CONTACT: JASLEEN EMAIL: JASLEEN DGNTECHNOLOGIES.COM">JASLEENDGNTECHNOLOGIES.COM
PHONE: 480-704-4582
SAP Security Consultant
EXPERIENCE SUMMARY
·
Over 12 years experience in IT Industry include 6 years experience in core
SAP R/3 Security Administrator.
·
Indepth knowledge of SAP R/3 Releases
4.6C, ECC 5.0 and ECC 6.0.
·
Security Upgrade experience from
4.0b and 4.5b to 4.6C, ECC 5.0.
·
Experience with SAP Application Security
design, development and administration of R/3 environment for the following modules FI-CO, SD, MM.
·
Experience in Design, Developing, Testing and implementing SAP Security Roles, Profiles and Authorizations for various landscapes using Profile Generator (
PFCG).
·
Remediation of Segregation of Duties (SOD) within SAP implementation,
VIRSA Systems VRAT tool.
·
Expertise in analyzing and translating business requirements into technical specifications in collaboration with application developers.
·
Experience designing various kinds of roles (
Reference Roles, Derived Roles and Composite Roles designing) using Profile generator (PFCG
).
·
Experience in SAP Security related task such as SOX (
Sarbanes Oxley) Compliance.
·
Experience setting up users and
security on Enterprise Portal.
·
Experience in setting up Central User Administration (
CUA) and maintenance.
·
Excellent skills in preventing,
mitigating and compensating controls to ensure the appropriate level of protection and adherence to the goals of the overall SAP security strategy.
·
Knowledge in creation of Multiple R/3 User IDs using CATT
Scripts.
·
Experience in user administration 24x7 on call production support, quick turn around for end user requests, and helpdesk support for user administration.
·
Self starting, highly dependable results oriented SAP Security Functional Analyst with hands on R3 implementation, system enhancements and production support responsibilities.
TECHNICAL SKILLS
|
· SAP Security Architecture
·
User Administration
·
User reconciliation
·
Profile Generator (PFCG)
·
Role Creation & design
·
Profile creation
·
Authorization objects
·
Policies & Procedures
·
Transactions
·
BW Info cubes
|
· Remediate Segregation of Duties (SOD) within SAP implementation
· Sarbanes-Oxley Section 404
· CATT Scripts and LSMW
· VIRSA Systems Compliance Calibrator 4.X,5.X
· Update and transfer rules
· Documentation
· Knowledge Transfer
|
PROFESSIONAL EXPERIENCE
SAP Security Administrator and Production Support
; ;
JUL '06-AUG '07
BOC Gases, Murray Hills, New Jersey
Environment:
SAP ECC 5.0, R/3 Enterprise Edition 4.6, SD, MM, FICO, and Win XP SP2.
Description:
The scope of the project was to provide Security production support for approximately 1500 users. Remediate Security Roles as per the Audit Findings and recommendations to remove SOD conflicts within roles assigned to users. The day to day activities involved the role changes, production support and designing roles for the new business divisions to be converted from legacy systems to SAP.
Responsibilities:
·
Creating and
modifying the roles as per the SOD and SOX matrix
prepared by the Audit team.
· Responsible for day to day
technical support and resolution of security issues,
trouble shooting R/3 security problems.
· Assisted with review of SAP menu and role changes and impact on security/authorizations including strategy for attaching area menus to SAP standard versus User area menus.
· Created and modified
Single roles, Composite roles and Derived roles using automatic profile generator (PFCG) to meet business requirements by making sure users do not get more authorizations than needed or assign missing authorizations to perform their tasks.
· Provided daily security and authorizations management of
SAP R/3 SD, MM, FI-CO and BWBI systems.
· Documented the
Role Matrix procedure for different modules and business processes , new user request from and security profile maintenance procedure
· Involved in the identification of
Key controls, Risks and SOD issues.
· Performed user administration activities such as
setting up user login Ids and assigning and resetting passwords, locking and unlocking users.
· Identifying Security's Key Role in Maintaining Sarbanes-Oxley Compliance (
SOX).
· Troubleshoot user roles, security authorization objects and authorizations to resolve security conflicts using transactions
SUIM, SU53 and ST01.
