Security Consultant
Capgemini
Skills
PI, BPC, ARA, ARM, EAM, BRM, BW 3.5, BI 7.0/7.3 BOBJ, BPC 10.1, Fiori, SAP GRC Access Control 10 & 10.1 (GRC 5.3, APPROVA, FACT OMADA, BIZRIGHT, Windows, Linux, SAP, ERP, MSMP Workflows, BRF+ rules, Ariba, Data Migration, role based access control, BOBJ 3.5 integration, BI 7.3, GRC 10, BOBJ 3.0 & 3.5, Enterprise Portal, SAP BI
Project history
02/2018
-
05/2018
Project Name CCEP - Coke Iberia
Client CCEP
Profile SAP Security
Role Security Consultant
Roles performed * Worked with Business process Owners for GRC Rule set customization
& performed accuracy checks for ARA rule set validation.
* Performed business process analysis, security design, and segregation
of duties analysis using what-if in BizRight.
* Created/ Maintained single, composite and derived roles and
assigning them to users as per the requirement
* Maintained the missing authorizations, open authorization fields and
organizational values.
* Updated SU24 for transaction codes by maintaining the authorization
objects
* User creation and administration like modifying the user profiles
based on requirement lock/ unlock the user ID etc.
* Worked extensively on Analyzing and Solving production problems as
part of SAP security team.
* Good knowledge on user information system (SUIM).
* Extensively worked on USR* and AGR* tables
* Suggesting recommendation as per SAP Best practice.
Technology used in SAP ECC, BizRight
project
Description SAP Security
Client CCEP
Profile SAP Security
Role Security Consultant
Roles performed * Worked with Business process Owners for GRC Rule set customization
& performed accuracy checks for ARA rule set validation.
* Performed business process analysis, security design, and segregation
of duties analysis using what-if in BizRight.
* Created/ Maintained single, composite and derived roles and
assigning them to users as per the requirement
* Maintained the missing authorizations, open authorization fields and
organizational values.
* Updated SU24 for transaction codes by maintaining the authorization
objects
* User creation and administration like modifying the user profiles
based on requirement lock/ unlock the user ID etc.
* Worked extensively on Analyzing and Solving production problems as
part of SAP security team.
* Good knowledge on user information system (SUIM).
* Extensively worked on USR* and AGR* tables
* Suggesting recommendation as per SAP Best practice.
Technology used in SAP ECC, BizRight
project
Description SAP Security
04/2016
-
02/2018
Security Consultant
Capgemini
Project Name S4HANA ERP Refresh
Client Yorkshire Water
Profile SAP GRC/Security
Role Security Consultant
Roles performed * SAP GRC 10.1 project including Enhancement.
* Worked with Business process Owners for GRC Rule set customization
& performed accuracy checks for ARA rule set validation.
* Performed business process analysis, security design, and segregation
of duties analysis using GRC 10.1 ARA.
* Implementation exposure and good understanding of MSMP
Workflows and BRF+ rules.
* Configured multiple workflows for access requests including
Emergency Access Management and for role management.
* Created/ Maintained single, composite and derived roles and
assigning them to users as per the requirement
* Scheduled background jobs for time to time data synchronizations,
Rule generation and Alert log generation
* Maintained the missing authorizations, open authorization fields and
organizational values.
* Updated SU24 for transaction codes by maintaining the authorization
objects
* User creation and administration like modifying the user profiles
based on requirement lock/ unlock the user ID etc.
* Creating reporting authorization object and implementing info object
level security for BW/BPC
* Worked with Successfactor/Ariba/Concur Functional team for
implementing security inline with abap security.
* Worked extensively on Analyzing and Solving production problems as
part of SAP security team.
* Good knowledge on user information system (SUIM).
* Extensively worked on USR* and AGR* tables
* Suggesting recommendation as per SAP Best practice.
Technology used in SAP S4HANA, Fiori, BI/BOBJ, BPC 10.1 & GRC 10.1
project
Description SAP GRC/IDM
Client Yorkshire Water
Profile SAP GRC/Security
Role Security Consultant
Roles performed * SAP GRC 10.1 project including Enhancement.
* Worked with Business process Owners for GRC Rule set customization
& performed accuracy checks for ARA rule set validation.
* Performed business process analysis, security design, and segregation
of duties analysis using GRC 10.1 ARA.
* Implementation exposure and good understanding of MSMP
Workflows and BRF+ rules.
* Configured multiple workflows for access requests including
Emergency Access Management and for role management.
* Created/ Maintained single, composite and derived roles and
assigning them to users as per the requirement
* Scheduled background jobs for time to time data synchronizations,
Rule generation and Alert log generation
* Maintained the missing authorizations, open authorization fields and
organizational values.
* Updated SU24 for transaction codes by maintaining the authorization
objects
* User creation and administration like modifying the user profiles
based on requirement lock/ unlock the user ID etc.
