| | | 20,000+ Fresh Resumes Monthly | |
|
|
| |
Click here or scroll down to respond to this candidateCandidate's Name
Street Address South Poplar St.Gibbstown, N.J. Street Address
PHONE NUMBER AVAILABLEEMAIL AVAILABLELINKEDIN LINK AVAILABLESUMMARY:SAP consultant with Security technical design, development, testing, implementation, support, and documentation expertise in an SAP environment including GRC 10.1, ECC6, HR/HCM, SRM, CRM, BPC, EAM, HANA, BOBJ, IDM 7.3,SCM,APO,ARIS,FIORI d BW4 Hana and SAP Analytics CloudCommunicate effectively with professionals in both group and one-to-one situations.Analyze problems and requests and expertise in implementing software packages and hardware configuration.Exceptional trainer and motivator also communicate well with other, within and across teams.Managing business workshops for requirement gathering and conversion of business requirements into technical design/matrix and documentation.DOD Secret ClearancePROFESSIONAL EXPERIENCE:09-2022- 03-2024 Army PD GFEBS Remote GroundswellSAP Security/GRC SMEContinuous monitoring of critical system access Work with the functional, development, and technical teams to ensure requirements are understood and have all possible details captured to develop the solution for application security.Perform regular system audits to detect deviations of established procedures, role mapping, unauthorized system activity, and report findings.Ensure that changes to roles and system are tested, approved, and completed according to DoD standards. Including regulatory and compliance requirementsSupport identifying risks and designing the SOD (Segregation of Duties) MatrixProvide support for users with security-related problems and assist functional and technical teams with troubleshooting critical issues, as it relates to security roles.Support of program audit activitiesDesign and implement continuous monitoring controls.Work closely with System Integrator SAP Security teamAdminister solution that facilitate user provisioning/de-provisioning, authentication/authorization, and reporting based on business needs, industry best practices, and audit/regulatory requirements by working with functional team and business role owners!Identify and implement continuous improvement opportunities to drive process efficiencies.06-2020- 7-2022 NAVY NAVWAR Mechanicsburg PA Telesto GroupLead SAP SECURITYMaintained custom transaction codes to secure access for tables.Tracked missing authorizations for user access problems and inserted missing authorizations.Suggested authorization objects for newly created custom transaction codes based on functionality.Created new derived roles based on company codes, plants and cost centers.Analyzed business roles and mapped them to transaction codes according to business processes.Worked with the Internal Audit teams closely for Continuous Improvement of Security, Authorization & Controls/Compliance areas to apply the best recommended practices involved assist the client in building processes & procedures for managing users & roles as per Sox compliance.GRC 10.1, Access Controls, the different components utilized were SAP GRC Emergency Access Management - EAM (Fire Fighter), Access Risk Analysis and Access Request Management ARM (Access Enforcer).GRC 10..1 Access Risk Analysis: Maintained Rulesets - Global and Critical; Maintained and corrected existing custom functions and risks to provide correct rule results; maintained mitigating controls, risks and owners for the same.Created firefighter users in GRC system and assigned proper authorizations.Supported GRC 10.1 implementation, SAP Analytics Cloud and BW Hana.Communications with business and scheduled meetings for training purposes and understand their issues and provided appropriate solutions Designed, developed and administered user roles, profiles and authorizations.01-2019-6-2019 US ARMY Picatinny NJ INSASPSAP Security/IDMMonitored System audit activities and ran audit reports for the clients internal audit team.Communications with business and scheduled meetings for training purposes and understand their issues and provided appropriate solutions.Front-line support for production end-user defect resolution and monitoring of SAP application access and security violationsInvolved in SAP GRC suite implementation meetings with the business users to know about the SOD conflicts at transaction code level. Identifying Security's Key Role in Maintaining Sarbanes-Oxley CompliancePerform high level support including problem determination for all SAP security needs within11-2018- 01-2019 Day&Zimmerman Philadelphia PASAP