Skills
• Expert in SOX Audits and IT Compliances and implemented proper controls to protect the applications’ security.
• Created and maintained Firefighter ID for individual business areas.
• Expert in SOD conflicts analysis and redesigning User/Role based on the results.
• Business risk review, control and mitigation:
• Utilized SUIM (User Information System) and SE16 to pull various reports
• SAP Security – ECC, Fiori, Net weaver identity management/EP
About
• As I have over 10 years of professional experience pre-dominantly in SAP (Security and GRC).
• Experience in implementation, upgrade, rollout, and support of SAP projects across S/4HANA, ECC, HR, BI/BW, Fiori, HANA DB, and Net Weaver Portal.
• Experience in GRC Access control Configured and customize ARA (Access Risk Analysis), ARM (Access Request Management), EAM (Emergency Access Management) BRM (Business Role Management) and UAR (User Access Review) as per inputs received from the Business and Respective functional teams and Compliance teams.
• Optimized GRC rule sets, mitigations, and risk remediation processes to strengthen security governance.
• Expertise in role-based access control (RBAC), managing Fiori and GUI-based security roles, including custom catalogs, groups, Spaces, pages, and OData services to enforce least privilege access and segregation of duties (SoD).
• I am skilled in user lifecycle management, covering provisioning, de-provisioning, access reviews, and remediation for security compliance and audit readiness.
• Strong knowledge of authorization concepts, leveraging SU20, SU21, SU24, SU25 for role and object analysis, and SU53, ST01, SUIM and STAUTHTRACE for troubleshooting authorization issues.
• Expertise in RSECADMIN for BI Security: Configured and maintained analysis authorizations to enforce data-level and report-level access control in SAP BI, ensuring users have appropriate access to Info Providers, queries, and reports.
• Extensive experience in SAP HR Security, managing access through PA20, PA30, PO13 and structural authorizations.
• Worked closely with HR teams to define position-based access controls, restricting sensitive employee data access per organizational hierarchy.
• Led security activities in system refreshes, ensuring post-refresh role validation and access consistency across SAP landscapes.
• Extensive experience in CUA administration, centralizing user management and security governance across multiple SAP systems.
• Worked with security tables like AGR* and USR* for user access analysis and modification.
• Mass generation of profiles and user assignment comparisons (SUPC, PFUD).
• Ensured adherence to ITGC, SOX, and GDPR by implementing robust security controls and monitoring mechanisms.
• Provided audit-ready reports and conducted periodic security reviews to validate access compliance across SAP landscapes.
• Collaborated with internal/external auditors to resolve compliance issues and enforce security best practices.
• Proficient in SAP Single Sign-On (SSO) administration, ensuring seamless and secure authentication across SAP environments.
• Experienced in incident management and change control, using Service Now, Secure Pro and ChaRM for security-related issue tracking and resolution.
• Managed SAP OSS connections, SIDs creation, and developer/access key generation through SAP Marketplace for system support and issue resolution.
Profile Photo
