Devnath Mahale

Mobile: +91 9867700470 ~ E-Mail: deva_mahale@yahoo.com

Career Enhancements in SAP Security Consultant

CAREER OVERVIEW

Having 9 years of experience in SAP R/3 as an SAP Security Consultant. Involved in two SAP
projects for SAP SECURITY administration with GRC. PreGo-Live, Go-Live, Post Go-Live, Hyper
Care, Stabilization and Production Support. SAP spanning across implementation and
Support projects.

Participate actively with internal training/knowledge transfer to new security team members as well
as project support team members.

Proficient User administration and Provisioning (SU01 &SU10), Role Administration and
Configuration (PFCG), Users and Activity Groups based Customized Query Reports and
Analysis with Transactions SUIM, SQ01, SQVI and USR*, AGR* Tables. Authorization and
Access related troubleshooting with SU53 and ST01.

Experience with using Audit Information Systems logs (SM19, SM20 and SM18) and SAP
License Audit Tools as USMM and SLAW2.

PROFESSIONAL Training / AFFILIATIONS

 SAP ECC 6.0, 5.0 Enterprise portal : 2007

 Microsoft Certified System Engineer (MCSE) : 2007
 CMS Certified Engineer : 2006

SCHOLASTICS

1997. B.Sc. from Shivaji University Maharashtra 66%

1992 Higher Secondary Certificate from Elephinstone Technical Collage Mumbai - Maharashtra. 42%

1990 School of Secondary Education from SS High School Mumbai – Maharashtra. 52%

Technical Skills :

 ECC 5.0,6.0,BI 7.0,CRM 7.0 Modules: FICO,MM,PP,QM,SD,SAP GRC AC 10.0,SAP BPC,SAP

SCM 5.0 (APO)with Live cache, Oracle Database
 Strong Organization and time management skills. Ability to communicate effectively using
clear, concise and understandable Language.
 Multi-tasking Skills, detail oriented, and ability to work with minimal supervision.
 Talent for identifying creative solutions for service issues to ensure Business satisfaction.
 Role Administration including Role creation, modifications/export/import and using Mass
role creation tools
 Complete rework on Emergency Access Management (EAM), Access Risk Analysis (ARA)
 User and Role Administration and having good troubleshooting skills and using LSMW for
Mass User Creation.
 Skilled at learning new concepts quickly while working under pressure.
 Highly organized and dedicated with a positive attitude.
 Ability to Learn and take an active role in SAP HANA platform
 EMPLOYMENT SCAN

 SAP Security & GRC Consultant – Aug.2014 to till date

CIPLA Ltd, Mumbai

[Pharmaceutical]

 Extensively used Automatic Profile Generator (PFCG) to create Activity groups/profiles for
various modules such as FI/CO, MM, PP and SD.
 Created users and maintained user master and established security policies and
Procedures and assigned required privileges for the SAP application access.

 Worked on Authorization objects, fields, authorizations, authorization profiles.

 Transported User roles/profiles between clients within R/3 system.
 Performed transports and mass transports of role/activity groups.
 Worked on SAP Check Indicator Defaults and Field values, reduced the scope of
 Authorization checks using transaction SU24 and maintained check indicators for
Transaction codes
 User maintenance SU01/SU10 (User creation / deletion / lockdown / activation / Password
Management) as per SOP
 Used ST01 to enable Tracing and find missed authorizations for user's access problems
and inserted missing authorizations manually
 Analyzed SOD each role/User groups through GRC tool
 Used scripting tools like LSMW for Mass Role creation, Mass user administration &
maintain mass number of users effectively within reasonable time periods
 Derived more than 14000+ roles and assign roles to more than 4000+ users
Created Derived Child roles from Master roles based on the plant level security

 To maintain large no (450+) of plant wise roles used “enabler design concepts “- org
values in a separate (enabler) role and Task transaction in other role and also create
Composite roles
 Improved security at Authorization Object level based on Internal - External Audit
Reports

 Created Fire Fighter Roles and Fire Fighter Ids for Super User Privilege Access
Management IDs

 Using SLAW2 and USMM tool for user license audit

 Using the Solution Manager change management call logging& status change tool.
Oct’10-to Jan 2011 ASAP Info systems Pvt. Ltd.

Project Handled: Tata Consultancy Services

Title : SAP Security Consultant.