Security/GRCPerforms and manages complex IT projects - Designing, implement and provide technical leadership for all projects including the ability to interact effectively with customers, vendors, and peers.Utilize standard Segregation of Duty (SOD) tools to validate user access privileges and role assignments identifying any potential SOD risk. Determine and implement any appropriate modifications to eliminate or mitigate any potential risk.Perform regular system audits to detect deviations of established procedures, role mapping, and unauthorized system activity and report findings to management.Troubleshoot existing user roles, security objects and authorizations to resolve security issues.Identify any gaps in existing security administration processes and procedures as well as areas for significant improvement, optimization, and automation.Develop, maintain, and implement security policies and procedures. Provide updates and training to junior Security team members on new and updated product support requirements.S/4 HANA Database Security creating Repository roles and SAP FIORI Security.06-2018 07-2018 Wiley Publishing Hoboken NJ Rayvenit SolutionLead SAP SECURITY/GRCGRC 10.1, Access Controls, the different components utilized were SAP GRC Emergency Access Management - EAM (Fire Fighter), Access Risk Analysis and Access Request Management ARM (Access Enforcer).GRC 10..1 Access Risk Analysis: Maintained Rulesets - Global and Critical; Maintained and corrected existing custom functions and risks to provide correct rule results; maintained mitigating controls, risks and owners for the same.Created firefighter users in GRC system and assigned proper authorizations.Supported GRC 10.1 implementation.Communications with business and scheduled meetings for training purposes and understand their issues and provided appropriate solutions.Created new derived roles based on company codes, plants, and cost centers.Analyzed business roles and mapped them to transaction codes according to business processes.Worked with Security Manager to bring awareness to their security team, how to simulate user provisioning in order to prevent reintroduction of SOD issues.Conduct knowledge transfer and training for security team on the SOX SOD Remediation process.08-2015 -05-2017 NAVY NAVSUP Mechanicburg PA Mail Sail GroupLead SAP SECURITYMaintained custom transaction codes to secure access for tables.Tracked missing authorizations for user access problems and inserted missing authorizations.Suggested authorization objects for newly created custom transaction codes based on functionality.Created new derived roles based on company codes, plants and cost centers.Analyzed business roles and mapped them to transaction codes according to business processes.Worked with the Internal Audit teams closely for Continuous Improvement of Security, Authorization & Controls/Compliance areas to apply the best recommended practices involved assist the client in building processes & procedures for managing users & roles as per Sox compliance.GRC 10.1, Access Controls, the different components utilized were SAP GRC Emergency Access Management - EAM (Fire Fighter), Access Risk Analysis and Access Request Management ARM (Access Enforcer).GRC 10..1 Access Risk Analysis: Maintained Rulesets - Global and Critical; Maintained and corrected existing custom functions and risks to provide correct rule results; maintained mitigating controls, risks and owners for the same.Created firefighter users in GRC system and assigned proper authorizations.Supported GRC 10.1 implementation.Communications with business and scheduled meetings for training purposes and understand their issues and provided appropriate solutions.04-2XXX-XX-XXXX QVC West Chester PA Judge IncLead SAP SECURITYWorked with business analyst to clean up Roles from Segregation of Duties (SoD) conflicts using RAR.Performed User Level & Role Level Risk Analysis for SoD conflicts using offline and online analysis.Created various background jobs to generate different reports in Risk Analysis and Remediation.Experienced with SPM administration, which includes assign FF IDs to ID Owners & Controllers, maintain configuration table, Reason Codes, and critical transaction codes.Troubleshoot authorization related problems, analyzed system traces and user buffers.Work with GRC10, ECC6, SRM, CRM, BPC,HANA, BOBJ, IDM 7.3 and BWManaging business workshops for requirement gathering and conversion of business requirements into technical design/matrix and documentation.Coordinated with other teams to ensure that security settings meet the business requirements and align