|
List Info Thread: SAP Security consultant available for project in California only
[1]
|
||||||||||||
|
about | contact Other archives ( Real Estate discussion Medical topics ) |
||||||||||||
SAP Security consultant available for project in California only |
|
List Info Thread: SAP Security consultant available for project in California only
[1]
|
||||||||||||
|
about | contact Other archives ( Real Estate discussion Medical topics ) |
||||||||||||
dgntechnologies.com
DGN
Technologies, Inc.
480-704-4582
EXPERIENCE SUMMARY
· Overall 8+ years experience in SAP R/3 Application
Security as SAP R/
3 Security Administrator.
· Work experience of SAP R/3 releases 3.1G, 4.0B, 4.5B,
4.6C, 4.7, ECC
5.0 and ECC 6.0.
· Security Upgrade experience from 4.0x or 4.5x to 4.6A/B,
ECC 5.0.
· Experience with SAP Application Security design,
development and
administration of R/3 environment for the following modules
FI-CO, SD,
MM, PP, CRM, SRM, SCM and SAP BWBI.
· Experience in Design, Developing, Testing and implementing
SAP
Security Roles, Profiles and Authorizations for various
landscapes
using Profile Generator (PFCG).
· Remediation of Segregation of Duties (SOD) within SAP
implementation, VIRSA Systems VRAT 4.0, 5.1 and 5.2 tools
(Compliance
Calibrator, Access Enforcer, Fire Fighter and Role Expert).
· Expertise in analyzing and translating business
requirements into
technical specifications in collaboration with application
developers.
· Experience designing various kinds of roles (Reference
Roles,
Derived Roles and Composite Roles designing) using Profile
generator
(PFCG).
· Experience in SAP Security related task such as SOX
(Sarbanes Oxley)
Compliance.
· Experience setting up users and security on Enterprise
Portal.
· Experience in setting up Central User Administration (CUA)
and
maintenance.
· Creating users/user groups through UME for SAP Netweaver.
· Business Warehouse 3.0 experience defining BW custom
reporting
authorization objects.
· Excellent skills in preventing, mitigating and
compensating controls
to ensure the appropriate level of protection and adherence
to the
goals of the overall SAP security strategy.
· Knowledge in creation of Multiple R/3 User IDs using
CATT/LSMW
Scripts.
· Experience in user administration 24x7 on call production
support,
quick turn around for end user requests, and helpdesk
support for user
administration.
· Self starting, highly dependable results oriented SAP
Security
Functional Analyst with hands on R3 implementation, system
enhancements and production support responsibilities.
WORK EXPERIENCE SUMMARY
· South California Edison (SAP R/3 Security
Administrator) Jan
2007 - Present
· eBay Inc., CA (SAP R/3 Security Administrator)
Oct
2006 - Jan 2007
· Altera Corp., CA (SAP R/3 Security Administrator)
May 2006 - Oct 2006
· Adobe Systems Inc., CA (SAP R/3 Security
Administrator) Feb 2004 - May 2006
· Virco Manufacturing Inc., CA (SAP R/3 Security
Administrator) Feb 2003 - Jan 2004
· Infosys Technologies Ltd. (Software Engineer)
Aug
1999 - Feb 2003
TECHNICAL SKILLS
SAP: SAP R/3 3.1G, 4.0B, 4.5B, 4.6C, 4.7, ECC 5.0 and
ECC 6.0.
SAP BW 3.1, 3.5 and BI 7.0, CRM 5.0, SRM 5.0, SCM 5.0, EP
6.0
SAP TOOLS: VIRSA - VRAT 4.0, 5.1, 5.2 (Compliance
Calibrator, Access
Enforcer, Fire Fighter and Role Expert), PFCG, CUA 6.4
DATA BASE: MSSQL, SQL Server 2000, Oracle 8i/9i.
OFFICE TOOLS: MS Office Suite (Word, Excel, Power Point),
Office 12
(2007 Beta).
