SlideShare a Scribd company logo

SAP-Security-Madhu

Download as DOC, PDF
M
Madhu Sharma

This document contains the resume of Madhu Sharma who has extensive experience in SAP Security and GRC AC. She has worked as a SAP Security consultant for various companies and has hands-on experience with SAP R/3, ECC 6.0, and GRC AC 10.0. Her responsibilities have included user administration, role maintenance, authorization management, and troubleshooting security issues. She is proficient in various SAP security tools and concepts.

1 of 4
Madhu Sharma E-mail: rose.madhur@gmail.com SAP Security and GRC consultant PH: +91 8149715037 SUMMARY:  Extensive SAP experience in support of SAP Security & GRC AC.  Hands on Operational experience in Security of SAP R/3, ECC 6.0 and GRC AC 10.0  Hands on experience in GRC AC 10.0 components ARA / EAM & ARM.  Mitigation of Risks at User level by assigning the id to the appropriate Mitigation Control Id.  User master records creation and assigning roles to users based on access requests.  Experience with SAP Profile Generator with strong skills related to the Authorization concepts.  Hands on experience in Support and Maintenance of creating roles, assigning roles, assigning authorization objects to roles using profile generator.  Experience in user login parameters and password parameters.  Restrict the Table level access Using authorization object S_TABU_DIS  Monitoring the list of users having access to Sensitive Transaction Codes.  Analyzing of missing authorizations and assigning Roles to users.  Good analytical and problem solving skills for resolving security issues  Worked on different areas of SAP to ensure security control (SAP logon ID, SAP User master data and Defaults, SAP Authorization/Profiles, transaction Locking/Unlocking, SAP table, basic ABAP security.  Expert of User administration and Authorization concept.  Strong working knowledge on master, derived and composite roles.  Fixing Authorization issues for end users.  Retrieving Reports via AGR & USR Tables.  Knowledge in creation of Multiple R/3 User IDs using CATT Scripts.  Maintain Authorization group according to business requirements.  Knowledge in License (USMM/SLAW)  Worked in SAP Application Security involving User administration, Authorization management and Troubleshooting.  Have a positive and flexible attitude and great team player.  Able to work in any situation both in a team and as individual. EDUCATION:  Bachelor of Arts (Hist - Hons) from Delhi University in 2004  PGDBA – HR from Symbioses University in 2007 WORK EXPERIENCE:  Worked as SAP Security Consultant with V Log Tech P Ltd, Bangalore Dec 2008 – Feb 2013.  Worked as Software Engineer with Syntel Ltd, Pune from Feb 2013 to Aug 2014.  Working as SAP Security & GRC consultant with Winspiron Technologies Pvt Ltd from Nov
2014 till present. PROFFESIONAL EXPERIENCE: PROJECT: 1 Organization : Winspiron Technologies Pvt. Ltd Client : GMAC Role : SAP Security & GRC Consultant ROLES AND RESPONSIBILITIES:  User Management such as User Creation, deletion of user, user’s lock & unlocks.  Simplifying maintenance of users by creating User Groups.  Role maintenance like creation/deletion/modification.  Transportation of roles across the landscape through transports requests from DEV.  Analyzing of missing authorizations and assigning Roles to users as per the approval.  Creation and maintenance of Master & Derived Roles.  Monitoring list of users with incorrect logons and password change.  Critical authorization objects such as S_TABU_DIS, S_PROGRAM, S_DEVELOP were restricted and monitored.  Analyzing of missing authorizations and assigning Roles to users.  Assignment of Roles as per the approval from the concerned team managers.  Maintaining Profile parameters including login parameters to restrict at authentication level.  Monitoring list of users who are having access to powerful profiles like SAP_ALL and SAP_NEW etc and alerting the client on the same.  Periodically executed reports (RSUSR*) to detect security checks.  Worked with security related tables such as AGR_TCODES, AGR_USERS, AGR_DEFINE, AGR_1251, 1252. Performed user maintenance tasks, User creation, deletion, lock down, activation, password management tasks and ran various user administration reports.  Strong working knowledge of Roles & Authorization maintenance.  Created users, roles and assigned required privileges for the database access.  Worked profile generator (PFCG) in creating roles, profiles, Composite roles, Derived roles, and Master roles.  Strong experience in SUIM: User Information System.  Transporting all authorization components (Roles, Authorization Objects & Classes, Check indicator and Field Values)  Assignment of role (activity group) requirements based on job functions and audit control processes.  Worked on SAP Check Indicator Defaults and Field values, reduced the scope of Authorization checks using transaction SU24 and maintained check indicators for Transaction codes
