Contact: 480-704-4582 email: jasleen dgntechnologies.com">jasleendgntechnologies.com Contact: Jaz
G.V.KRISHNA ; ; ; ;
;
Contact: Jasleen email: jasleendgntechnologies.com">jasleendgntechnologies.com Phone: 480-704-4582
EXPERIENCE SUMMARY
·
Overall 6+ years experience SAP R/3 Security Administrator
.
·
Indepth knowledge of SAP R/3 Releases 3.1G
, 4.0B, 4.5B, 4.6C, 4.7, ECC 5.0 and ECC 6.0.
·
Security Upgrade experience from 4.0x or
4.5x to 4.6A/B, ECC 5.0.
·
Experience with SAP Application Security
design, development and administration of R/3 environment for the following modules FI-CO
, SD, MM, PP.
·
Experience in Design, Developing, Testing and implementing SAP Security Roles, Profiles and Authorizations for various landscapes using Profile Generator (
PFCG).
·
Remediation of Segregation of Duties (SOD) within SAP implementation,
VIRSA Systems VRAT tool (Compliance Calibrator, Access Enforcer, Fire Fighter and Role Expert).
·
Expertise in analyzing and translating business requirements into technical specifications in collaboration with application developers.
·
Experience designing various kinds of roles (
Reference Roles, Derived Roles and Composite Roles designing) using Profile generator (PFCG
).
·
Experience in SAP Security related task such as SOX (
Sarbanes Oxley) Compliance.
·
Experience setting up users and security
on Enterprise Portal.
·
Experience in setting up Central User Administration (
CUA) and maintenance.
·
Excellent skills in preventing, mitigating
and compensating controls to ensure the appropriate level of protection and adherence to the goals of the overall SAP security strategy.
·
Knowledge in creation of Multiple R/3 User IDs using CATT
Scripts.
·
Experience in user administration 24x7 on call production support, quick turn around for end user requests, and helpdesk support for user administration.
·
Self starting, highly dependable results oriented SAP Security Functional Analyst with hands on R3 implementation, system enhancements and production support responsibilities.
·
TECHNICAL SKILLS
SAP: ; ; ; ; ; ;
SAP R/3 3.1G, 4.0B, 4.5B, 4.6C, 4.7, ECC 5.0 and ECC 6.0.
; ; ; ; ; ; SAP BW 3.1, 3.5 and 7.0, SAP EP 6.0
SAP TOOLS:
; ; ; ; ; VIRSA - VRAT 4.0, 5.1
(Compliance Calibrator, Access Enforcer, Fire Fighter and Role Expert),
PFCG, CUA
DATA BASE:
; ; ; ; MSSQL, SQL Server 2000, Oracle 8i/9i.
OFFICE TOOLS:
; ; ; ; MS Office Suite (Word, Excel, Power Point), Office 12 (2007 Beta).
TESTING TOOLS:
; ; ; WinRunner, Test Director
7.0, and Quality Center 9.0.
GUI TOOLS:
; ; ; ; Visual Basic 5.0/6.0 and Java Swings.
WEB TECHNOLOGIES:
; ; ; HTML, ASP, XML, UML.
MAIL CLIENTS:
; ; ; Lotus notes 6.1, Outlook Express.
OS:
; ; ; ; ; Windows 9x/NT/2000/Me/XP/VISTA (beta), UNIX, MAC (Leopard, Tiger, Panther)
PROFESSIONAL EXPERIENCE
SAP Security Administrator and Production Support
; ;
; ; Jan 2007- Present
Aerospace &
Defence client
Environment:
SAP ECC 5.0, R/3 Enterprise Edition 4.7, SD, MM, FICO, and Win XP SP2.
Description:
The scope of the project is to provide production support to the already implemented SAP. The audit team suggested changes based on SOD/SOX and made changes in already existing Roles accordingly. The day to day activities involved not only the role changes, but also the regular production support for the already successfully running SAP R/3 implementation.
Responsibilities:
· Creating
and
modifying the roles as per the SOD and SOX matrix prepared by the Audit team.
· Responsible for day to day
technical support and resolution of security issues,
trouble shooting R/3 security problems.
· Assisted with review of SAP menu and role changes and impact on security/authorizations including strategy for attaching area menus to SAP standard versus User area menus.
· Created and modified
Single roles, Composite roles and Derived roles using automatic profile generator (PFCG) to meet business requirements by making sure users do not get more authorizations than needed or assign missing authorizations to perform their tasks.