LANGUAGES: UNIX, C, C++, JAVA.
TESTING TOOLS: WinRunner, Bugzilla, Test Director 7.0,
and Quality
Center 9.0.
GUI TOOLS: Visual Basic 5.0/6.0 and Java Swings.
WEB TECHNOLOGIES: HTML, ASP, XML, UML.
MAIL CLIENTS: Lotus notes 6.1, Outlook Express.
OS: Windows 9x/NT/2000/Me/XP/VISTA (beta), UNIX, MAC
(Leopard,
Tiger, Panther)
PROFESSIONAL EXPERIENCE
SOUTH CALIFORNIA EDISON
SAP Security Administrator and Development Support
Jan 2007- Present
Irwindale, CA
Environment:
SAP ECC 6.0, BI 7.0, CRM 5.0, SRM 5.0, SCM 5.0, EP 7.0, XI,
SD, MM, FI
CO, HCM, SAP-GRC Compliance Calibrator 5.2 and Win XP SP2.
Description:
The scope of the project is to ensure the brand new
implementation of
SAP. The Security Team was responsible for ensuring Role and
Position
based security for SD, MM, FI-CO, CRM, SRM, SCM, HCM and BI
modules.
Also remediation of Segregation of Duties using Compliance
Calibrator.
The day to day activities involved not only the role
changes, but also
the regular development environment support.
Responsibilities:
· Responsible for day to day technical support and
resolution of
security issues, trouble shooting R/3 and Portal security
problems.
· Assisted with review of SAP menu and role changes and
impact on
security/authorizations including strategy for attaching
area menus to
SAP standard versus User area menus.
· Created and modified Single roles, Composite roles and
Derived roles
using automatic profile generator (PFCG) to meet business
requirements
by making sure users do not get more authorizations than
needed or
assign missing authorizations to perform their tasks.
· Creating and modifying the roles as per the SOD and SOX
matrix
prepared by the Audit team.
· Provided daily security and authorizations management of
SAP R/3 SD,
MM, FI-CO and BWBI systems.
· Documented the Role Matrix procedure for different modules
and
business processes , new user request from and security
profile
maintenance procedure
· Involved in the identification of Key controls, Risks and
SOD issues
using Compliance Calibrator.
· Performed user administration activities for R/3 and
portal such as
setting up user login Ids and assigning and resetting
passwords,
locking and unlocking users.
· Troubleshoot user roles, security authorization objects
and
authorizations to resolve security conflicts using
transactions SUIM,
SU53 and ST01.
· Perform reconciliation of user master record and roles
using PFUD
and SUPC.
· In BW security created roles and authorization based on
the Info
Cube and Info Area level.
· Involved with technical team in setting up SAP system for
auto log-
out, password length and expiration and specifying
impermissible
passwords.
· Created Custom Authorization Object suing SU21.
· Used SU24 and maintained check indicators for Transaction
codes.
· Download User/Role tables (USR02, AGR* etc) using SE16
into Excel
and sort (Slice/dice) data as needed.
· Ensure that security authorization procedures are adhered
to and
that users do not receive authorizations that are outside of
company
guidelines.
EBAY INC.
SAP Security Administrator and Production Support
Oct 2006 - Jan 2007
San Jose, CA
Environment:
SAP ECC 5.0, R/3 Enterprise Edition 4.7, BI 3.1, SD, MM,
FICO, and
Win XP SP2.
Description:
The scope of the project is to provide production support to
the
already implemented SAP. The audit team suggested changes
based on SOD/
SOX and made changes in already existing Roles accordingly.
The day to
day activities involved not only the role changes, but also
the
regular production support for the already successfully
running SAP R/
3 implementation.
Responsibilities:
· Creating and modifying the roles as per the SOD and SOX
matrix
prepared by the Audit team.
· Responsible for day to day technical support and
resolution of
security issues, trouble shooting R/3 security problems.