 Troubleshoot security/authorization related problems using SU53, ST01 and SUIM  Created, generated profiles, Authorizations, object classes, objects, and roles and assigned to user master.  Using CATT script for mass generation of roles and User assignments.  Created new activity groups as per Segregation of Duties requirements.  Created & modified structural profiles, PD profiles assignment.  Created Mass users via writing LSMW scripts.  Assigning roles to users positions in HR, troubleshoot access issues  Checked if the PFCG_TIME_DEPENDENCY is running for user master reconciliations.  Scheduling and administering Background jobs.  For complex issues activate the trace via ST01 and ask the user to perform the required task.  Restricting the authorization groups for table maintain, creating authorization group using SE54 to build new authorization groups to restrict tables via authorization object S_TABU_DIS  Setting up profile parameters and security Audit log activation  Strong working knowledge on custom object class and authorization object PROJECT: 1 Organization : Syntel Ltd. Client : Allstate Role : Software Engineer - SAP ROLES AND RESPONSIBILITIES:  User administration-User creation/Role assignment/Profile Modification as per the approval.  Creation and maintenance of roles and custom authorization objects.  Worked on Derived role/Inheritance relationship.  Maintained the assignments of Authorization objects.  Troubleshooting user roles, security authorization objects and authorizations to resolve security conflicts using transactions ST01 and SU53  Performed User Master Reconciliation using pfcg_time_dependency  Analyzing authorization problems/errors and implementing appropriate solutions.  Involved with technical team in setting up SAP system for auto log-out, password length and expiration and specifying impermissible passwords.  Performed analysis of SU53 and SU56 user analysis as well as setting up and analyzing user traces with ST01.  Restricted the list of illegal passwords.  Interaction with business people for designing a Role matrix.  Resolving issues while performing SU25.  Critical authorization objects maintenance.  Configuring and performing Audit logs (SM19 and SM20).  BI/BW Security concepts/Analysis Authorization.  Converting Reporting authorization to Analysis authorization.
 CUA (Central user administration) on single system with multiple clients and multiple systems. User - Role mapping through CUA.  SUIM and Table concept in security.  HR Security and Structural authorization.  Knowledge in profile maintenance & Background jobs.  Transport Management related to Roles and Authorization object.  Hands on experience in GRC AC 10.0 components ARA / EAM & ARM.  Mitigation of Risks at User level by assigning the id to the appropriate Mitigation Control Id. PROJECT: 1 Organization : V Log Tech Pvt Ltd Client : B Braun Role : Software Engineer – SAP - Security ROLES AND RESPONSIBILITIES:  User Management such as User Creation, deletion of user, user’s lock & unlocks.  Simplifying maintenance of users by creating User Groups.  Role maintenance like creation/deletion/modification.  Transportation of roles across the landscape through transports requests from DEV.  Analyzing of missing authorizations and assigning Roles to users as per the approval.  Creation and maintenance of Master & Derived Roles.  Monitoring list of users with incorrect logons and password change.  Analyzing of missing authorizations and assigning Roles to users.  Assignment of Roles as per the approval from the concerned team managers.  Maintaining Profile parameters including login parameters to restrict at authentication level.  Restricted the list of illegal passwords.  Interaction with business people for designing a Role matrix.  Resolving issues while performing SU25.  Critical authorization objects maintenance.  Configuring and performing Audit logs (SM19 and SM20). Besides:- Support for kernel Update, Support Pack & system monitoring for SAP - Basis activities. Signature : Madhu Sharma

Recommended

Anil kumar sap security and grc consultant
Anil kumar sap security and grc consultantAnil kumar sap security and grc consultant
Anil kumar sap security and grc consultant
Anil Kumar
 
Anil kumar sap security & GRC
Anil kumar sap security & GRCAnil kumar sap security & GRC
Anil kumar sap security & GRC
Anil Kumar
 
