business leads to determine functionality that would contribute to risksImplemented GRC 10 to IdM 7.2 integrationConfigured GRC web services and automatic provisioningWorked closely with internal audit to address escalations, SoD detours, mitigating controls and approval processes

Implemented SAP GRC 10 Access Controls and Process Controls. Performed upgrade of ruleset from GRC 5.2 to GRC 10, configured and implemented BRF workflows. Led the Role Redesign project on ECC and CRM to address large number of SoDs within SAP security roles, as identified due to the GRC 10 implementationAssisted in the upgrade from SAP 4.7 to ECC 6Determined cause and find solution to a variety of GRC issues in Access Enforcer and Compliance Calibrator. Develop SoD rules based on audit findings and recommend best practices to client.Implemented role changes based on SoD findings. Manage Firefighter usage and log management.Conducted day to day security activities on ECC, CRM and BIReviewed key controls, distinguished between risk based controls and key business controls, and defined roadmap to utilize Access Controls and Process Controls within the organizationInstalled and configured Process Controls 10 to illustrate key functionality to the clientConfigured of default rules as delivered by SAP, and then upgrading them to the existing GRC 5.2 rulesetInitiated, conducted and managed meetings with the business around risks that need to be controls using mitigating controlsDay to day management of offshore resources in SoD reporting, and addressing of SoD issues that had arisenWorked with manager to establish processes for role changes, rule changes in RAR and identify procedures to follow for the businessIdentified and fixed a host of implementation issues on the client’s GRC 5.2 implementationIntegrated APO and CRM into the GRC landscapeImplemented organizations, sox and non-key regulations and related controls within Process Controls to demonstrate manual, semi-automatic and automatic controlsHelped define roadmap for usage and implementation of GRC Process Controls within the organization

End to End security design and implementation on ECC 6, SRM 7, BPC 7 and BI 7. Security on AS Java and AS ABAP. Deployed IdM 7.1, CUA and SSO in the SAP landscape.Installed and configured IdM 7.1, and configured CUA across the AS Java and AS ABAP stacksManaged client expectations, and worked with the client in configuring IdM to reflect their business need.Interacted with BASIS and database teams to determine the optimal landscape, and database types required for IdMConducted security workshops with the functional teams to determine position to function matrixAnalyzed customer needs to determine complexity of required security, and determine best architecture to useConfigured CUA across the AS ABAP landscapeConfigured and administered security on Portal using UME as well as via ABAP group mappingCreated Java roles, ABAP roles to Java group mapping, and automated Java role assignments based on CUA user creation

As a vice president, it is my responsibility to make many of the day to day direction based decisions of the company, from new customers to how we approach our sales. My job is also as a consultant, to be on site and work with my customers to satisfy their needs, while ensuring that our own corporate goals are met or exceeded.

Implemented SAP GRC AC 5.3

Implemented GRC 5.3. Assisted in BI 7 security upgrade using analysis authorizations. Customized Portal security to include GRC 5.3.Implemented Risk Analysis and Remediation, Super User Provisioning, Compliant User Provisioning and Enterprise Role ManagmementWorked with BASIS to install RTAs on ECC boxesImplemented role based SUPConfigured background jobs to run periodic reports and update management reportsAdvised client on process by which to address SoDs based on input from internal auditManaged multiple rule sets, rule customizations, mitigating controls, and critical transactionsImplemented workflows using modified workflow processes based on existing user provisioning processesAdvised client on path to implementation of Process ControlsCustomized GRC roles for Portal use via UMEConfigured ERM in the environment for role creation and management

Implemented GRC 5.2. Upgraded security from 4.7 Enterprise to ECC 6.Implement GRC Access Controls suite including Compliance Calibrator (Risk Access and Remediation), Firefighter (Superuser Provisioning), Role Expert (Enterprise Role Management) and Access Enforcer (Compliant User Provisioning)Rule customization based on customer specificationsConducted workshops to define the customizations, and the ownership of the GRC implementationDeveloped SAP security processes that outlined the CUP workflows so as to ensure continuous complianceWorked with customer to ensure best practices were followed

