Beruflich Dokumente
Kultur Dokumente
Cell: 503-333-4373
Email: uppal.sap@gmail.com
SAP SUMMARY:
Over 7 yrs of SAP Security experience on various SAP modules such as FI/ CO, MM, POSDM, MAP,
BW/BI, BPC, BOBJ, PP, P&D, SD, HR, GRC
Experience in full life cycle Implementation using ASAP Methodology in various versions of R/3
including 4.5B, 4.6C, R/3 4.7, ECC 5.0 and ECC 6.0
Extensive experience with Automatic Profile Generator (PFCG), User Administration, Central User
Administration (CUA), Authorization object maintenance, Problem analysis and troubleshooting, SAP
GUI & CATT and ECATT Scripts, transporting roles, HR Security, Auditing, Segregation of Duties
(SOD) and Sarbanes-Oxley Compliance etc.
Experience in performing SAP Security upgrades from 4.7 to ECC 6.0 and BW 3.5 to BI 7.0
Experienced in leading SAP security teams in audit efforts by helping in defining the audit rules and
automating the reports by defining the programs specifications
Experience in setup of BI security for user roles (query users, administrative users and power users)
Experienced in leading and guiding the security teams in unit testing of the roles using the business
process procedure (BPPs)
Experienced in Strategizing and implementation of SAP Security model, processes and procedures,
defining various Role Matrices and designing templates.
Experience with helpdesk, resolving ticket issues and troubleshooting support problems using
Remedy, Peregrine and Lotus Notes.
Experience on Audit projects and working as a liaison between the security team and auditors.
Administration in assigning the Automatic Profile Generator and Authorization object maintenance.
Experienced extensively in creating and modifying Single Roles, Composite roles and Derived roles
Strategizing and Implementation experience in Central User Administration (CUA) in both single and
multi system landscapes.
Experience in implementing Line Authorizations and troubleshooting of authorizations.
Technical skills
SAP
:
Front End
:
Data Warehouse :
Language
:
Database
:
Operating System :
SAP R/3 4.6B, 4.6C, 4.7, ECC 5.0, ECC 6.0, MM, FI/CO, HR, SD, PP
SAP Enterprise Portals 7.0 SP2/SP4, Sabrix
SAP BW 3.5 and BI 7.0
ABAP/4, Java 2.0, Unix
Oracle 11g, MS Suite
Windows NT, Windows 2000, UNIX
Neeraj Uppal
Cell: 503-333-4373
Email: uppal.sap@gmail.com
Project Details
Client
Role
Version
Industry
ECC 6.0
Involved in gathering end user requirements and implement SAP R/3 security authorizations.
Building SAP roles and define jobs by coordinating with functional project team members.
Work with business owners to define the authorizations needed for users.
Set-up SAP authorization profiles and roles that represent the different end users job definitions.
Use SU02 to examine authorizations in existing roles to identify improper authorizations and correct
them.
Created CATT scripts for creating mass users, deleting mass users, assigning roles to users, locking
and unlocking mass users in a CUA system.
Worked on critical authorization Objects like S_TABU_DIS, S_DEVELOP, S_RZL_ADM,
S_ADMI_FCD and S_TRANSPRT.
Worked on SU24 to maintain Check Indicators for the Transaction Codes.
Extensively used tables like AGR_USERS, AGR_TCODES, AGR_1251, AGR_DEFINE etc.
Resolved daily SAP Security issues.
Maintain various role matrices for roles, authorization objects to keep track of the modifications
made the roles.
Maintenance of User Master Record & Support End Users with Security issues.
Restrict open authorizations to sensitive Transaction codes.
Perform UNIT testing on created roles.
Effectively analyzed trace files and tracked missed authorizations for users access problems and
inserted missing authorizations manually.
Used SU24 to maintain Check Indicator Defaults and Field values, reduced the scope of
Authorization checks.
Extensively used SU53 and ST01 for analyzing the authorization errors
BI 7.0 / BPC
Built Analysis Authorizations using the transaction RSECADMIN.
Build and tested BPC roles and provide Security appropriate authorizations to the team.
Setup security at the Info objects level (field-level security).
Created Custom Reporting Authorization Objects using transaction RSSM.
Linked the Custom Authorization Object to the Info provider
Created roles restricting access to Info cubes, ODS objects, specific queries and workbooks.
Assigned the Analysis Authorizations to the role using the object S_RS_AUTH.
Neeraj Uppal
Cell: 503-333-4373
Email: uppal.sap@gmail.com
ECC 6.0:
Worked on SU10 to perform mass operations.