· Provided daily security and authorizations management of
SAP R/3 SD, MM, FI-CO and BWBI systems.
· Documented the
Role Matrix procedure for different modules and business processes , new user request from and security profile maintenance procedure
· Involved in the identification of
Key controls, Risks and SOD issues.
· Performed user administration activities such as
setting up user login Ids and assigning and resetting passwords, locking and unlocking users.
· Identifying Security's Key Role in Maintaining Sarbanes-Oxley Compliance (
SOX).
· Troubleshoot user roles, security authorization objects and authorizations to resolve security conflicts using transactions
SUIM, SU53 and ST01.
· Perform reconciliation of user master record and roles using
PFUD and SUPC.
· In BW security created roles and authorization based on
the Info Cube and Info Area level.
· Involved with technical team in setting up SAP system for auto log-out, password length and expiration and specifying impermissible passwords.
· Used SU24
and maintained check indicators for Transaction codes.
· Download User/Role tables (
USR02, AGR* etc) using SE16 into Excel and sort (Slice/dice) data as needed.
· Ensure that security authorization procedures are adhered to and that users do not receive authorizations that are outside of company guidelines.
SAP Security Administrator
; ; ; ; ;
Oct 2006- Jan 2007
Silicon Laboratories Inc
Environment:
SAP ECC 6.0, R/3 Enterprise Edition 4.7, BI 7.0, SD, MM, FICO, CRM, SRM, Enterprise Portal and Win XP SP2.
Description:
The scope of the project is to implement SAP Security for SAP R/3 for SD, MM, FI-CO, CRM, SRM, BW 3.1, 7.0 modules. Remediation of Segregation of Duties using Virsa Tools.
Responsibilities:
· Ensure segregation of duties (
SOD) exits in the SAP systems using the VIRSA systems VRAT tools (Compliance Calibrator and Fire Fighter).
· Participated in designing, writing and implementing
security related standard procedures for the user administration, roles and profile generation.
· Created and modified Single roles, Composite roles and Derived roles
using automatic profile generator (PFCG) to meet business requirements by making sure users do not get more authorizations than needed or assign missing authorizations to perform their tasks.
· Documenting the role - transaction matrix
, after interacting with Business Process Experts.
· Provided daily security and authorizations management of
SAP R/3 SD, MM, FI-CO and BWBI systems.
· Create new users (Dialog, Batch etc)
and maintain user master record using SU01.
· Performed user administration activities such as setting up user login Ids and assigning and resetting passwords, locking and unlocking users.
· Creation, Modification and Assignment of Roles/Profiles to users using
PFCG after running reports on Compliance Calibrator.
· Developing SOD matrix with cooperation of functional people.
· Identifying Security's Key Role in Maintaining
Sarbanes-Oxley Compliance (SOX).
· Analyze Root Cause of Authorization Problems and fix the missing authorizations.
· Troubleshoot user roles, security authorization objects and authorizations to resolve security conflicts using transactions
SUIM, SU53 and ST01.
· Help test roles and authorizations in
QA environment.
· Involved in Enterprise Portal Security
.
· Creating users through
UME for SAP Netweaver.
· Experience in setting up
Central User Administration (CUA) and maintenance.
· Providing production support security by handling call tickets and change request forms in Remedy system
· Perform reconciliation of user master record and roles using
PFUD and SUPC.
· In BW security created roles and authorization based on the
Info Cube and Info Area level.
· Involved with technical team in setting up SAP system for auto log-out, password length and expiration and specifying impermissible passwords.
· Used SU24 and maintained
check indicators for Transaction codes.
· Download User/Role tables (USR02, AGR*
etc) using SE16 into Excel and sort (Slice/dice) data as needed.
· Ensure that security authorization procedures are adhered to and that users do not receive authorizations that are outside of company guidelines.
;
;
SAP Security Administrator
; ; ; ;
; ; ; Feb 2004- Oct 2006
GlobalSantaFe Corp.,
Environment:
R/3 Enterprise Edition 4.6B, ECC 5.0, Netweaver 2004, BW 3.1, SD, MM, FI-CO, Win XP SP2, Mac.
Description:
The scope of the project was to upgrade from SAP R/3 release 4.6B to ECC 5.0 and implement SAP Security for SAP R/3 for BW, MM, SD, PP and FI-CO. Extensively worked on Remediation of Segregation of Duties.
Responsibilities
·
Analyzed and evaluated the technical security requirements for SAP R/3 Security.