* Creating reporting authorization object and implementing info object
level security for BW/BPC
* Worked with Successfactor/Ariba/Concur Functional team for
implementing security inline with abap security.
* Worked extensively on Analyzing and Solving production problems as
part of SAP security team.
* Good knowledge on user information system (SUIM).
* Extensively worked on USR* and AGR* tables
* Suggesting recommendation as per SAP Best practice.
Technology used in SAP S4HANA, Fiori, BI/BOBJ, BPC 10.1 & GRC 10.1
project
Description SAP GRC/IDM
05/2015
-
03/2016
Team Lead
Capgemini
Project Name MAG ERP
Client Manchester Airport Group
Profile SAP GRC/Security Lead
Role Team Lead
Mr. Nilesh Patel
Roles performed * SAP GRC 10.1 project including Enhancement.
* Worked with Business process Owners for GRC Rule set customization
& performed accuracy checks for ARA rule set validation.
* Performed business process analysis, security design, and segregation
of duties analysis using GRC 10.1 ARA.
* Implementation exposure and good understanding of MSMP
Workflows and BRF+ rules.
* Configured multiple workflows for access requests including
Emergency Access Management and for role management.
* Created/ Maintained single, composite and derived roles and
assigning them to users as per the requirement
* Scheduled background jobs for time to time data synchronizations,
Rule generation and Alert log generation
* Maintained the missing authorizations, open authorization fields and
organizational values.
* Updated SU24 for transaction codes by maintaining the authorization
objects
* User creation and administration like modifying the user profiles
based on requirement lock/ unlock the user ID etc.
* Creating reporting authorization object and implementing info object
level security for BW/BPC
* Worked with Successfactor/Ariba/Concur Functional team for
implementing security inline with abap security.
* Worked extensively on Analyzing and Solving production problems as
part of SAP security team.
* Good knowledge on user information system (SUIM).
* Extensively worked on USR* and AGR* tables
* Suggesting recommendation as per SAP Best practice.
Technology used in SAP ECC, BI/BOBJ, BPC 10.1 & GRC 10.1
project
Description SAP MAG Security
Client Manchester Airport Group
Profile SAP GRC/Security Lead
Role Team Lead
Mr. Nilesh Patel
Roles performed * SAP GRC 10.1 project including Enhancement.
* Worked with Business process Owners for GRC Rule set customization
& performed accuracy checks for ARA rule set validation.
* Performed business process analysis, security design, and segregation
of duties analysis using GRC 10.1 ARA.
* Implementation exposure and good understanding of MSMP
Workflows and BRF+ rules.
* Configured multiple workflows for access requests including
Emergency Access Management and for role management.
* Created/ Maintained single, composite and derived roles and
assigning them to users as per the requirement
* Scheduled background jobs for time to time data synchronizations,
Rule generation and Alert log generation
* Maintained the missing authorizations, open authorization fields and
organizational values.
* Updated SU24 for transaction codes by maintaining the authorization
objects
* User creation and administration like modifying the user profiles
based on requirement lock/ unlock the user ID etc.
* Creating reporting authorization object and implementing info object
level security for BW/BPC
* Worked with Successfactor/Ariba/Concur Functional team for
implementing security inline with abap security.
* Worked extensively on Analyzing and Solving production problems as
part of SAP security team.
* Good knowledge on user information system (SUIM).
* Extensively worked on USR* and AGR* tables
* Suggesting recommendation as per SAP Best practice.
Technology used in SAP ECC, BI/BOBJ, BPC 10.1 & GRC 10.1
project
Description SAP MAG Security
10/2014
-
04/2015
Team Member
Capgemini
Project Name BD GRC Upgrade
Client Becton Dickinson
Profile SAP GRC Consultant
Role Team Member
Roles performed * Understanding the requirement of clients existing GRC approach.
* Analyzing existing access control 5.3
* SAP GRC 10.1 upgrade project including Enhancement.
* Data Migration including transformation -
Ruleset/Owners/Mitigations from GRC 5.3 to 10.1.
* Worked with internal audit / Business process Owners for GRC Rule
set customization & performed accuracy checks for ARA rule set
validation.
* Performed business process analysis, security design, and segregation
of duties analysis using GRC 10.1 ARA.
* Collaborated with Business Process Owners and Senior Management
on mitigation/remediation of SOD conflicts.
* Implementation exposure and good understanding of MSMP
Workflows and BRF+ rules.
* Configured multiple workflows for access requests and for role
management.
* Defined Various role methodologies in BRM as per the requirement,
* Suggesting recommendation as per SAP Best practice.
Technology used in SAP ECC, BI, SCM, PI & GRC 5.3/10.1
project
Description SAP GRC 10.1 Upgrade
Client Becton Dickinson
Profile SAP GRC Consultant
Role Team Member
Roles performed * Understanding the requirement of clients existing GRC approach.