· Perform reconciliation of user master record and roles using
PFUD and SUPC.
· In BW security created roles and authorization based on
the Info Cube and Info Area level.
· Involved with technical team in setting up SAP system for auto log-out, password length and expiration and specifying impermissible passwords.
· Used
SU24 and maintained check indicators for Transaction codes.
· Download User/Role tables (
USR02, AGR* etc) using SE16 into Excel and sort (Slice/dice) data as needed.
· Ensure that security authorization procedures are adhered to and that users do not receive authorizations that are outside of company guidelines.
SAP Security Administrator and Production Support ;
;OCT '05 - JUN '06
Smithfield Foods, Smithfield, Virginia
Environment:
SAP ECC 6.0, R/3 Enterprise Edition 4.7, SD, MM, FICO and Win XP SP2.
Description:
The scope of the project is to implement SAP Security for SAP R/3 for SD, MM, FI-CO, BW 3.1 modules. Remediation and Segregation of Duties using Virsa Tools.
Responsibilities:
· Ensure segregation of duties (
SOD) exits in the SAP systems using the VIRSA systems VRAT tools (Compliance Calibrator and Fire Fighter).
· Participated in designing, writing and implementing
security related standard procedures for the user administration, roles and profile generation.
· Created and modified Single roles, Composite roles and Derived roles
using automatic profile generator (PFCG) to meet business requirements by making sure users do not get more authorizations than needed or assign missing authorizations to perform their tasks.
· Documenting the role - transaction matrix, after interacting with Business Process Experts.
· Provided daily security and authorizations management of
SAP R/3 SD, MM, FI-CO and BWBI systems.
· Create new users (Dialog, Batch etc) and maintain user master record using
SU01.
· Performed user administration activities such as setting up user login Ids and assigning and resetting passwords, locking and unlocking users.
· Creation, Modification and Assignment of Roles/Profiles to users using
PFCG after running reports on Compliance Calibrator.
· Developing SOD matrix with cooperation of functional people.
· Identifying Security's Key Role in Maintaining
Sarbanes-Oxley Compliance (SOX).
· Analyze Root Cause of Authorization Problems and fix the missing authorizations.
· Troubleshoot user roles, security authorization objects and authorizations to resolve security conflicts using transactions
SUIM, SU53 and ST01.
· Help test roles and authorizations in
QA environment.
· Involved in Enterprise Portal Security
.
· Creating users through
UME for SAP Netweaver.
· Experience in setting up
Central User Administration (CUA) and maintenance.
· Providing production support security by handling call tickets and change request forms in Remedy system
· Perform reconciliation of user master record and roles using
PFUD and SUPC.
· In BW security created roles and authorization based on the
Info Cube and Info Area level.
· Involved with technical team in setting up SAP system for auto log-out, password length and expiration and specifying impermissible passwords.
· Used SU24 and maintained
check indicators for Transaction codes.
· Download User/Role tables (
USR02, AGR* etc) using SE16 into Excel and sort (Slice/dice) data as needed.
· Ensure that security authorization procedures are adhered to and that users do not receive authorizations that are outside of company guidelines.
;
;
SAP Security Administrator
; ; ; ; ;
FEB '04 - AUG '05
Global SantaFe Corp. CA
Environment:
R/3 Enterprise Edition 4.6B, Netweaver 2004, BW 3.1, SD, MM, FI-CO, Win XP SP2, Mac.
Description:
The scope of the project was to upgrade from SAP R/3 release 4.6B to ECC
5.0 and implement SAP Security for SAP R/3 for BW, MM, SD and FI-CO. Extensively worked on Remediation of Segregation of Duties.
Responsibilities
·
Analyzed and evaluated the technical security requirements for SAP R/3 Security.
·
Designing and documenting security administration policies and procedure for the production environment.
·
Involved in war room activities during Go Live and post go live production support for over 6000 end user community after Adobe Macromedia acquisition.
·
Extensively used Profile Generator (PFCG) to create single roles and derived roles /profiles for various modules such as
BW, FI-CO, MM, PP and SD.
·
Created new users (Dialog, Batch etc) and maintain user master record using
SU01.
·
Created derived roles and authorization profiles for the various centers located at different geographical locations in development system.