Role : Team Member
Project name : Cadbury 1 Europe
Client Description : Cadbury Holdings Inc
Deliverables
 Providing the SAP security support and managing SAP authorizations and central user
administration.
 Managing the team to meet global support SLAs specified.
 Monitoring incident and Change Queues allocating work and seeing it through completion.
 Role assignment to users, rectifying different urgent issues occurred with users
 Documented technical and quality related processes and helped in grooming new team-mates.
 Provide timely response to all client requests
 Worked with functional teams and business analysts to gather role requirements.
 Creation of roles- PFCG
 Knowledge of HR Authorizations and Structural Profiles.
 Transport Management using REVTRAC Workbench
 Handling Change Requests

Responsibilities:
 Design, Developing, Testing and Implementing SAP Security Roles, Profiles and Authorizations
for various landscapes using Profile Generator as per Business requirements in
FICO/MM/SD/PP/BW Modules.

 Trouble shooting support for the users authorization failures in all SAP applications using SU53 ,
ST01 and resolving the Security issues and support in integration testing of Roles/Profiles.

 Analyzing User master record for roles and authorizations using SUIM and AGR* / USR * Tables
to assign proper roles in case of authorization failure and SOD conflicts

 Maintenance of standard settings of authorization objects/field and their proposals in SU24 as per
Business requirements

 Developing various kind of roles (Master - derived / Composite role concept) with different set of
organizational levels as per Business requirements using PFCG and transporting to QA / PRD via
REVTRAC (transport management tool)

 Administering Users and role assignments in different system and in their clients by Central User
Administration (CUA).

 Creation, maintenance, and configuration of Fire Fighter (VIRSA) user IDs for IT and Project
Users.

 Maintenance and Analysis of Firefighter Logs

 Segregation of Duties (SOD) analysis for users and roles and advising Business owners for Role
assignment.
 Generating critical access review report and monthly SOD report with mitigated risks for SOX
Internal Control Compliance
 Maintenance of Quarterly Mitigation control for mitigating Risks against users in Compliance
calibrator as per Business Owner request.
Sept-07 to Oct-10 Isun Solutions

Project Handled:
Title : SAP Basis Security Consultant.
Role : Team Member
Project name 1 : Nitco Tiles

Client Description : NITCO Tiles, a member of the NITCO Group, well-known for its innovative
strength and high quality products, has dominated the building product industry
for over five decades. Today NITCO has emerged as a dynamic Group offering
not just flooring solutions, but also excellent support in Exterior Paints and
specialty paint options with a wide range of textures and finishes.
Deliverables

 User creation and user termination.

 Locking and unlocking users.

 Creating and assign roles to the users.

 Creating and maintaining users in CUA system

 Creating derived and composite roles with proper approvals.

 Role maintenances and creating transport request for roles.

 Effectively analyzed trace files and tracked missed authorization for user

 Access problems and inserted missing authorizations manually.

 Mass user Maintenance.

 Troubleshooting authorization checks using SU53 and ST01.

 Identifying potential SOD issues before assigning new roles to the user

Project Handled:
Title : SAP Basis Security Consultant.
Role : Team Member
Project name 2 : NETAPPS

Client Description : Network Appliance, Inc. (NetApps) is a world leader in unified storage solutions
for today's data-intensive enterprise. Since its inception in 1992, Network
Appliance has delivered technology, product, and partner firsts that simplify data
management. NetApps® storage solutions include specialized hardware,
software, and services, providing seamless storage management for open
network environments.
Deliverables

 User creation and user termination.

 Locking and unlocking users.

 Creating and assign roles to the users.

 Creating and maintaining users in CUA system

 Creating derived and composite roles with proper approvals.

  Role maintenances and creating transport request for roles.

Aug 04 – Sept - 07 CMS Computers Ltd.

Title : Sr. FMS Engineer

Role : Team Member

CMS Computers is one of the renowned names in India for handling IT Services for various organizations.
CMS engineers are deployed at various client locations throughout India to meet the Challenges in IT &
maintain the latest standards.

Deliverables :
Working as a Senior FMS Engineer on different client side i.e. ESSAR, PALL
CORPORATION, PHILIPS AND VOLTAS

OPERATING SYSTEMS
Windows 2003 Server, Windows XP, Windows 2000, Windows 98

NETWORKING & HARDWARE

Switches, Hubs, TCP / IP, FTP, Active Directory Services, DHCP, DNS,

RESPONSIBILITIES CONFIGURATION & TROUBLESHOOTING

Administration, Installing Operating System, Configuration of all H/W & S/W

requirements, IP Configuration, Domain Access maintenance, User rights control,
Server Backup, LAN connectivity related trouble shooting, System testing, User
Satisfaction.

July 1994 to Aug 2004 Seedcore Group

Title : Technical Support

Role : Team Member

Synopsis : Providing the Technical support to the client in Web technology & Software
Solutions.

PERSONAL VITAE
Date of Birth : 19th AUG, 1973
Residential Address : 104, Giridhar Sudama CHS. Plot No. PPK6, RSC4, Lokmanya Nagar Thane
(W)
Maharashtra - 400606
Linguistic Abilities : English, Hindi, & Marathi
Interests : Sports, Travelling