Compliance and Security Lead to implement FERC guidelinesDefined new Roles, redesigned the existing definitions and built smaller meaningful roles based on the concentration of job duties as defined by FERC guidelines, and as outlined in CISSP Worked with compliance and security teams to configure IS-U security (Energy Data Management). Analyze, assign, delimit and create roles in a position based security model. Evaluate new security requests and approve or reject them based on FERC rulesWorked with SAP Check indicator defaults and customized them based on the client’s security model. Analyzed all business roles and mapped business roles to transaction codes according to Business processes.Designed and configured security roles to support corporate business processes, defined positions and developed structural authorizations for the security model.Transported the generated roles and profiles using SAP Transport Management System (STMS).Identified critical transactions and auth objects and monitored their assignments. Used SM19 and SM20 to audit user activity during a firefighter role assignment.Worked with derived roles and various org level objects. Performed Unit Testing on the roles.Worked with the PM’s to assess the validity of the project timeline, help define timelines for deliverables, and work with the rest of the security team members to delegate deliverables.Engaged in role redesign in the R/3 environment to handle SODs in existing roles for compliance purposes.Worked with Internal Audit team to define mitigation controls and translated these controls to table entries in Compliance Calibrator for continuous monitoring.Provided End user Technical support and change control

Security upgrade and support from 4.6C to ECC6. Day to day troubleshooting of security problems.Configured security roles using Profile Generator. Developed new single and composite roles and conducted a positive and negative test on ECC 6 for team approval before transporting to Production. Used PFCG to examine authorizations in existing roles to identify improper authorizations and correct them. Updated the check indicators and transported the corresponding tables across clients to remove certain redundant authorization checks.Worked on Role definitions based on the inputs provided by the client and defining the Role Matrix in MS Excel. Created numerous spreadsheets to analyze various roles, their transactions and values at the field level. Assisting Role Owners and functional teams on defining and testing new roles.Involved in mass transports as a part of the pre GO-LIVE activity. Worked with the ABAP team to ensure that ABAP code properly enforced auth. Check before execution of program.Created Mitigation controls, Mitigation Owners and Alerts in Compliance Calibrator to monitor critical transaction usage.Maintained and monitored system parameters to avoid any security breach.Involved in GO LIVE support. Planned and performed the Post upgrade activities.

Provided complete SAP Security support for prd and dev environments in HR, SRM, CRM and BI. Led the process development from a tech perspective. SME for SAP GRC implementation, implemented Compliance Calibrator, Firefighter and Role Expert.Upgraded security from 4.6C to 4.7 Enterprise. Implemented SAP GRC.Maintained and modified existing SAP roles, Authorizations, Segregation of duties (SOD) conflicts for sensitive transaction access.Used remedy to support help desk and call center functionsConfigured and used Compliance Calibrator 4.0 to identify SOD issues in roles.Provided support to the Business and IT staff for security related issues and requests. Worked with Business Owners to define the authorizations needed for users. Please review resume for full experience at this project.

SAP Security administrator for HR and R/3 4.7 Enterprise. Responsible for day to day security, HR structural authorization management, customization and new position development.Creation of roles, customizing authorizations and creation of new positions in the org structureUsed tcode PA30 to assign users to different positions in the structureDebugged issues in the HR structure with tcode OOSPUsed PFCG to create HR specific roles by customizing objects P_ORGIN, P_TCODE and PLOG

Dealt with Sarbanes Oxley (SOX) section 404 - Segregation of duties (SODs), SAP security architecture and implementationRedesigned security roles to be process stream oriented, and compliant based on SOXWorked on SOD audit issues for SOX Compliance and for SOD access removal extensively using VIRSA Tools for Compliance. Worked simultaneously on maintenance of R/3 security on release 4.5b as part of the core SAP security teamWorked closely with SAP Business Design specialists in order to implement the suitable remediation process transparent to the users. Worked with the Audit team and the monitoring team and coordinated information among all the SAP Core teams Configured Compliance Calibrator, used Rule Architect, developed rules and transported the rule matrices across the landscape Worked with Firefighter to monitor and log transaction usage and emergency access assignment. Defined mitigation controls using Compliance CalibratorWorked with Business specialists to create roles and resolve conflicts for SOD compliance. Developed an MS Access Database for Role accountability and ease of User AssignmentManaged user assignments to comply with SOD. Transported profiles between clients within an R/3 system and between R/3 systems Planned and performed structural authorizationsWorked on streamlining and reclassification of user groups for easier addressing of issues and user administration. Cleaned up roles and profiles that were obsoleteInvolved in knowledge transfer to peers and new recruits.