Client: ENEL

Type Of Project: Roll Out - The scope of this project includes implementation of new SAP Security roles for different modules in ECC 7.40 ( SD, MM, PUR, LOG, FI )

Senior SAP Security Consultant / Team Leader responsible for leading and Managing the SAP landscape with regard to Security policy and role/user access assignments. Ensuring compliance with corporate policy and SAP standard methodology with regard to security settings. Contribute to the creation and execution of the overall strategy for SAP security and compliance.

- Oversee a team of Consultants assigned to the Project
- Worked extensively with business teams and Functional Leads to design global and local roles based on job responsibilities.
- Creation of Single, Derived and Composite roles using Profile Generator (PFCG)
- Created and Maintained documentation for all roles Created and Modified, this included, Authorization Objects, Fields and values in case the changes need to be reverted
- Run Risk Analysis Remediation Module using SAP GRC Access Control 10.
- Enforce Segregation of Duty policies and promote Compliance
- Analyzed, documented and resolved existing SOD conflicts within Roles
- Analyzed, documented and resolved existing SOD conflicts within Users
- Create and transport roles to facilitate changes throughout the landscape.
- Ensure proper compliance with regulatory requirements (SOD, SOX, etc.)
- Create Test User IDs and Test Roles in SAP Test Systems for all new Transaction Codes and role modifications
- Provide recommendations to improve procedures and processes

• Provide Management, maintenance and support for Argentina, Brazil, Chile, Colombia, Ecuador, Paraguay and Peru
• Hired to review and Resolve backlog of SOD and Security Requests for Global Users via BMC Remedy.
• Manage user administration utilizing SU01 and SU10 (mass changes)
• Review users in SAP and compare users to HR database to confirm job position and plant assignment.
• Review MS Access SAP Roles and Transaction database which was set up in order to correctly assign user access requests.
• Responsible for creating user IDs based on a standard naming convention, creation of new users, modifying user accounts
• Created and Modified Security roles using Profile Generator (PFCG)
• Created and Maintained documentation for all roles Modified, this included, Authorization Objects, Fields and values in case the changes need to be reverted.
• Audited and documented existing SOD conflicts within roles as well as user access using SOD CSI Tool
• Performed analysis of SU53 as well as setting up and analyzing user traces using Transaction ST01 to define and resolve user access problems/authorization issues.
• Responsible for creating/deleting user accounts, change passwords, maintain, lock and unlock users in Prod, QA and Development environments.
• Create and transport roles to facilitate changes throughout the landscape using SE01 then STMS to transport changes across the SAP Landscape.
• Provided Support in English to US and Global Users

Client: Cencosud, a company with more than 16 Brands, 400 stores, and 130,000 employees throughout South America.

- Provide Management, maintenance and support for five Latin American countries: Argentina, Brazil, Chile, Colombia and Peru
- Independent SAP Security Consultant on SAP Sarbanes-Oxley role redesign project for a major South American consumer goods firm.
- Met with Individual Management teams in order to gather requirements for role development.
- Created and Modified Security roles using Profile Generator (PFCG)
- Created and Maintained documentation for all roles Modified, this included, Authorization Objects, Fields and values in case the changes need to be reverted.
- Audited and documented existing SOD conflicts within roles
- Run Risk Analysis Remediation using SAP GRC Access Control 10: Used GRC Modules Compliant User Provisioning ( CUP ) and Risk Analysis and Remediation
- Performed analysis of SU53 as well as setting up and analyzing user traces using Transaction ST01 to define and resolve user access problems/authorization issues.
- Responsible for creating/deleting user accounts, change passwords, maintain, lock and unlock users in Prod, QA and Development environments.
- Create and transport roles to facilitate changes throughout the landscape.
- Upload all new roles created to SAP GRC
- Define SOD risks and mitigate controls.
- Assigned and maintained authorization objects in roles in FI, CO, systems.
- Created and maintained Documentation of all procedures for all Cencosud security Team members
- Compliance with regulatory agency standards (SOX)
- Enforce Segregation of Duty policies and promote Compliance
- Responsible for working with business teams to test new and existing functionality and migrating roles from dev to QA and production.

Project Type: Roll Out

• Project Lead for Project CLARO – Chevron Latin American Roll Out for 5 Latin American Countries
• Met with Individual Management teams in order to gather requirements for role development based on job position.
• Responsible for creating/deleting user IDs based on a standard naming convention, setting up of new users, modifying user accounts, resetting passwords, locking and unlocking user IDs in Prod, QA and Development
• Create and transport roles using Profile Generator (PFCG) to facilitate changes throughout the landscape.
• Created and maintained OSS user accounts to enter the customer system for analysis and correction
• User of Transaction Code ZSE16N and Table AGR_DEFINE to search for alternate roles for NON PAD Team Members
• Performed analysis of SU53 as well as setting up and analyzing user traces using Transaction ST01 to define and resolve user access problems/authorization issues.• Segregation of Duties
• Attend to and Resolve Incidents for Global Users via BMC Remedy
• Assign Management Level users Portal Access via Active Directory
• Provided Support in English to US and Global Users
• Software Used: BMC Remedy, SAP R3
• Key Accomplishments: Successfully resolved more than 700 Security incidents and Led a Team during the rollout