SUMMARY

 * Over 7.5+ years Experienced in IT industry in SAP as SAP Security Analyst on
SAP R/3 ECC 5.0/6.0, 4.7, 4.6C, 4.6B.
 * Worked on 3 full life cycle implementation of SAP Security projects from
design phase to post implementation phase in SAP Security Realm.
 * Assisted on various modules like PP/MM//WM/HR/FI-CO/SD and new Dimensions
products BI/BW, HR/HCM, ESS/MSS, CRM, SRM(EBP/SUS), XI, SCM, and APO.
 * Performed SAP Security related task and Implemented Security policies and
procedures, Experienced in SAP Security Maintenance (PFCG), maintained the roles
for all the instance (DEV, QAS, PRD and Training Environments) profiles in
development and production systems.
 * Provided support for User Maintenance, Roles/Profile Maintenance using
Profile generator.
 * Experienced in Setting up Central User Administration (CUA) and maintenance.
 * Provide SAP Basis administration support, performance monitoring &
 * tuning, problem analysis & resolution, and other activities require to
maintain system integrity and maximize uptime
 * Implemented and configured SAP GRC Access Controls applications versions v5.1
and v5.2 such as the Access Enforcer(AE), Compliance Calibrator(CC),
Firefighter(FF) and Role Expert(RE) tool
 * Working Experience in Role remediation and user remediation of segregation of
Duties (SOD) within SAP implementation, GRC -Virsa Systems 5.X tools (Compliance
Calibrator, Access Enforcer, Fire Fighter and Role Expert).
 * Extensively used Fire Fighter 5.2 for creating Fire Fighter IDs, designing
and assigning Fire Fighter roles and monitoring Fire Fighter logs activities
 * Experienced in Netweaver Basic of User maintenance Thru UME (User Management
Engine).
 * Experienced in SAP Security related task such as SOX (Sarbanes Oxley)
Compliance.
 * Remediation of Segregation of Duties (SOD) within SAP implementation, VIRSA
Systems VRAT tool, Fire Fighter, Role Expert, Access Enforcer, Profile Generator
(PFCG), Role Creations modifications, User Administration.
 * Preventative, mitigating and compensation controls to ensure the appropriate
level of protection and adherence to the goals of the overall SAP security
strategy.
 * Experienced in working with Transports (STMS) in transporting roles between
Development, QAS and Production R/3 systems and users.
 * Experienced in troubleshooting R/3 Security issues (SU53, ST01), RSECADMIN
for BI.
 * Experienced with creating & working on Production Support Tickets using
Remedy tool.
 * Self starting, highly dependable results oriented SAP Security Functional
Analyst with hands on R/3 implementation, system enhancements and production
support responsibilities.
 * Effective, imaginative problem solver with excellent problem solving skills,
team player and good communication skills.

SKILL SETS:
SAP Skills:
SAP Security and Sales and Distribution module
SAP version:
SAP R/3 ECC6.0, ECC 5.0,4.7, 4.6C,4.6B
Specialization:
Security(R/3 and BW), CUA, Profile Generator, User Maintenance, Authorization.
Office Tools
MS OFFICE(MS-Word,MS-Access,MS-Excel,PowerPoint)
Databases:
SQL, Ms- Access 2000/97, Ms-Sql Server2000
Languages:

Visual Basic 5.0, Visual Basic 6.0, C, C++, Vb.Net, Ado.Net, Core
Java, PL/Sql, Web Services, Xml
 Web Servers:
Windows 2000 Professional server, Windows 95/98

Merck & Co, Lebanon, NJ March 2007 to Till Date
SAP Security Analyst (FDA Regulated Environment)

Roles and Responsibilities:
Implementation Activities (RELEASE-1 & RELEASE-2)

 * Responsible for Security role development like creation of Roles(including
Single role ,Composite role, Parent & child role) creation of Users, Maintained
Authorization Objects, and Assigning Roles to Users as per Documents provided by
the Management
 * Participated in Security Testing and UAT for Mexico/Bermuda client users for
release-1 and help in resolving the defects using Mercury for ticketing purpose.
 * Participated in Security Testing, UAT and OQ for USA market client users for
release-2 and help in resolving the defects using Mercury for ticketing purpose.
 * Created roles for USA market (plant based) as per Global role template.
 * Work with QVC Team in adding additional TCodes or Organizational values
(derived roles) to the roles as a part of Security Testing and UAT Testing in
Mercury before going live.
 * Created job roles for Mexico and Bermuda as per the relevant test ids and
also participated in security roles testing.
 * Created bulk roles for ESS and MSS for STS Business stream and performed
Security/UAT testing.
 * Collaborated with other team members and business representatives to ensure
that security settings meet the requirements of the business and align with the
defined controls and standards to meet FDA requirements.
 * Documenting all development procedures, sensitive objects, manual inputs and
all other critical changes as per FDA regulations and guidelines
 * Completed all required Safety and FDA compliance training courses

Post GOLIVE support Activities (RELEASE-1)

 * Hands on experience on production Support for Mexico/ Bermuda (LA HUB) plant
for post GOLIVE support for COMET MERCK.
 * Supported production issues on ECC, BI & Portal, GTS, SCM modules which were
the part of RELEASE-1.
 * Worked on security tickets using REMEDY tool.