·
Designing and documenting security administration policies and procedure for the production environment.
·
Involved in war room activities during Go Live and post go live production support for over 6000 end user community after Adobe Macromedia acquisition.
·
Extensively used Profile Generator (PFCG) to create single roles and derived roles /profiles for various modules such as
BWBI, FI-CO, MM, PP and SD.
·
Created new users (Dialog, Batch etc) and maintain user master record using
SU01.
·
Created derived roles and authorization profiles for the various centers located at different geographical locations in development system.
·
Used Transport Management System (STMS) to perform transports between clients within R/3 system.
·
Experience in Netweaver for handling user maintenance through UME.
·
Designed both Info Object level security and Info Cube level security for various functional groups to access
queries, reports and data in BW. Discussed with module owners to create new roles and fix authorization issues.
·
Troubleshoot security/authorization related problems using user information system (SUIM) and
Display Authorization Data (SU53).
·
Worked on SAP Check Indicator Defaults, Field values, and maintained check indicators for Transaction codes using (SU24).
·
Adhere to company policies and ensured proper approval before granting critical and restricted access to users.
·
Used System Trace (ST01) to record authorization checks in different sessions.
·
Help test roles and authorizations in QA environment.
·
Fixing end user Roles/Profiles based on Change Requests crated for breaks/fixes.
·
Work with Functional specialists to help them understand what SAP authorization objects are causing the conflicts and what all options exist for mitigating the conflicts.
·
Involved with technical team in setting up SAP system for creating mass users, deleting mass users, locking and unlocking mass users
using SU01.
·
Analyze Root Cause of Authorization Problems and fix the missing authorizations.
·
User support, resolve end user problems on day-to-day basis.
·
Profile Maintenance: Maintained all the instance profiles in
DEV and PRD systems.
·
Used SU24 and maintained check indicators for Transaction codes and activating and deactivating the Authorization Objects
SAP Security Administrator
; ; ; ;
; ; ; Feb 2003 - Jan 2004
Global SantaFe Company
Environment:
SAP R/3 4.6B,
SRM 3.0
,
FI-CO, SD, MM, SAP CRM ISA, EP, Oracle8i, Win XP SP2
Description:
The scope of the project was to implement SAP Security for SAP R/3 for MM-PUR, SD, PP-MRP, WM and FI-CO. Also to maintain different SAP delivered /Custom Authorizations to give different Privileges for different Users in SAP systems.
Responsibilities
; ; ; ; ; ; ; ; ; ; ; ; ; ; ; ;
·
Extensively interacted with the functional teams in the process of creation of roles Matrices for the SD/MM modules.
·
Extensively used Profile Generator (PFCG) to create single roles, composite roles and derived roles /profiles for various modules such as
SRM, FI-CO, MM and SD.
·
After Proper AUDIT of the security roles, transport of these roles in to the QA Environment.
·
Extensively worked on Authorization objects, fields, authorizations, authorization profiles.
·
Developed control and strategy with focus on SOX.
·
Assigning transactions in roles as per business requirements and setting up authorization fields.
·
Worked on CUA administration and maintenance.
·
Experience setting up users and security
on Enterprise Portal.
·
Used Profile Generator to effectively restrict user access to specific Business Areas.
·
Troubleshoot existing user roles, security objects and authorizations to resolve security conflicts, supporting users, setting up new accounts, password resets.
·
Designing and documenting security administration policies and procedure for the production environment.
·
Troubleshoot security/authorization related problems using user information system (SUIM) and Display Authorization Data (SU53).
·
Used System Trace (ST01) to record authorization checks in different sessions.
·
Work with Functional specialists to help them understand what SAP authorization objects are causing the conflicts and what all options exist for mitigating the conflicts.
·
Set up authorizations using HR authorization objects
·
Used Transport Management System (STMS) to perform transports between clients within R/3 system.
·
Involved with technical team in setting up SAP system for creating mass users, deleting mass users, locking and unlocking mass users
;
; ;
Software Engineer ; ; ; ;
; ;
; ; ;
Aug 2001 - Feb 2003
Lyondell-Equistar Chemical Company
Environment:
SAP R/3 3.1G, 4.6B, FI-CO,
SD, MM, PP, WM, Oracle 8i/9i, Win 2000, Me
Description:
The scope of the project was to implement SAP Security for SAP R/3 for SD, MM, PP, WM and FI-CO. Also to maintain different SAP delivered /Custom Authorizations to give different Privileges for different Users in SAP systems.
Responsibilities |