* Analyzing existing access control 5.3
* SAP GRC 10.1 upgrade project including Enhancement.
* Data Migration including transformation -
Ruleset/Owners/Mitigations from GRC 5.3 to 10.1.
* Worked with internal audit / Business process Owners for GRC Rule
set customization & performed accuracy checks for ARA rule set
validation.
* Performed business process analysis, security design, and segregation
of duties analysis using GRC 10.1 ARA.
* Collaborated with Business Process Owners and Senior Management
on mitigation/remediation of SOD conflicts.
* Implementation exposure and good understanding of MSMP
Workflows and BRF+ rules.
* Configured multiple workflows for access requests and for role
management.
* Defined Various role methodologies in BRM as per the requirement,
* Suggesting recommendation as per SAP Best practice.
Technology used in SAP ECC, BI, SCM, PI & GRC 5.3/10.1
project
Description SAP GRC 10.1 Upgrade
01/2014
-
09/2014
Team Member
Capgemini
Project Name Chemtura Role Re-design
Client Chemtura
Profile SAP Security Consultant
Role Team Member
Roles performed * Understanding the requirement of clients sap security.
* Analyzing existing role based access control.
* Suggesting recommendation as per SAP Best practice.
Technology used in SAP ECC, BI, SCM, PI & GRC 10
project
Description SAP role redesign
Client Chemtura
Profile SAP Security Consultant
Role Team Member
Roles performed * Understanding the requirement of clients sap security.
* Analyzing existing role based access control.
* Suggesting recommendation as per SAP Best practice.
Technology used in SAP ECC, BI, SCM, PI & GRC 10
project
Description SAP role redesign
05/2011
-
11/2013
Team Lead
Accenture
Project Name Multiple GRC Project
Client SATORP (Saudi Arabia)
Eskom (South Africa)
Anglo Gold Ashanti (South Africa)
Profile Team Lead
Roles performed * Multiple SAP GRC 10 Implementation project starting from Ramp Up
version till SP11.
* Closely worked with Business Process Owners, Senior Management
and Audit team in defining the various functions and risks in the
systems.
* Worked with internal audit / Business process Owners for GRC Rule
set customization & performed accuracy checks for ARA rule set
validation.
* Performed business process analysis, security design, and segregation
of duties analysis using GRC 10 ARA.
* Collaborated with Business Process Owners and Senior Management
on mitigation/remediation of SOD conflicts.
* Implementation exposure and good understanding of MSMP
Workflows and BRF+ rules.
* Configured multiple workflows for access requests and for role
management.
* Defined Various role methodologies in BRM as per the requirement,
* Worked with application teams for the design, implementation and
maintenance of SAP roles and authorization, utilizing GRC.
* Worked extensively on Analyzing and Solving production problems as
part of SAP security team.
* Created/ Maintained roles and assigning them to users as per the
requirement on BOBJ 3.5 integration to BI 7.3
Technology used in SAP ECC, BI 7.0, GRC 10, BOBJ 3.0 & 3.5,
project Enterprise Portal
Description GRC 10 & Security Design for SAP BI 7.0/7.3 & BOBJ 3.0/3.5
Client SATORP (Saudi Arabia)
Eskom (South Africa)
Anglo Gold Ashanti (South Africa)
Profile Team Lead
Roles performed * Multiple SAP GRC 10 Implementation project starting from Ramp Up
version till SP11.
* Closely worked with Business Process Owners, Senior Management
and Audit team in defining the various functions and risks in the
systems.
* Worked with internal audit / Business process Owners for GRC Rule
set customization & performed accuracy checks for ARA rule set
validation.
* Performed business process analysis, security design, and segregation
of duties analysis using GRC 10 ARA.
* Collaborated with Business Process Owners and Senior Management
on mitigation/remediation of SOD conflicts.
* Implementation exposure and good understanding of MSMP
Workflows and BRF+ rules.
* Configured multiple workflows for access requests and for role
management.
* Defined Various role methodologies in BRM as per the requirement,
* Worked with application teams for the design, implementation and
maintenance of SAP roles and authorization, utilizing GRC.
* Worked extensively on Analyzing and Solving production problems as
part of SAP security team.
* Created/ Maintained roles and assigning them to users as per the
requirement on BOBJ 3.5 integration to BI 7.3
Technology used in SAP ECC, BI 7.0, GRC 10, BOBJ 3.0 & 3.5,
project Enterprise Portal
Description GRC 10 & Security Design for SAP BI 7.0/7.3 & BOBJ 3.0/3.5
01/2009
-
04/2011
Sr. SAP Authorization Consultant
Capgemini
Project Name Becton & Dickinson Role Design
Client Becton & Dickinson
Profile Sr. SAP Authorization Consultant
Roles performed * Created/ Maintained single, composite and derived roles and
assigning them to users as per the requirement
* Scheduled background jobs for time to time data synchronizations,
Rule generation and Alert log generation
* Maintained the missing authorizations, open authorization fields and
organizational values.