·
Used Transport Management System (STMS) to perform transports between clients within R/3 system.
·
Experience in Netweaver for handling user maintenance through
UME.
·
Designed both Info Object level security and Info Cube level security for various functional groups to access
queries, reports and data in BW. Discussed with module owners to create new roles and fix authorization issues.
·
Troubleshoot security/authorization related problems using user information system (SUIM) and
Display Authorization Data (SU53).
·
Worked on SAP Check Indicator Defaults, Field values, and maintained check indicators for Transaction codes using (SU24).
·
Adhere to company policies and ensured proper approval before granting critical and restricted access to users.
·
Used System Trace (ST01) to record authorization checks in different sessions.
·
Help test roles and authorizations in QA environment.
·
Fixing end user Roles/Profiles based on Change Requests crated for breaks/fixes.
·
Work with Functional specialists to help them understand what SAP authorization objects are causing the conflicts and what all options exist for mitigating the conflicts.
·
Involved with technical team in setting up SAP system for creating mass users, deleting mass users, locking and unlocking mass users
using SU01.
·
Analyze Root Cause of Authorization Problems and fix the missing authorizations.
·
User support, resolve end user problems on day-to-day basis.
·
Profile Maintenance:
Maintained all the instance profiles in DEV and PRD systems.
·
Used SU24 and maintained check indicators for Transaction codes and activating and deactivating the Authorization Objects
SAP Security Administrator
;
; ; FEB '02 - NOV '03
Lyondell-Equistar Chemical Company
Environment:
SAP R/3 3.1G, 4.6B, FI-CO,
SD, MM, Oracle 8i/9i, Win 2000 Me
Description:
The scope of the project was to implement SAP Security for SAP R/3 for SD, MM, PP, WM and FI-CO. Also to maintain different SAP delivered /Custom Authorizations to give different Privileges for different Users in SAP systems.
Responsibilities
·
Worked with the business managers in defining access requirements for end users, maintain role design and worked with Functional team members to set up end user roles.
·
Identify and maintain secured transactions, manage and maintain access to
development, quality and training instances. Created over 240 job roles in SD, FI, MM, PP and WM.
·
Fixing end user roles/profiles based on changes requested by role owners.
·
Worked with functional team leads to identify and add custom transactions into appropriate roles.
·
Documented the procedure for all SAP tasks process and controls.
·
User Administration and Password Management (Expiry of users and Profiles).
·
User support, resolve end user problems on day-to-day basis.
·
Troubleshoot R/3 security problem by using different scenario such as system trace, parameter change, buffer reset
, debugging of ABAP/4 program, SU53 and SU56 in order to find security problem.
·
Involved in security Integration Testing and rectification of problems and updating the roles accordingly.
·
Used system traces (ST01) to troubleshoot authorization issues.
·
Ran security reports for critical transactions and objects using SUIM.
·
Worked on SAP Check Indicator Defaults and Field values, reduced the scope of Authorization checks using transaction SU24 and maintained check indicators for TCodes.
·
Created users, roles and assigned appropriate privileges.
·
Transported these Roles to Quality Assurance System (
QAS) and initiating the testing process of these Roles by assigning the intended roles to test users and monitoring and trouble shooting the authorization failures during testing.
·
After ensuring the intended functionality of these Roles, transporting these objects to Production system (
PRD) and assigning to users during implementation
·
Transported Roles between clients and R/3 systems like DEV, QAS and PRD.
·
Performed positive and negative testing of the created/updated roles.
·
Involved in war room activities during Go Live and post go live production support for over 2000 end user community.
·
Used SU10 for mass maintenance of users.
PROFESSIONAL TRAINING / CERTIFICATION:
·
Bachelor of Science
,
·
Extensive training in SAP Security, SAP SD, BW.
·
Training in Java, Oracle, UNIX, C and
VB.
; ; ;
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups "C# Developers" group.
To post to this group, send email to CSDevelopersgooglegroups.com
To unsubscribe from this group, send email to CSDevelopers-unsubscribegooglegroups.com
For more options, visit this group at http://groups.google.com/group/CSDevelopers
-~----------~----~----~----~------~----~------~--~---
|