SAP GRC 10 Access Control
SAP GRC 10 Access ControlSAP GRC 10 Access Control
SAP GRC 10 Access Control
Nasir Gondal
 
Sap GRC Basic Information | GRC 12 online training
Sap GRC Basic Information | GRC 12 online trainingSap GRC Basic Information | GRC 12 online training
Sap GRC Basic Information | GRC 12 online training
grconlinetraining
 
Introduction to SAP Security
Introduction to SAP SecurityIntroduction to SAP Security
Introduction to SAP Security
Nasir Gondal
 
Day5 R3 Basis Security
Day5 R3 Basis SecurityDay5 R3 Basis Security
Day5 R3 Basis Security
Guang Ying Yuan
 
SAP GRC AC 10.1 - ARM Workflows
SAP GRC AC 10.1 - ARM WorkflowsSAP GRC AC 10.1 - ARM Workflows
SAP GRC AC 10.1 - ARM Workflows
Rohan Andrews
 
SAP GRC
SAP GRC SAP GRC
SAP GRC
Kellton Tech Solutions Ltd
 

Recommended

Anil kumar sap security and grc consultant
Anil kumar sap security and grc consultantAnil kumar sap security and grc consultant
Anil kumar sap security and grc consultant
Anil Kumar
 
Anil kumar sap security & GRC
Anil kumar sap security & GRCAnil kumar sap security & GRC
Anil kumar sap security & GRC
Anil Kumar
 
SAP GRC 10 Access Control
SAP GRC 10 Access ControlSAP GRC 10 Access Control
SAP GRC 10 Access Control
Nasir Gondal
 
Sap GRC Basic Information | GRC 12 online training
Sap GRC Basic Information | GRC 12 online trainingSap GRC Basic Information | GRC 12 online training
Sap GRC Basic Information | GRC 12 online training
grconlinetraining
 
Introduction to SAP Security
Introduction to SAP SecurityIntroduction to SAP Security
Introduction to SAP Security
Nasir Gondal
 
Day5 R3 Basis Security
Day5 R3 Basis SecurityDay5 R3 Basis Security
Day5 R3 Basis Security
Guang Ying Yuan
 
SAP GRC AC 10.1 - ARM Workflows
SAP GRC AC 10.1 - ARM WorkflowsSAP GRC AC 10.1 - ARM Workflows
SAP GRC AC 10.1 - ARM Workflows
Rohan Andrews
 
SAP GRC
SAP GRC SAP GRC
SAP GRC
Kellton Tech Solutions Ltd
 
Iia los angeles sap security presentation
Iia los angeles sap security presentation Iia los angeles sap security presentation
Iia los angeles sap security presentation
hkodali
 
SAP SECURITY GRC
SAP SECURITY GRCSAP SECURITY GRC
SAP SECURITY GRC
techgurusuresh
 
Practical guide for sap security
Practical guide for sap security Practical guide for sap security
Practical guide for sap security
Siva Pradeep Bolisetti
 
sap security interview_questions
sap security interview_questionssap security interview_questions
sap security interview_questions
sumitmsn2
 
Sap Security Workshop
Sap Security WorkshopSap Security Workshop
Sap Security Workshop
larrymcc
 
Sap security interview question & answers
Sap security interview question & answersSap security interview question & answers
Sap security interview question & answers
Nancy Nelida
 
081712 isaca-atl-auditing sap-grc
081712 isaca-atl-auditing sap-grc081712 isaca-atl-auditing sap-grc
081712 isaca-atl-auditing sap-grc
hkodali
 
SAP Security & GRC Framework
SAP Security & GRC FrameworkSAP Security & GRC Framework
SAP Security & GRC Framework
Harish Sharma
 
Mubashir Ahmed ERP SAP Basis Consultant Resume with 3 Yr Exp
Mubashir Ahmed ERP SAP Basis Consultant Resume with 3 Yr ExpMubashir Ahmed ERP SAP Basis Consultant Resume with 3 Yr Exp
Mubashir Ahmed ERP SAP Basis Consultant Resume with 3 Yr Exp
Mubashir Ahmed
 
Sap Security
Sap SecuritySap Security
Sap Security
techgurusuresh
 
SAP Security important Questions
SAP Security important QuestionsSAP Security important Questions
SAP Security important Questions
Ragu M
 
