This document contains the resume of Madhu Sharma who has extensive experience in SAP Security and GRC AC. She has worked as a SAP Security consultant for various companies and has hands-on experience with SAP R/3, ECC 6.0, and GRC AC 10.0. Her responsibilities have included user administration, role maintenance, authorization management, and troubleshooting security issues. She is proficient in various SAP security tools and concepts.
1. Madhu Sharma E-mail: rose.madhur@gmail.com
SAP Security and GRC consultant PH: +91 8149715037
SUMMARY:
Extensive SAP experience in support of SAP Security & GRC AC.
Hands on Operational experience in Security of SAP R/3, ECC 6.0 and GRC AC 10.0
Hands on experience in GRC AC 10.0 components ARA / EAM & ARM.
Mitigation of Risks at User level by assigning the id to the appropriate Mitigation Control Id.
User master records creation and assigning roles to users based on access requests.
Experience with SAP Profile Generator with strong skills related to the Authorization
concepts.
Hands on experience in Support and Maintenance of creating roles, assigning roles, assigning
authorization objects to roles using profile generator.
Experience in user login parameters and password parameters.
Restrict the Table level access Using authorization object S_TABU_DIS
Monitoring the list of users having access to Sensitive Transaction Codes.
Analyzing of missing authorizations and assigning Roles to users.
Good analytical and problem solving skills for resolving security issues
Worked on different areas of SAP to ensure security control (SAP logon ID, SAP User master
data and Defaults, SAP Authorization/Profiles, transaction Locking/Unlocking, SAP table,
basic ABAP security.
Expert of User administration and Authorization concept.
Strong working knowledge on master, derived and composite roles.
Fixing Authorization issues for end users.
Retrieving Reports via AGR & USR Tables.
Knowledge in creation of Multiple R/3 User IDs using CATT Scripts.
Maintain Authorization group according to business requirements.
Knowledge in License (USMM/SLAW)
Worked in SAP Application Security involving User administration, Authorization
management and Troubleshooting.
Have a positive and flexible attitude and great team player.
Able to work in any situation both in a team and as individual.
EDUCATION:
Bachelor of Arts (Hist - Hons) from Delhi University in 2004
PGDBA – HR from Symbioses University in 2007
WORK EXPERIENCE:
Worked as SAP Security Consultant with V Log Tech P Ltd, Bangalore Dec 2008 – Feb 2013.
Worked as Software Engineer with Syntel Ltd, Pune from Feb 2013 to Aug 2014.
Working as SAP Security & GRC consultant with Winspiron Technologies Pvt Ltd from Nov
2. 2014 till present.
PROFFESIONAL EXPERIENCE:
PROJECT: 1
Organization : Winspiron Technologies Pvt. Ltd
Client : GMAC
Role : SAP Security & GRC Consultant
ROLES AND RESPONSIBILITIES:
User Management such as User Creation, deletion of user, user’s lock & unlocks.
Simplifying maintenance of users by creating User Groups.
Role maintenance like creation/deletion/modification.
Transportation of roles across the landscape through transports requests from DEV.
Analyzing of missing authorizations and assigning Roles to users as per the approval.
Creation and maintenance of Master & Derived Roles.
Monitoring list of users with incorrect logons and password change.
Critical authorization objects such as S_TABU_DIS, S_PROGRAM, S_DEVELOP were restricted
and monitored.
Analyzing of missing authorizations and assigning Roles to users.
Assignment of Roles as per the approval from the concerned team managers.
Maintaining Profile parameters including login parameters to restrict at authentication level.
Monitoring list of users who are having access to powerful profiles like SAP_ALL and
SAP_NEW etc and alerting the client on the same.
Periodically executed reports (RSUSR*) to detect security checks.
Worked with security related tables such as AGR_TCODES, AGR_USERS, AGR_DEFINE,
AGR_1251, 1252. Performed user maintenance tasks, User creation, deletion, lock down,
activation, password management tasks and ran various user administration reports.
Strong working knowledge of Roles & Authorization maintenance.
Created users, roles and assigned required privileges for the database access.