· Assisted with review of SAP menu and role changes and
impact on
security/authorizations including strategy for attaching
area menus to
SAP standard versus User area menus.
· Created and modified Single roles, Composite roles and
Derived roles
using automatic profile generator (PFCG) to meet business
requirements
by making sure users do not get more authorizations than
needed or
assign missing authorizations to perform their tasks.
· Provided daily security and authorizations management of
SAP R/3 SD,
MM, FI-CO and BWBI systems.
· Documented the Role Matrix procedure for different modules
and
business processes , new user request from and security
profile
maintenance procedure
· Involved in the identification of Key controls, Risks and
SOD
issues.
· Performed user administration activities such as setting
up user
login Ids and assigning and resetting passwords, locking and
unlocking
users.
· Identifying Security's Key Role in Maintaining
Sarbanes-Oxley
Compliance (SOX).
· Troubleshoot user roles, security authorization objects
and
authorizations to resolve security conflicts using
transactions SUIM,
SU53 and ST01.
· Perform reconciliation of user master record and roles
using PFUD
and SUPC.
· In BW security created roles and authorization based on
the Info
Cube and Info Area level.
· Involved with technical team in setting up SAP system for
auto log-
out, password length and expiration and specifying
impermissible
passwords.
· Used SU24 and maintained check indicators for Transaction
codes.
· Download User/Role tables (USR02, AGR* etc) using SE16
into Excel
and sort (Slice/dice) data as needed.
· Ensure that security authorization procedures are adhered
to and
that users do not receive authorizations that are outside of
company
guidelines.
ALTERA CORPORATION
SAP Security Administrator
May 2006- Oct
2006
San Jose, CA
Environment:
SAP ECC 6.0, R/3 Enterprise Edition 4.7, BI 7.0, SD, MM,
FICO, CRM,
SRM, Enterprise Portal and Win XP SP2.
Description:
The scope of the project is to implement SAP Security for
SAP R/3 for
SD, MM, FI-CO, CRM, SRM, BW 3.1, 7.0 modules. Remediation
of
Segregation of Duties using Virsa Tools.
Responsibilities:
· Ensure segregation of duties (SOD) exits in the SAP
systems using
the VIRSA systems VRAT tools (Compliance Calibrator and
Fire
Fighter).
· Participated in designing, writing and implementing
security related
standard procedures for the user administration, roles and
profile
generation.
· Created and modified Single roles, Composite roles and
Derived roles
using automatic profile generator (PFCG) to meet business
requirements
by making sure users do not get more authorizations than
needed or
assign missing authorizations to perform their tasks.
· Documenting the role - transaction matrix, after
interacting with
Business Process Experts.
· Provided daily security and authorizations management of
SAP R/3 SD,
MM, FI-CO and BWBI systems.
· Create new users (Dialog, Batch etc) and maintain user
master record
using SU01.
· Performed user administration activities such as setting
up user
login Ids and assigning and resetting passwords, locking and
unlocking
users.
· Creation, Modification and Assignment of Roles/Profiles to
users
using PFCG after running reports on Compliance Calibrator.
· Developing SOD matrix with cooperation of functional
people.
· Identifying Security's Key Role in Maintaining
Sarbanes-Oxley
Compliance (SOX).
· Analyze Root Cause of Authorization Problems and fix the
missing
authorizations.
· Troubleshoot user roles, security authorization objects
and
authorizations to resolve security conflicts using
transactions SUIM,
SU53 and ST01.
· Help test roles and authorizations in QA environment.
· Involved in Enterprise Portal Security.
· Creating users through UME for SAP Netweaver.
· Experience in setting up Central User Administration (CUA)
and
maintenance.
· Providing production support security by handling call
tickets and
change request forms in Remedy system
· Perform reconciliation of user master record and roles
using PFUD
and SUPC.
· In BW security created roles and authorization based on
the Info
Cube and Info Area level.