Segregation of duties in SAP @ ISACA Pune presentation on 18.4.2015
Segregation of duties in SAP @ ISACA Pune presentation on 18.4.2015 Segregation of duties in SAP @ ISACA Pune presentation on 18.4.2015
Segregation of duties in SAP @ ISACA Pune presentation on 18.4.2015
CA CISA Jayjit Biswas
 
Introduction on sap security
Introduction on sap securityIntroduction on sap security
Introduction on sap security
yektek
 
What is sap security
What is sap securityWhat is sap security
What is sap security
grconlinetraining
 
SAP BI 7 security concepts
SAP BI 7 security conceptsSAP BI 7 security concepts
SAP BI 7 security concepts
Siva Pradeep Bolisetti
 
Resume Of_Rabindra Kumar Sahu_SAP MM_PM_AS on 07.03.2016
Resume Of_Rabindra Kumar Sahu_SAP MM_PM_AS on 07.03.2016Resume Of_Rabindra Kumar Sahu_SAP MM_PM_AS on 07.03.2016
Resume Of_Rabindra Kumar Sahu_SAP MM_PM_AS on 07.03.2016
Rabindra Kumar Sahu
 
SAP Governance, Risk and Compliance (GRC)
SAP Governance, Risk and Compliance (GRC)SAP Governance, Risk and Compliance (GRC)
SAP Governance, Risk and Compliance (GRC)
SAP Latinoamérica
 
Grc 10 training
Grc 10 trainingGrc 10 training
Grc 10 training
suresh
 
SAP grc
SAP grc SAP grc
SAP grc
smadhu29
 
MTO Planning Strategies .pdf
MTO Planning Strategies .pdfMTO Planning Strategies .pdf
MTO Planning Strategies .pdf
RavindraSutar9
 
[A] Teampany Presentation
[A] Teampany Presentation[A] Teampany Presentation
[A] Teampany Presentation
Johanna Echeverri / Marketing Online - Social Media - Sales.
 
VANSA_Annual Report_2015_interactive
VANSA_Annual Report_2015_interactiveVANSA_Annual Report_2015_interactive
VANSA_Annual Report_2015_interactive
Ijeoma Loren Uche-Okeke
 

More Related Content

What's hot

sap security interview_questions
sap security interview_questionssap security interview_questions
sap security interview_questions
sumitmsn2
 
081712 isaca-atl-auditing sap-grc
081712 isaca-atl-auditing sap-grc081712 isaca-atl-auditing sap-grc
081712 isaca-atl-auditing sap-grc
hkodali
 
SAP Security & GRC Framework
SAP Security & GRC FrameworkSAP Security & GRC Framework
SAP Security & GRC Framework
Harish Sharma
 
Mubashir Ahmed ERP SAP Basis Consultant Resume with 3 Yr Exp
Mubashir Ahmed ERP SAP Basis Consultant Resume with 3 Yr ExpMubashir Ahmed ERP SAP Basis Consultant Resume with 3 Yr Exp
Mubashir Ahmed ERP SAP Basis Consultant Resume with 3 Yr Exp
Mubashir Ahmed
 
SAP Security important Questions
SAP Security important QuestionsSAP Security important Questions
SAP Security important Questions
Ragu M
 
Resume Of_Rabindra Kumar Sahu_SAP MM_PM_AS on 07.03.2016
Resume Of_Rabindra Kumar Sahu_SAP MM_PM_AS on 07.03.2016Resume Of_Rabindra Kumar Sahu_SAP MM_PM_AS on 07.03.2016
Resume Of_Rabindra Kumar Sahu_SAP MM_PM_AS on 07.03.2016
Rabindra Kumar Sahu
 
MTO Planning Strategies .pdf
MTO Planning Strategies .pdfMTO Planning Strategies .pdf
MTO Planning Strategies .pdf
RavindraSutar9
 

What's hot (20)

Iia los angeles sap security presentation
Iia los angeles sap security presentation Iia los angeles sap security presentation
Iia los angeles sap security presentation
 
SAP SECURITY GRC
SAP SECURITY GRCSAP SECURITY GRC
SAP SECURITY GRC
 
Practical guide for sap security
Practical guide for sap security Practical guide for sap security
Practical guide for sap security
 
sap security interview_questions
sap security interview_questionssap security interview_questions
sap security interview_questions
 