Worked profile generator (PFCG) in creating roles, profiles, Composite roles, Derived roles,
and Master roles.
Strong experience in SUIM: User Information System.
Transporting all authorization components (Roles, Authorization Objects & Classes, Check
indicator and Field Values)
Assignment of role (activity group) requirements based on job functions and audit control
processes.
Worked on SAP Check Indicator Defaults and Field values, reduced the scope of
Authorization checks using transaction SU24 and maintained check indicators for
Transaction codes
3. Troubleshoot security/authorization related problems using SU53, ST01 and SUIM
Created, generated profiles, Authorizations, object classes, objects, and roles and assigned
to user master.
Using CATT script for mass generation of roles and User assignments.
Created new activity groups as per Segregation of Duties requirements.
Created & modified structural profiles, PD profiles assignment.
Created Mass users via writing LSMW scripts.
Assigning roles to users positions in HR, troubleshoot access issues
Checked if the PFCG_TIME_DEPENDENCY is running for user master reconciliations.
Scheduling and administering Background jobs.
For complex issues activate the trace via ST01 and ask the user to perform the required task.
Restricting the authorization groups for table maintain, creating authorization group using
SE54 to build new authorization groups to restrict tables via authorization object
S_TABU_DIS
Setting up profile parameters and security Audit log activation
Strong working knowledge on custom object class and authorization object
PROJECT: 1
Organization : Syntel Ltd.
Client : Allstate
Role : Software Engineer - SAP
ROLES AND RESPONSIBILITIES:
User administration-User creation/Role assignment/Profile Modification as per the approval.
Creation and maintenance of roles and custom authorization objects.
Worked on Derived role/Inheritance relationship.
Maintained the assignments of Authorization objects.
Troubleshooting user roles, security authorization objects and authorizations to resolve
security conflicts using transactions ST01 and SU53
Performed User Master Reconciliation using pfcg_time_dependency
Analyzing authorization problems/errors and implementing appropriate solutions.
Involved with technical team in setting up SAP system for auto log-out, password length and
expiration and specifying impermissible passwords.
Performed analysis of SU53 and SU56 user analysis as well as setting up and analyzing user
traces with ST01.
Restricted the list of illegal passwords.
Interaction with business people for designing a Role matrix.
Resolving issues while performing SU25.
Critical authorization objects maintenance.
Configuring and performing Audit logs (SM19 and SM20).
BI/BW Security concepts/Analysis Authorization.
Converting Reporting authorization to Analysis authorization.
4. CUA (Central user administration) on single system with multiple clients and multiple
systems. User - Role mapping through CUA.
SUIM and Table concept in security.
HR Security and Structural authorization.
Knowledge in profile maintenance & Background jobs.
Transport Management related to Roles and Authorization object.
Hands on experience in GRC AC 10.0 components ARA / EAM & ARM.
Mitigation of Risks at User level by assigning the id to the appropriate Mitigation Control
Id.
PROJECT: 1
Organization : V Log Tech Pvt Ltd
Client : B Braun
Role : Software Engineer – SAP - Security
ROLES AND RESPONSIBILITIES:
User Management such as User Creation, deletion of user, user’s lock & unlocks.
Simplifying maintenance of users by creating User Groups.
Role maintenance like creation/deletion/modification.
Transportation of roles across the landscape through transports requests from DEV.
Analyzing of missing authorizations and assigning Roles to users as per the approval.
Creation and maintenance of Master & Derived Roles.
Monitoring list of users with incorrect logons and password change.
Analyzing of missing authorizations and assigning Roles to users.
Assignment of Roles as per the approval from the concerned team managers.
Maintaining Profile parameters including login parameters to restrict at authentication level.
Restricted the list of illegal passwords.
Interaction with business people for designing a Role matrix.
Resolving issues while performing SU25.
Critical authorization objects maintenance.
Configuring and performing Audit logs (SM19 and SM20).
Besides:- Support for kernel Update, Support Pack & system monitoring for SAP - Basis activities.
Signature :
Madhu Sharma