Analyze and troubleshoot security issues using SU53 , ST01 and SUIM
Worked closely with Audit team for SAP Security Audit and generated Audit Information Systems
(AIS) logs (SM19,SM20 and SM18)
Managed and maintained USOBT_C and USOBX_C tables by using SU24 /SU25
Create and maintained custom transactions by using SE93.
Performed user administration activities such as creating, deleting, renaming, locking and unlocking
users, and resetting passwords, maintaining logon data and assigning roles to the users.
Created User Groups by using transaction code SUGR.
Fix the bugs related to roles and authorizations in order to build security in R/3
Experience in Transport Authorization and provided production support for roles.
Managing Standard and Custom Authorization Object.
Transport Roles using the change request method and also the Download/Upload method for
transporting the roles to systems not in the transport landscape.
Transported the generated roles and profiles using SCC1 and SE09/SE10.
BI 7.0 / BOBJ
Created Analysis Authorizations to compensate for deactivated objects such as S_RS_ICUBE,
S_RS_ODSO etc.
Built Analysis Authorizations using the transaction RSECADMIN.
Assigned the Analysis Authorizations to the role using the object S_RS_AUTH.
Troubleshoot authorizations related problems using RSECADMIN
Made the info objects 0TCAACTVT, 0TCAIPROV, 0TCAVALID authorization-relevant in the info
object maintenance tool RSD1.
Created and loaded profiles as per the requirement from the Cube DSOs
Involved in BAT, UAT and GO-LIVE activities.
Worked with the Business Objects team to create authorizations for the financial reporting.
Involved in testing crystal reports, live office connections/bindings and X-Celsius reports for the
dashboard.
Worked closely with the business teams to fix authorization on Business Objects, Advanced Analysis
and Dashboard.
Build and maintained BW hierarchies as per requirement for various dimensions.
Build security and successful testing of various objects related to Dashboard.
PORTALS
Neeraj Uppal
Cell: 503-333-4373
Email: uppal.sap@gmail.com
Client
Role
Version
Industry
Neeraj Uppal
Cell: 503-333-4373
Email: uppal.sap@gmail.com
Worked closely with MAP team for Query Creation, Planning and Assortment issues. .
SOLUTION MANAGER
Created roles based on the requirements provided by the Solution Manager team.
Developed Solution Manager roles by customizing the role templates provided by SAP
Worked closely with Functional Team to fix issues related to Tech Specs and Func Specs.
Developed roles for different functions performed in the Solution Manager like Implementation and
Distribution, configuring the service desk, Change Request Management, Solution Monitoring and
Job Schedule Management
Resolved issues using SU53, ST01 and Debug mode.
Client
Role
Version
Industry
Worked extensively on Automatic Profile Generator (PFCG) for creating single, derived roles for
modules such as SCM, PP, MM, SD, and FI/CO.
Extensive interaction with Business Organization Managers to understand User and Role Mitigations
and Critical Transactions.
Designed various forms and templates for new user requests, roles, modifications, change
management process etc.
Transported Roles Using SE10 and STMS.
Worked on SU24 to maintain Check Indicators for the Transaction Codes.
Created and maintained Authorization Groups for Tables and Reports and assigned them
accordingly.
Analyze and troubleshoot security issues using SU53 , ST01 and SUIM
Supported other teams by providing requested information.
Check Roles for Missing Objects, Maintained the display changed transaction codes using SU25.
Supported the Testing Team according to request.
Setting up SAP system for auto log-out, password length and expiration and specifying
impermissible passwords.
Maintained Authorization objects using the transaction SU24.
Transported the generated roles and profiles using SAP transport management system.
Worked with security related tables such as AGR_TCODES, AGR_USERS and AGR_DEFINE etc.
Worked with table authorizations to control access to tables and created custom table authorization
groups and assigned to tables using transaction SE54.
Neeraj Uppal
Cell: 503-333-4373
Email: uppal.sap@gmail.com
Created Security reports as Key Controls for SOX including critical transactions/objects and user
administration.
BI 7.0:
Manually adjusted the BW roles to conform to BI 7.0 security.
Setup BI security for user roles (query users, administrative users and power users)
Built Analysis Authorizations using the transaction RSECADMIN.
Assigned the Analysis Authorizations to the role using the object S_RS_AUTH.
Created Custom Reporting Authorization Objects using transaction RSSM.
Linked the Custom Authorization Object to the Info provider
Created roles restricting access to Info cubes, ODS objects, specific queries and workbooks.
Built authorizations to grant access to data on various levels of detail
Setup security at the Info object level (field-level security) and key figure level.