Sap Security Workshop
Sap Security WorkshopSap Security Workshop
Sap Security Workshop
 
Sap security interview question & answers
Sap security interview question & answersSap security interview question & answers
Sap security interview question & answers
 
081712 isaca-atl-auditing sap-grc
081712 isaca-atl-auditing sap-grc081712 isaca-atl-auditing sap-grc
081712 isaca-atl-auditing sap-grc
 
SAP Security & GRC Framework
SAP Security & GRC FrameworkSAP Security & GRC Framework
SAP Security & GRC Framework
 
Mubashir Ahmed ERP SAP Basis Consultant Resume with 3 Yr Exp
Mubashir Ahmed ERP SAP Basis Consultant Resume with 3 Yr ExpMubashir Ahmed ERP SAP Basis Consultant Resume with 3 Yr Exp
Mubashir Ahmed ERP SAP Basis Consultant Resume with 3 Yr Exp
 
Sap Security
Sap SecuritySap Security
Sap Security
 
SAP Security important Questions
SAP Security important QuestionsSAP Security important Questions
SAP Security important Questions
 
Segregation of duties in SAP @ ISACA Pune presentation on 18.4.2015
Segregation of duties in SAP @ ISACA Pune presentation on 18.4.2015 Segregation of duties in SAP @ ISACA Pune presentation on 18.4.2015
Segregation of duties in SAP @ ISACA Pune presentation on 18.4.2015
 
Introduction on sap security
Introduction on sap securityIntroduction on sap security
Introduction on sap security
 
What is sap security
What is sap securityWhat is sap security
What is sap security
 
SAP BI 7 security concepts
SAP BI 7 security conceptsSAP BI 7 security concepts
SAP BI 7 security concepts
 
Resume Of_Rabindra Kumar Sahu_SAP MM_PM_AS on 07.03.2016
Resume Of_Rabindra Kumar Sahu_SAP MM_PM_AS on 07.03.2016Resume Of_Rabindra Kumar Sahu_SAP MM_PM_AS on 07.03.2016
Resume Of_Rabindra Kumar Sahu_SAP MM_PM_AS on 07.03.2016
 
SAP Governance, Risk and Compliance (GRC)
SAP Governance, Risk and Compliance (GRC)SAP Governance, Risk and Compliance (GRC)
SAP Governance, Risk and Compliance (GRC)
 
Grc 10 training
Grc 10 trainingGrc 10 training
Grc 10 training
 
SAP grc
SAP grc SAP grc
SAP grc
 
MTO Planning Strategies .pdf
MTO Planning Strategies .pdfMTO Planning Strategies .pdf
MTO Planning Strategies .pdf
 

Viewers also liked

Premier league bulletin rotterdam 2017 v2
Premier league bulletin rotterdam 2017 v2Premier league bulletin rotterdam 2017 v2
Premier league bulletin rotterdam 2017 v2
emiliomerayo
 
0 1 OPD-Theory system overview
0 1 OPD-Theory system overview0 1 OPD-Theory system overview
0 1 OPD-Theory system overview
Graylit
 

Viewers also liked (13)

[A] Teampany Presentation
[A] Teampany Presentation[A] Teampany Presentation
[A] Teampany Presentation
 
VANSA_Annual Report_2015_interactive
VANSA_Annual Report_2015_interactiveVANSA_Annual Report_2015_interactive
VANSA_Annual Report_2015_interactive
 
Seguridad informatica
Seguridad informaticaSeguridad informatica
Seguridad informatica
 
Autómatas Finitos
Autómatas FinitosAutómatas Finitos
Autómatas Finitos
 
Die Zukunft muss offen bleiben
Die Zukunft muss offen bleibenDie Zukunft muss offen bleiben
Die Zukunft muss offen bleiben
 
Alles aus einer Hand - Office 365 für Schulen
Alles aus einer Hand - Office 365 für SchulenAlles aus einer Hand - Office 365 für Schulen
Alles aus einer Hand - Office 365 für Schulen
 
Livro guia11
Livro guia11Livro guia11
Livro guia11
 
Future of UCS: What are we working on?
Future of UCS: What are we working on?Future of UCS: What are we working on?
Future of UCS: What are we working on?
 