· Involved with technical team in setting up SAP system for
auto log-
out, password length and expiration and specifying
impermissible
passwords.
· Used SU24 and maintained check indicators for Transaction
codes.
· Download User/Role tables (USR02, AGR* etc) using SE16
into Excel
and sort (Slice/dice) data as needed.
· Ensure that security authorization procedures are adhered
to and
that users do not receive authorizations that are outside of
company
guidelines.
ADOBE SYSTEMS
SAP Security Administrator
Feb 2004-
May
2006
San Jose, CA
Environment:
R/3 Enterprise Edition 4.6B, ECC 5.0, Netweaver 2004, BW
3.1, SD, MM,
FI-CO, Win XP SP2, Mac.
Description:
The scope of the project was to upgrade from SAP R/3 release
4.6B to
ECC 5.0 and implement SAP Security for SAP R/3 for BW, MM,
SD, PP and
FI-CO. Extensively worked on Remediation of Segregation of
Duties.
Responsibilities
· Analyzed and evaluated the technical security requirements
for SAP R/
3 Security.
· Designing and documenting security administration policies
and
procedure for the production environment.
· Involved in war room activities during Go Live and post go
live
production support for over 6000 end user community after
Adobe
Macromedia acquisition.
· Extensively used Profile Generator (PFCG) to create single
roles and
derived roles /profiles for various modules such as BWBI,
FI-CO, MM,
PP and SD.
· Created new users (Dialog, Batch etc) and maintain user
master
record using SU01.
· Created derived roles and authorization profiles for the
various
centers located at different geographical locations in
development
system.
· Used Transport Management System (STMS) to perform
transports
between clients within R/3 system.
· Experience in Netweaver for handling user maintenance
through UME.
· Designed both Info Object level security and Info Cube
level
security for various functional groups to access queries,
reports and
data in BW. Discussed with module owners to create new roles
and fix
authorization issues.
· Troubleshoot security/authorization related problems using
user
information system (SUIM) and Display Authorization Data
(SU53).
· Worked on SAP Check Indicator Defaults, Field values, and
maintained
check indicators for Transaction codes using (SU24).
· Adhere to company policies and ensured proper approval
before
granting critical and restricted access to users.
· Used System Trace (ST01) to record authorization checks in
different
sessions.
· Help test roles and authorizations in QA environment.
· Fixing end user Roles/Profiles based on Change Requests
crated for
breaks/fixes.
· Work with Functional specialists to help them understand
what SAP
authorization objects are causing the conflicts and what all
options
exist for mitigating the conflicts.
· Involved with technical team in setting up SAP system for
creating
mass users, deleting mass users, locking and unlocking mass
users
using SU01.
· Analyze Root Cause of Authorization Problems and fix the
missing
authorizations.
· User support, resolve end user problems on day-to-day
basis.
· Profile Maintenance: Maintained all the instance profiles
in DEV and
PRD systems.
· Used SU24 and maintained check indicators for Transaction
codes and
activating and deactivating the Authorization Objects
VIRCO MANUFACTURING INC., CA
SAP Security
Administrator
Feb 2003 - Jan 2004
VIRCO Manufacturing Inc, Torrance,
CA
Environment:
SAP R/3 4.6B, SRM 3.0, FI-CO, SD, MM, SAP CRM ISA, EP,
Oracle8i, Win
XP SP2
Description:
The scope of the project was to implement SAP Security for
SAP R/3 for
MM-PUR, SD, PP-MRP, WM and FI-CO. Also to maintain different
SAP
delivered /Custom Authorizations to give different
Privileges for
different Users in SAP systems.
Responsibilities
· Extensively interacted with the functional teams in the
process of
creation of roles Matrices for the SD/MM modules.
· Extensively used Profile Generator (PFCG) to create single
roles,
composite roles and derived roles /profiles for various
modules such
as SRM, FI-CO, MM and SD.
· After Proper AUDIT of the security roles, transport of
these roles
in to the QA Environment.