Administration (ECC, SCM, GTS, and XI):-
 * Maintained Users Master Records by creating User Ids, assigning roles,
copying, renaming, reset password, etc. using SU01.
 * Performed mass user activities using SU10.
 * Extensively used ECATT scripts for mass user creation, locking and unlocking
users, assigning roles to users etc.
 * Used ECATT script for mass creation of OSS Ids, Basis Ids and Production user
ids across the environment.
 * Created Parent/Child role for Mexico/Bermuda from the Global role template
for ECC, SCM, GTS in the initial implementation phase.
 * Worked with profile generator (PFCG) in creating roles, profiles, composite
roles and derived roles.
 * Worked on SAP Check Indicator Defaults and Field values using transaction
SU24 and maintained check indicators for Transaction codes during testing.
 * Worked in coordination with HR people to maintain the synchronizations of the
HR data (Pa0105- user id & email) and the SU01 user data so that users receive
the workflow items.
 * Created Global and Market roles as per the process teams requirements for STS
Workflows maintained the roles and user maintenance.
 * Lead offshore team ,assigning them day-to-day activities and monitoring
them.
 * Transported Roles using the change request method and also the
Download/Upload method for transporting the roles to systems not in the transport
landscape.
 * Transported the generated roles and profiles using Transport Management
System.
 * Extensively worked with security related tables such as AGR_TCODES,
AGR_USERS, AGR_1251, AGR_1250, AGR_DEFINE etc.
 * Worked on Job role user switch for more than 400 users for BI, SCM, ECC all
gold clients.
 * Worked with table authorizations to control access to tables and created
custom table authorization groups using SE54.
 * Lead offshore team and assigning and monitoring day-day tasks.
 * Used Compliance Calibrator tool to identify the risks and remove them by
making changes in the role groups.
 * Worked in configuration and support of Fire fighter and CC tool.
 * Participated in designing and creation of FF ids for hypercare and
Post-Go-Live activities.
 * Extensively worked with VIRSA Compliance Calibrator 5.1 to perform risk
analysis at user and role level.
 * Experienced with VIRSA Compliance Calibrator 5.1 (SAP GRC) for
Prevention/Remediation/Mitigation of Segregation of Duties (SoD) within
Organization.
 * Worked with SE93 to create custom transaction codes to control access to
tables.
 * Assigned authorization groups to programs using RSCSAUTH and RSABAUTH to
control access to programs.
 * Trouble shoot user project related issues for Solution Manager for viewing
Mexico/US project folder details.
 * Used the table TCDCOUPLES (TcodeSE93) to maintain the checks between calling
and called transaction codes such as SM37.
 * Used SQVI to generate different kinds of User or Roles reports required by
QVC Team.
 * Monitored access to key authorization objects such as S_BTCH_ADM, S_ADMI_FCD,
S_TABU_DIS, S_DEVELOP etc for debug access and etc.
 * Advised developers to use function module AUTHORITY_CHECK for custom
programs.
 * Performed User master maintenance through Central User Administration (CUA).
 * Effectively analyzed trace files using ST01 and authorizations for users
(SU53) and tracked missed authorizations for user's access problems and inserted
missing authorizations manually.

BI 7.0
 * Created Custom Reporting Authorization Objects using transaction RSECADMIN.
 * Created roles for restricting access to Infocubes, ODS objects, Queries and
Workbooks.
 * Created custom objects to secure the roles by Company Code, Plant and Cost
Center
 * Created development roles for BW developers using the authorizations objects
S_RS_ISOUR,S_RS_ISNEW, S_RS_TR, S_RS_RST, S_RS_ADMWB, S_RS_BTMP
 * Involved in testing of the roles along with the BI team members.
 * Developed authorizations and assigned it to users using RSECADMIN
 * Troubleshoot authorizations related problems using RSECADMIN.

SRM 6.0(EBP/SUS)
 * Worked with the SRM business team to prepare and maintain role matrices and
user mapping matrix.
 * Created EBP, SUS roles and Involved in troubleshooting roles, identified
missing objects, arranged the menu structure as per the business requirements,
and tested roles.
 * Worked with the configuration team in building, testing and implementing the
roles
 * Created Users in the SRM 4.0 environment using the web browser using
transaction BBPUSERMAINT
 * Created SRM users using the transaction SU01 and Assigned the user to
Organisational hierarchy for SRM Team members through USERS_GEN.
 * T