【さくらのクラウド】サービス概要カタログ2017年2月号
【さくらのクラウド】サービス概要カタログ2017年2月号【さくらのクラウド】サービス概要カタログ2017年2月号
【さくらのクラウド】サービス概要カタログ2017年2月号
 
Preocupa más casos de espionaje contra instituciones cuidadanas
Preocupa más casos de espionaje contra instituciones cuidadanasPreocupa más casos de espionaje contra instituciones cuidadanas
Preocupa más casos de espionaje contra instituciones cuidadanas
 
Premier league bulletin rotterdam 2017 v2
Premier league bulletin rotterdam 2017 v2Premier league bulletin rotterdam 2017 v2
Premier league bulletin rotterdam 2017 v2
 
Allquestions kata eng2017
Allquestions kata eng2017Allquestions kata eng2017
Allquestions kata eng2017
 
0 1 OPD-Theory system overview
0 1 OPD-Theory system overview0 1 OPD-Theory system overview
0 1 OPD-Theory system overview
 

Similar to SAP-Security-Madhu

Anil kumar sap security and grc consultant
Anil kumar sap security and grc consultantAnil kumar sap security and grc consultant
Anil kumar sap security and grc consultant
Anil Kumar
 
sai kanisetty
sai kanisettysai kanisetty
sai kanisetty
sai k
 
sai kanisetty
sai kanisettysai kanisetty
sai kanisetty
sai k
 
Mitul Jain SAP GRC Security
Mitul Jain SAP GRC SecurityMitul Jain SAP GRC Security
Mitul Jain SAP GRC Security
mitul jain
 
Ritesh Kumar Sap Secuirty & Grc new 2
Ritesh Kumar Sap Secuirty & Grc new 2Ritesh Kumar Sap Secuirty & Grc new 2
Ritesh Kumar Sap Secuirty & Grc new 2
Ritesh Kumar
 
Shipra - SAP Security
Shipra - SAP SecurityShipra - SAP Security
Shipra - SAP Security
Shipra anand
 
SAP Security Consultant rathina
SAP Security Consultant rathinaSAP Security Consultant rathina
SAP Security Consultant rathina
Rathna Kumar
 
IDM Resume _ Kiran
IDM Resume _ KiranIDM Resume _ Kiran
IDM Resume _ Kiran
Kiran Kumar
 
Sap security online training in jaipure,nepal
Sap security online training in jaipure,nepalSap security online training in jaipure,nepal
Sap security online training in jaipure,nepal
SAP Online Training
 

Similar to SAP-Security-Madhu (20)

Anil kumar sap security and grc consultant
Anil kumar sap security and grc consultantAnil kumar sap security and grc consultant
Anil kumar sap security and grc consultant
 
sai kanisetty
sai kanisettysai kanisetty
sai kanisetty
 
sai kanisetty
sai kanisettysai kanisetty
sai kanisetty
 
Mitul Jain SAP GRC Security
Mitul Jain SAP GRC SecurityMitul Jain SAP GRC Security
Mitul Jain SAP GRC Security
 
Ritesh Kumar Sap Secuirty & Grc new 2
Ritesh Kumar Sap Secuirty & Grc new 2Ritesh Kumar Sap Secuirty & Grc new 2
Ritesh Kumar Sap Secuirty & Grc new 2
 
shravan
shravanshravan
shravan
 
HariKrishnan
HariKrishnanHariKrishnan
HariKrishnan
 
Senior Test Engineer
Senior Test EngineerSenior Test Engineer
Senior Test Engineer
 
CURRICULUM_VITAE_new_02_11_2015
CURRICULUM_VITAE_new_02_11_2015CURRICULUM_VITAE_new_02_11_2015
CURRICULUM_VITAE_new_02_11_2015
 
Resume
ResumeResume
Resume
 
SENTHIL RAMADOSS CV
SENTHIL RAMADOSS CVSENTHIL RAMADOSS CV
SENTHIL RAMADOSS CV
 
Shipra - SAP Security
Shipra - SAP SecurityShipra - SAP Security
Shipra - SAP Security
 