Client
Role
Version
Industry
Neeraj Uppal
Cell: 503-333-4373
Email: uppal.sap@gmail.com
Extensively used the GRC suite of products (Compliance Calibrator, Firefighter, Role Expert and
Access Enforcer
Utilized the VIRSAs Compliance Calibrator tool to check for Segregation of Duties conflicts at
transaction code level and authorization object level
Maintained the Conflicting T-codes, Critical T-codes in the Rule Architect
Created the Business Process, Functional Groups, Risk IDs, Rule IDs for the Compliance Calibrator
according to the Organization Requirement
Assigning the Mitigation control on the roles
Worked with Role Expert to creating and modifying roles
Worked extensively with Firefighter to resolve emergency and show stopping issues.
Created Firefighter ids
Processed production tickets in Access Enforcer (AE)
Mitigated risks in AE
Created users and provision access as requested.
BI 7.0
Upgraded BW 3.5 to BI 7.0
Manually adjusted the BW roles to conform to BI 7.0 security.
Created Analysis Authorizations to compensate for deactivated objects such as S_RS_ICUBE,
S_RS_ODSO etc.
Built Analysis Authorizations using the transaction RSECADMIN.
Assigned the Analysis Authorizations to the role using the object S_RS_AUTH.
Troubleshoot authorizations related problems using RSECADMIN
Made the infoobjects 0TCAACTVT, 0TCAIPROV, 0TCAVALID authorization-relevant in the info
object maintenance tool RSD1.
Setup security at the Info objects level (field-level security).
Created Custom Reporting Authorization Objects using transaction RSSM.
Linked the Custom Authorization Object to the Info provider
Created roles restricting access to Info cubes, ODS objects, specific queries and workbooks.
Troubleshoot authorizations related problems using RSSMTRACE and ST01
Secured Reporting Users by using S_RS_Comp1 (Secure by query owner) and, S_RS_FOLD
(Disable the Info Areas button) in the BEx Analyzer Open Queries dialog box.
Client
: Alcatel-Lucent, NJ (March 05 to June 07)
Role
: SAP Security Analyst (Implementation)
Version
: ECC 5.0, GRC, BW, HR
Industry
: Telecom
Roles and Responsibilities:
Assisted in creating and maintaining security policies and procedures, and all SAP authorizations,
profiles and roles
Created and modified Single roles, Composite roles and derived roles using the Automatic Profile
Generator (PFCG) from the Role Matrices provided by the functional team.
Setup Traces for authorization purposes and Security Audit Logs for audit purposes.
Used SU10 to perform mass operations.
Created CATT scripts for creating mass users, deleting mass users, assigning roles to users, locking
and unlocking mass users.
Used Transport Management System (TMS) to perform transports and mass transports of roles.
Modified Check Maintain flags in SU24 as needed
Created and maintained table Authorization Groups SE54 and assigned Authorization Groups to
tables
Created Custom Transactions Code for tables and programs using SE93
Neeraj Uppal
Cell: 503-333-4373
Email: uppal.sap@gmail.com
Effectively analyzed system trace (ST01) and User Authorization data (SU53) and tracked missing
authorizations for user access problems and inserted missing authorizations manually.
Worked extensively on User Information System (SUIM) for audit purposes.
HR Security
Implemented Position Based Security by assigning Roles to Positions.
Assigned users and roles to positions using both PFCG and PPOM_OLD
Implemented Structural Authorizations by Evaluation path method in the Org Structure.
Maintained Employee Master Data using transaction codes PA30, PA40
Experienced in creating Context-sensitive Authorizations using P_ORGINXX
Developed enterprise structure to fit company needs including personnel area, personnel sub-area,
employee group and employee sub-group.
GRC 5.1
Extensively worked on Compliance Calibrator to identify, analyze and resolve all SOD and Audit
Issues, simulate the role and assign the role to the user using PFCG
Assisted Internal Auditors in framing new Rules for combination of new T-codes in ECC 5.0.
Worked with Internal Auditors in creation of User and Role Mitigations and uploaded them.
Created and modified roles, and generated Profiles using Automatic Profile Generated (PFCG) in the
Child Systems and assigned them to users in the Central System.
Performed reconciliation of user master record and roles using PFUD and SUPC
Gather Processes and Procedures documents, and Matrices to understand creation process, and
naming convention of Manual Profiles, Activity Groups.
Supported other teams by providing requested information.
Converted the Manual Profiles created via SU02 to Roles using SU25.
Handled the remaining missing Transactions in Menu Tab by analyzing table AGR_1251
Supported the Testing Team according to request.
Created and modified Single roles, Composite roles and derived roles using PFCG.
Maintained Users account by copying, renaming, change password, locking unlocking, assigning
Roles etc.
Perform Users Comparison to update User Master Record.
Neeraj Uppal
Cell: 503-333-4373
Email: uppal.sap@gmail.com