Maintaining access provisioning for Client Enterprise Resource Planning Applications (SAP and non-SAP applications)

• Supporting existing SAP landscape and GRC applications of Client. Resolving any user access or authentication issues for Client SAP and PeopleSoft applications.
• Monitoring daily issues and requests in ITSM tool from SAP application users wih respect to access and authorization.
• Resolving issues on SAP GRC Access Control related to Access Request Management, Access Risk Management, Business Role Management and Emergency Access Management.
• Processing implementations, roll-outs, and analyzing for new custom or existing transactions for SoD conflicts and critical access, and updating SoD risk matrix accordingly.
• Working with internal and external auditors to provide evidences for controls related to JSOX. 

 Technical configuration and implementation for upgrades, new roll-outs and implementations

• Preparing project detail plans, requirement gathering and proposing technical solution design.
• Configuration and implementation in SAP solutions like S4HANA and FIORI.
• Upgrade SAP GRC 10.1 to 12.0, tasks including analyzing SAP notes, adjusting roles, activating BC sets, setting up Fiori launchpad, role name conversions, configuring NetWeaver gateway, resubmitting open requests 
• Unit testing, System Integration testing, and User Acceptance testing for roll out and enhancement projects.
• Designing test strategy, test cases and coordinating with end users for user acceptance testing.
• Providing Hypercare for new roll-outs and implementations. 

Support to Internal and external auditors in Governance and Compliance

• Providing user access management policies and procedures to audit teams.
• Providing evidence for controls related to user access management based on sample requests provided by audit team.
• Providing approvals and justifications to deviation from UAM policies and procedures.
• Providing change control evidence and approvals for the samples picked by audit team.
• Providing SoX and SoD reports to ensure compliance with regulations.    

• Coordinate and manage projects in SAP GRC area for Client
• Act as global point of contact for SAP GRC projects, enhancements, internal and external auditors
• Participate in training and coaching of end users on usage of applications
• Work with Client User Access Management (UAM) Leaders to harmonize UAM procedures and to comply with governance.
• Contribute to global support initiatives according to the priorities
• Work with UAM team to provide responses and evidences to internal and external auditors (PwC).
• Responsible for adhering to applications security procedures, change control guidelines and Sarbanes-Oxley IT and business requirements.
• Strong experience with Role Design and Modification as per SOX and Segregation of Duties (SOD) security requirements and compliance.
• Experience leading SAP Security and GRC Projects, including role re-design, roll-out, enhancement and implementations.
• Managed and implemented multiple SAP GRC projects as Technical Lead and Project Manager.
• Design and develop test strategies and test cases to test automated controls and issues created for deficiencies.
• Implemented Access Control and Process Control Modules in SAP GRC 10.1

Access Control

• BRF+ rules and MSMP workflows in SAP GRC Access Control 10.1
• Business Role Management
• Implement and update SoD, Critical Action and Critical permission rule sets including multiple rule set and work with internal control to define mitigation controls for the risks.
• Centralized and Decentralized firefighter model based on user

Process Control

• Implemented Automated Monitoring (CCM)and Issue Management modules
• Automated Monitoring with Query based sub scenarios (Configurable, ABAP Reports, SAP Query, SoD Integration) 
• Set up Organizations, Business process and subprocesses, regulations, controls
• Set up data source, business rules and maps business rules to controls (business rule assignments).

Responsible for production support and enhancements for Client SAP Systems. Resolve service requests for user authorization issues; role updates and user access requests

• Add SAP system into GRC Landscape: Co-ordinate with Basis and GRC Implementation to add GRC Plug-in new target systems; implement User exit to prevent direct firefighter login. Setup Firefighter IDs in Target system and perform SIT testing
• Responsible for Role Design & development for Phase II (Business roles)
• Phase III (Merge EM & EWM systems to TMS box) implementation of SAP Transportation Management System. 
• Develop SRM PFCG and enterprise portal roles. Develop role menu based on the enterprise role/group authorizations. User administration including managing business partners (BP) and PPOMA (Org Mgmt) assignment for users. 
• Also, portal user administration for SRM users. Troubleshoot user access in NetWeaver and SAP SRM systems. 
• Manage User administration and Role administration in SAP HANA System. Developed SAP HANA Repository roles. 
• Worked on GRC AC 10.1 administration activities like creating Access requests, forwarding to other approvers, approving requests on behalf of approvers, checking the status and troubleshooting access issues.

• Responsible for production support and enhancements for Client SAP Systems. Resolve service requests for user authorization issues; role updates and user access requests
• Production Support: Responsible for Security of SAP (modules SD, MM, FI, CRM, BI, GRC & EP) for production support. 
• Responsible for Access provisioning in SAP ERP systems and trouble shoot issues with user access and authorizations.
• Part of role development; create new roles as per design specifications. Role re-design initiated to reduce role redundancy & improve efficiency and effectiveness. Prepare test scripts and co-ordinate for Unit Testing with functional teams.
• Assist Internal and External Auditors in Annual Authorization Review. Work with external auditors (E&Y) to explain Client security SOPs.
• Troubleshoot user access issues in BI system through RSECADMIN.
• Resolve end user issues in BI system regarding access to reports.
• Performed troubleshooting on R/3 Security problems by using system traces.
• Performed reconciliation of user master records and roles.
• Used report to obtain overview of authorizations and users in SAP system. 
• Assisting Internal and External Auditors in Annual Authorization Review.
• Performed risk analysis with the help of GRC RAR at user/role/critical transactions level to identify SoD and SOX risks and remediate or mitigate them as per the requirements.
• Part of CRM and enterprise portal user management and role maintenance.
• Monitored HP Service Manager for any change to user access and Role maintenance.