BA Resume
BA ResumeBA Resume
BA Resume
 
Security
SecuritySecurity
Security
 
SAP Security Consultant rathina
SAP Security Consultant rathinaSAP Security Consultant rathina
SAP Security Consultant rathina
 
IDM Resume _ Kiran
IDM Resume _ KiranIDM Resume _ Kiran
IDM Resume _ Kiran
 
Resume
ResumeResume
Resume
 
Sap security online training in jaipure,nepal
Sap security online training in jaipure,nepalSap security online training in jaipure,nepal
Sap security online training in jaipure,nepal
 
Saipraveen_Cirrculum_Vitae
Saipraveen_Cirrculum_VitaeSaipraveen_Cirrculum_Vitae
Saipraveen_Cirrculum_Vitae
 
OneAccess-UserManager
OneAccess-UserManagerOneAccess-UserManager
OneAccess-UserManager
 

SAP-Security-Madhu

  • 1. Madhu Sharma E-mail: rose.madhur@gmail.com SAP Security and GRC consultant PH: +91 8149715037 SUMMARY:  Extensive SAP experience in support of SAP Security & GRC AC.  Hands on Operational experience in Security of SAP R/3, ECC 6.0 and GRC AC 10.0  Hands on experience in GRC AC 10.0 components ARA / EAM & ARM.  Mitigation of Risks at User level by assigning the id to the appropriate Mitigation Control Id.  User master records creation and assigning roles to users based on access requests.  Experience with SAP Profile Generator with strong skills related to the Authorization concepts.  Hands on experience in Support and Maintenance of creating roles, assigning roles, assigning authorization objects to roles using profile generator.  Experience in user login parameters and password parameters.  Restrict the Table level access Using authorization object S_TABU_DIS  Monitoring the list of users having access to Sensitive Transaction Codes.  Analyzing of missing authorizations and assigning Roles to users.  Good analytical and problem solving skills for resolving security issues  Worked on different areas of SAP to ensure security control (SAP logon ID, SAP User master data and Defaults, SAP Authorization/Profiles, transaction Locking/Unlocking, SAP table, basic ABAP security.  Expert of User administration and Authorization concept.  Strong working knowledge on master, derived and composite roles.  Fixing Authorization issues for end users.  Retrieving Reports via AGR & USR Tables.  Knowledge in creation of Multiple R/3 User IDs using CATT Scripts.  Maintain Authorization group according to business requirements.  Knowledge in License (USMM/SLAW)  Worked in SAP Application Security involving User administration, Authorization management and Troubleshooting.  Have a positive and flexible attitude and great team player.  Able to work in any situation both in a team and as individual. EDUCATION:  Bachelor of Arts (Hist - Hons) from Delhi University in 2004  PGDBA – HR from Symbioses University in 2007 WORK EXPERIENCE:  Worked as SAP Security Consultant with V Log Tech P Ltd, Bangalore Dec 2008 – Feb 2013.  Worked as Software Engineer with Syntel Ltd, Pune from Feb 2013 to Aug 2014.  Working as SAP Security & GRC consultant with Winspiron Technologies Pvt Ltd from Nov
  • 2. 2014 till present. PROFFESIONAL EXPERIENCE: PROJECT: 1 Organization : Winspiron Technologies Pvt. Ltd Client : GMAC Role : SAP Security & GRC Consultant ROLES AND RESPONSIBILITIES:  User Management such as User Creation, deletion of user, user’s lock & unlocks.  Simplifying maintenance of users by creating User Groups.  Role maintenance like creation/deletion/modification.  Transportation of roles across the landscape through transports requests from DEV.  Analyzing of missing authorizations and assigning Roles to users as per the approval.  Creation and maintenance of Master & Derived Roles.  Monitoring list of users with incorrect logons and password change.  Critical authorization objects such as S_TABU_DIS, S_PROGRAM, S_DEVELOP were restricted and monitored.  Analyzing of missing authorizations and assigning Roles to users.  Assignment of Roles as per the approval from the concerned team managers.  Maintaining Profile parameters including login parameters to restrict at authentication level.  Monitoring list of users who are having access to powerful profiles like SAP_ALL and SAP_NEW etc and alerting the client on the same.  Periodically executed reports (RSUSR*) to detect security checks.  Worked with security related tables such as AGR_TCODES, AGR_USERS, AGR_DEFINE, AGR_1251, 1252. Performed user maintenance tasks, User creation, deletion, lock down, activation, password management tasks and ran various user administration reports.  Strong working knowledge of Roles & Authorization maintenance.  Created users, roles and assigned required privileges for the database access.  Worked profile generator (PFCG) in creating roles, profiles, Composite roles, Derived roles, and Master roles.  Strong experience in SUIM: User Information System.  Transporting all authorization components (Roles, Authorization Objects & Classes, Check indicator and Field Values)  Assignment of role (activity group) requirements based on job functions and audit control processes.  Worked on SAP Check Indicator Defaults and Field values, reduced the scope of Authorization checks using transaction SU24 and maintained check indicators for Transaction codes