* Updated SU24 for transaction codes by maintaining the authorization
objects
* User creation and administration like modifying the user profiles
based on requirement lock/ unlock the user ID etc.
* Creating reporting authorization object and implementing info object
level security for BW
* Worked extensively on Analyzing and Solving production problems as
part of SAP security team.
* Good knowledge on user information system (SUIM).
* Extensively worked on USR* and AGR* tables
Technology used in SAP ECC, BW 3.5
project
Description Role Based Access Control
Client Becton & Dickinson
Profile Sr. SAP Authorization Consultant
Roles performed * Created/ Maintained single, composite and derived roles and
assigning them to users as per the requirement
* Scheduled background jobs for time to time data synchronizations,
Rule generation and Alert log generation
* Maintained the missing authorizations, open authorization fields and
organizational values.
* Updated SU24 for transaction codes by maintaining the authorization
objects
* User creation and administration like modifying the user profiles
based on requirement lock/ unlock the user ID etc.
* Creating reporting authorization object and implementing info object
level security for BW
* Worked extensively on Analyzing and Solving production problems as
part of SAP security team.
* Good knowledge on user information system (SUIM).
* Extensively worked on USR* and AGR* tables
Technology used in SAP ECC, BW 3.5
project
Description Role Based Access Control
09/2007
-
01/2009
Team Lead
Tata Consultancy Services
Project Name SAP FACT OMADA
Client AP Moller Group
Profile Team Lead
Roles performed * User creation and administration like lock/ unlock the user ID,
modifying the profiles based on requirement with FACT Omada Tool.
* Creating and maintaining single, composite and derived roles and
assigning roles to users.
* Maintaining the missing authorizations, open authorization fields and
organizational values.
* Updating SU24 for maintaining the transaction codes by adding
authorization objects
* Creating reporting authorization object and implementing info object
level security for BW
* Maintaining authorizations for data targets for reporting users
* Performed user comparison using PFCG, PFUD and also by running
PFCG_TIME_DEPENDENCY job.
Technology used in SAP ECC, BW 3.5
project Third Party Tool FACT OMADA
Description SAP Security Roll Out
Client AP Moller Group
Profile Team Lead
Roles performed * User creation and administration like lock/ unlock the user ID,
modifying the profiles based on requirement with FACT Omada Tool.
* Creating and maintaining single, composite and derived roles and
assigning roles to users.
* Maintaining the missing authorizations, open authorization fields and
organizational values.
* Updating SU24 for maintaining the transaction codes by adding
authorization objects
* Creating reporting authorization object and implementing info object
level security for BW
* Maintaining authorizations for data targets for reporting users
* Performed user comparison using PFCG, PFUD and also by running
PFCG_TIME_DEPENDENCY job.
Technology used in SAP ECC, BW 3.5
project Third Party Tool FACT OMADA
Description SAP Security Roll Out
03/2006
-
07/2007
Team Member
TechMahindra LTD
Project Name SAP Role Based Access Control
Client Mahindra & Mahindra
Profile Team Member
Roles performed * User creation and administration like modifying the user profiles
based on requirement lock/ unlock the user ID etc.
* Creating/ maintaining roles like single, composite and derived role.
* Created transport requests to move profiles and roles to the proper
clients.
* Creating reporting authorization object and implementing info object
level security for BW
* Maintaining authorizations for data targets for reporting users
* Optimizing the authorization checks by utilizing the SU53, user
information and system traces.
* Performed authorization trace using ST01 for the issues related to the
authorization issue.
* Performed User comparison using PFCG, PFUD and by scheduled
PFCG_time_dependency job
Technology used in SAP 4.7 & ECC, BW 3.0
project Third Party Tool APPROVA
Description SAP Security Roll Out
Client Mahindra & Mahindra
Profile Team Member
Roles performed * User creation and administration like modifying the user profiles
based on requirement lock/ unlock the user ID etc.
* Creating/ maintaining roles like single, composite and derived role.
* Created transport requests to move profiles and roles to the proper
clients.
* Creating reporting authorization object and implementing info object
level security for BW
* Maintaining authorizations for data targets for reporting users
* Optimizing the authorization checks by utilizing the SU53, user
information and system traces.
* Performed authorization trace using ST01 for the issues related to the
authorization issue.
* Performed User comparison using PFCG, PFUD and by scheduled
PFCG_time_dependency job
Technology used in SAP 4.7 & ECC, BW 3.0
project Third Party Tool APPROVA
Description SAP Security Roll Out
Local Availability
Only available in these countries:
India