with the defined controls and standards.2-2014-12-2014 Baker Hughes Houston TX TCSLead SAP SECURITYConfigured security roles for several modules in SAP. Used Profile Generator to maintain roles, generate and assign authorization profiles.Designed, developed, and administered user roles, profiles and authorizations.Re-designed security roles across different modules to meet clients changing landscape.Monitored System audit activities and ran audit reports for the clients internal audit team.Created custom roles, t-codes, custom objects, custom object classes and implemented table and program security and global maintenance of authorization checks. SAP environment Production support ECC 6.0 -Structural HR, EAM,BO,BW, BI.7, CRM,IDM,ARIS and SCM.Troubleshoot and resolved user access problems as a part of the production support team. Interacted with external audit teams to solve inconsistencies and user violations in the system.Technical design, development, testing, implementation, support, and documentation of Security roles and objects within an ECC 6.0 SAP environment Production support ECC 6.0 - Structural HR, BW, BI.7, CRM, IDM 7.1,EAM,ARISand BPC and Insurance module (DSP), SRM, and SCM.12-2012 1 2-2013 American Water Cherry Hill N.J. AuriproSAP GRC/SAP SECURITYWorked with functional and business teams to develop and maintain roles and profiles.Worked on SAP check Indicators and default field values.Maintained custom transaction codes to secure access for tables.Tracked missing authorizations for user access problems and inserted missing authorizations.Suggested authorization objects for newly created custom transaction codes based on functionality.Created new derived roles based on company codes, plants and cost centers.Analyzed business roles and mapped them to transaction codes according to business processes.Worked with the Internal Audit teams closely for Continuous Improvement of Security, Authorization & Controls/Compliance areas to apply the best recommended practices involved in configuration of Central User Administration across the landscape and defined field attributes for user maintenance and transferred users from child to central systems.Assist the client in building processes & procedures for managing users & roles as per Sox compliance.Worked with business analyst to clean up Roles from Segregation of Duties (SoD) conflicts using RAR.3-2012 10-2012 Johnson & Johnson Piscataway N.J Wipro TechSAP SECURITY ArchitectConfigured security roles for several modules in SAP. Used Profile Generator to maintain roles, generate and assign authorization profiles.Designed, developed and administered user roles, profiles and authorizations.Re-designed security roles across different modules to meet clients changing landscape.Monitored System audit activities and ran audit reports for the clients internal audit team.Created custom roles, t-codes, custom objects, custom object classes and implemented table and program security and global maintenance of authorization checks. SAP environment Production support ECC 6.0 -Structural HR, BO,BW, BI.7, CRM,IDM and BPC8-2011 03-2012 PSEG Newark NJ CCSI INC.SAP SECURITYManaging business workshops for requirement gathering and conversion of business requirements into technical design/matrix and documentation.Technical design, development, testing, implementation, support, and documentation of Security roles and objects within an ECC 6.0 SAP environment Production support ECC 6.0 - Structural HR, BW, BI.7, CRM, IDM 7.1and BPC and Insurance module (DSP), SRM, CCM and IDM7.3.Analyzed systems for Sarbanes Oxley compliance, identified all potential Segregation of Duties issues and create a plan for compliance and execution of a project to mitigate all issues.Created GRC reports and tables for SOX/SOD analysis and user provisioning.Worked with Security Manager to bring awareness to their security team, how to simulate user provisioning in order to prevent reintroduction of SOD issues.Conduct knowledge transfer and training for security team on the SOX SOD Remediation process.Assist the Security Team in fixing upgrade issues in the various modules due to new authorizations causing failures during testing.10-2009 -07-2011 Amtrak, Washington D.C. BAYFORCE INCSAP SECURITYSAP ECC 6.0, P1 with NW 7.0, BI 7.0, GRC 5.3, Sun IDM CE, and PBF. Calibrator, Access Enforcer, Firefighter and Role Expert tools.Created portal groups with combination of roles and assigned the groups to end users.Created new roles for ECC 6 systems: FI, CO, HR, MM, PP, QM, modules, based on concepts of task roles and position roles Security support for