  • 3.  Troubleshoot security/authorization related problems using SU53, ST01 and SUIM  Created, generated profiles, Authorizations, object classes, objects, and roles and assigned to user master.  Using CATT script for mass generation of roles and User assignments.  Created new activity groups as per Segregation of Duties requirements.  Created & modified structural profiles, PD profiles assignment.  Created Mass users via writing LSMW scripts.  Assigning roles to users positions in HR, troubleshoot access issues  Checked if the PFCG_TIME_DEPENDENCY is running for user master reconciliations.  Scheduling and administering Background jobs.  For complex issues activate the trace via ST01 and ask the user to perform the required task.  Restricting the authorization groups for table maintain, creating authorization group using SE54 to build new authorization groups to restrict tables via authorization object S_TABU_DIS  Setting up profile parameters and security Audit log activation  Strong working knowledge on custom object class and authorization object PROJECT: 1 Organization : Syntel Ltd. Client : Allstate Role : Software Engineer - SAP ROLES AND RESPONSIBILITIES:  User administration-User creation/Role assignment/Profile Modification as per the approval.  Creation and maintenance of roles and custom authorization objects.  Worked on Derived role/Inheritance relationship.  Maintained the assignments of Authorization objects.  Troubleshooting user roles, security authorization objects and authorizations to resolve security conflicts using transactions ST01 and SU53  Performed User Master Reconciliation using pfcg_time_dependency  Analyzing authorization problems/errors and implementing appropriate solutions.  Involved with technical team in setting up SAP system for auto log-out, password length and expiration and specifying impermissible passwords.  Performed analysis of SU53 and SU56 user analysis as well as setting up and analyzing user traces with ST01.  Restricted the list of illegal passwords.  Interaction with business people for designing a Role matrix.  Resolving issues while performing SU25.  Critical authorization objects maintenance.  Configuring and performing Audit logs (SM19 and SM20).  BI/BW Security concepts/Analysis Authorization.  Converting Reporting authorization to Analysis authorization.
  • 4.  CUA (Central user administration) on single system with multiple clients and multiple systems. User - Role mapping through CUA.  SUIM and Table concept in security.  HR Security and Structural authorization.  Knowledge in profile maintenance & Background jobs.  Transport Management related to Roles and Authorization object.  Hands on experience in GRC AC 10.0 components ARA / EAM & ARM.  Mitigation of Risks at User level by assigning the id to the appropriate Mitigation Control Id. PROJECT: 1 Organization : V Log Tech Pvt Ltd Client : B Braun Role : Software Engineer – SAP - Security ROLES AND RESPONSIBILITIES:  User Management such as User Creation, deletion of user, user’s lock & unlocks.  Simplifying maintenance of users by creating User Groups.  Role maintenance like creation/deletion/modification.  Transportation of roles across the landscape through transports requests from DEV.  Analyzing of missing authorizations and assigning Roles to users as per the approval.  Creation and maintenance of Master & Derived Roles.  Monitoring list of users with incorrect logons and password change.  Analyzing of missing authorizations and assigning Roles to users.  Assignment of Roles as per the approval from the concerned team managers.  Maintaining Profile parameters including login parameters to restrict at authentication level.  Restricted the list of illegal passwords.  Interaction with business people for designing a Role matrix.  Resolving issues while performing SU25.  Critical authorization objects maintenance.  Configuring and performing Audit logs (SM19 and SM20). Besides:- Support for kernel Update, Support Pack & system monitoring for SAP - Basis activities. Signature : Madhu Sharma