· Extensively worked on Authorization objects, fields,
authorizations,
authorization profiles.
· Developed control and strategy with focus on SOX.
· Assigning transactions in roles as per business
requirements and
setting up authorization fields.
· Worked on CUA administration and maintenance.
· Experience setting up users and security on Enterprise
Portal.
· Used Profile Generator to effectively restrict user access
to
specific Business Areas.
· Troubleshoot existing user roles, security objects and
authorizations to resolve security conflicts, supporting
users,
setting up new accounts, password resets.
· Designing and documenting security administration policies
and
procedure for the production environment.
· Troubleshoot security/authorization related problems using
user
information system (SUIM) and Display Authorization Data
(SU53).
· Used System Trace (ST01) to record authorization checks in
different
sessions.
· Work with Functional specialists to help them understand
what SAP
authorization objects are causing the conflicts and what all
options
exist for mitigating the conflicts.
· Set up authorizations using HR authorization objects
· Used Transport Management System (STMS) to perform
transports
between clients within R/3 system.
· Involved with technical team in setting up SAP system for
creating
mass users, deleting mass users, locking and unlocking mass
users
INFOSYS TECHNOLOGIES LTD.
Software Engineer
Aug
1999 - Feb 2003
Infosys Technologies Ltd., Bangalore, India
Environment:
SAP R/3 3.1G, 4.6B, FI-CO, SD, MM, PP, WM, Oracle 8i/9i, Win
2000, Me
Description:
The scope of the project was to implement SAP Security for
SAP R/3 for
SD, MM, PP, WM and FI-CO. Also to maintain different SAP
delivered /
Custom Authorizations to give different Privileges for
different Users
in SAP systems.
Responsibilities
· Worked with the business managers in defining access
requirements
for end users, maintain role design and worked with
Functional team
members to set up end user roles.
· Identify and maintain secured transactions, manage and
maintain
access to development, quality and training instances.
Created over
240 job roles in SD, FI, MM, PP and WM.
· Fixing end user roles/profiles based on changes requested
by role
owners.
· Worked with functional team leads to identify and add
custom
transactions into appropriate roles.
· Documented the procedure for all SAP tasks process and
controls.
· User Administration and Password Management (Expiry of
users and
Profiles).
· User support, resolve end user problems on day-to-day
basis.
· Troubleshoot R/3 security problem by using different
scenario such
as system trace, parameter change, buffer reset, debugging
of ABAP/4
program, SU53 and SU56 in order to find security problem.
· Involved in security Integration Testing and rectification
of
problems and updating the roles accordingly.
· Used system traces (ST01) to troubleshoot authorization
issues.
· Ran security reports for critical transactions and objects
using
SUIM.
· Worked on SAP Check Indicator Defaults and Field values,
reduced the
scope of Authorization checks using transaction SU24 and
maintained
check indicators for TCodes.
· Created users, roles and assigned appropriate privileges.
· Transported these Roles to Quality Assurance System (QAS)
and
initiating the testing process of these Roles by assigning
the
intended roles to test users and monitoring and trouble
shooting the
authorization failures during testing.
· After ensuring the intended functionality of these Roles,
transporting these objects to Production system (PRD) and
assigning to
users during implementation
· Transported Roles between clients and R/3 systems like
DEV, QAS and
PRD.
· Performed positive and negative testing of the
created/updated
roles.
· Involved in war room activities during Go Live and post go
live
production support for over 2000 end user community.
· Used SU10 for mass maintenance of users.
PROFESSIONAL TRAINING / CERTIFICATION:
· Bachelor of Engineering, NITK Surathkal, Karnataka, India
(Among Top
10 colleges in India) securing First Class with Distinction
with CGPA
4.5/5
· Extensive training in SAP Security, SAP SD, BW, and ABAP.
· Training in Java, Oracle, UNIX, C and VB.
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the
Google Groups "C# Developers" group.
To post to this group, send email to CSDevelopers