integration testing, user acceptance testing, and training efforts Used Profile Generator to maintain roles, generate and assign authorization profiles.Coordinated with other teams to ensure that security settings meet the business requirements and align with the defined controls and standards.10-2007 - 2-2009 Lockheed Martin / Orlando Florida INNOVATIVE SYSTEMSAP SECURITYInstrumental in analysis, design and implementation of SAP Security upgrade from 4.6C to ECC 6.0 Upgraded all the roles with new functionality.Used GRC Compliance Calibrator tool to identify roles level, users level SOD conflicts, SAP assessment and remediation.Primarily responsible for the pre and post system refresh steps for Security processes.Worked closely with BASIS team on transports and refresh processes at all stages of the projectAssisted the testing group users in their security issues, at various stages of the upgrade project. Experienced with Sarbanes Oxley (SOX) and segregation of duties (Sods).10-2006-5-2007 Sanofi Pharmaceuticals Swiftwater PA 1ST, IncSAP SECURITYRedesigned and retrofitted the roles for FI/CO, MM, PP, SD and HR in compliance with segregation of duties principles.Tested functional unites and integration testing.Documented and integrated security solutions into application functional and technical roles.4-2006-9-2006 Timet Exton PA Explorer LtdSAP SECURITYStructural authorizations for Travel Module in HRTroubleshoot and resolve existing roles.Provide support and maintenance in user administration for the project and assist with day-to-day maintenance for the business usersMonitor requests for access to ensure solutions are performed in a timely manner.Created Composite and single roles for the user groups.Assisted teams with User Acceptance Testing.3-2005 - 3-2006 Avaya Inc. Basking Ridge NJ ROTATOR Staffing Services IncSAP SECURITYAnalysis of Functional Specifications and creation of Roles ProfilesModification of Existing Roles Profiles use CATT Scripts as availableTransport of Roles Profiles and ValidationUnit testing of work completed - Test Box work to include Test ID creationRegenerating Profiles, assigning roles profiles as neededProduction Role Profile validationsProduction Updates for Segregation of Duties. SAP Security functions version 3.1H and 4.6C including but not limited to Role Profile Creation with Profile Generator or without activity groups, Role Profile Modification, Working with composite roles and transportsKnowledge of use of CATT Scripts for security work and Virsa -Compliance Calibrator.10-2001 - 03-2005 Rohm Hass Company Philadelphia PA WORLCO Staffing Services IncSAP SECURITY Support AnalystActively pursue & resolve SAP System User problems.Analyze problems and requests. User administration (creating, changing and resetting user accounts, assigning profiles to users).User Administration to create and maintain all user Profile across the system landscape.Procedures for user administration, profile creation, profile maintenance, security management for the SAP surrounding environment.SAP Support of modules MM, SD, FI, CRM and HR, good Understanding of Roles, profiles and activity groupsSAP R/3 4.6c. Knowledgeable in standard SAP Security protocol.4-2001 - 9-2001 Avaya Inc / IBMSAP Support Somerset NJTier II process support and trouble resolution.Responsibilities include providing problem resolution and Functional explanation of business methods and procedures to users of support applicationWorking in Sales modules, Logistics, HR, as well Finance in SAP, also Siebel support.02-1999 - 4-2001 CSC Newark DESAP /ABAP/4 ProgrammerFormulate and define application scope and objectives and devise/modify procedures to solve business problemsDevelop and maintain application interfaces, reports, conversion programs, and custom functionality.Prepare detailed specifications, from which programs will be written, and design, code, test, debug, and document programs.Assist with developing business relationships and integrate activities with other IT departments to ensure successful implementation and support project efforts.Set work standard to ensure business application systems are developed in a way that complies with architectural standards and established methodologies and practices.Report to team leadership on the status of project efforts, anticipating/identifying issues that inhibit the attainment of project goals and implementing corrective actionsFoster and maintain good relationships with customers and IT colleagues to meet expected customer service levels.Create BDC sessions for PP, BW, Fl, CO, SAP IDOC modules and MM, SAP4.0b and SAP 4.6b |
