Curriculum Vitae

August 23

2016Mitul JainSAP Certified GRC Consultant

I am a SAP GRC & Security consultant with 3+ years of experience in SAP Security. 3+ Yrs Experience

Mitul Jain Email:mituljainmits@gmail.comSAP Certified GRC Consultant +91-8237077705Certificate ID : 0016316672

Objective

To carve excellence in the field of SAP Security and GRC through dedicated effort in successful implementation of Security and to be a part of a progressive organization that gives me a wider scope and diversified opportunities.

Profile Summary

o Total Experience – 3+ yearso 3 years of Experience in GRC AC 10.xo currently working as a Senior with Ernst & Young Global Shared Serviceso Experienced in supporting SAP modules like R/3, ECC 6.0, BI, and GRC Access Control 10.xo Worked on areas of GRC Access Control including Business Role Management (BRM), Access Request

management (ARM), Access Risk Analysis (ARA) and Emergency Access management (EAM)o Worked on Ruleset review and redesign activitieso Worked on process improvements to reduce cost and improve efficiency & reliability of the teamo Working with profile generator (PFCG) in creating and modification of roles.o Working on User Admin and Content Admin on SAP EP Portals.o Experience in 24X7 on call production support.o Experience on user trace, troubleshooting authorization issue using SU53.o Frequently using SU01, PFCG, SE10, SE16, SU53, SUIM and SU10.o Enthusiastic about learning new concepts in emerging technologies.o Role Administration to create Single, Composite and Derived Roleso Good Expertise in using Profile Generator (PFCG).o Worked on maintaining the Analysis authorizations into the roles.o Worked on User Administration and Role Administration in the BI.o Worked on RSD1 checking Authorization relevant of Info Objects.o Working on Super User Privilege Management (SPM/EAM), Assignment of FIRE FIGHTER ID’s to the user

and changing the validity of ID request & generating log reports.o Working on Role maintenance and Access controls in GRC. o Knowledge on HR Security

SAP GRC Skills:o Performed SAP GRC10 post & pre installation steps and configuration for ARA, ARM and EAMo Configuration of custom Agents & Initiators using BRF+o MSMP Workflow Configuration for Access Requests.o Mapping role owner , Risk mitigator and controller in NWBCo Defining business process and sub process in SPRO.o Importing approver details against business process.o Performing Role sync activities.o Creating RFC connection for target system.o Maintained Connectors with Integration Scenario and Synchronization jobs scheduled for Repository Object

Sync, Authorization Sync, Users and Transactionso Defined rule sets as required in project as per client requirements.

o Defined and performed Risk analysis, Alerts & Mitigationso Defined custom Initiator Rule in BRF plus for new user, change user, lock user and firefighter access and used

in MSMP workflow; maintained MSMP workflows for agents, rules and paths auto provision settingso Generated rules for Risk Analysis and configured Access Control settings with required parameterso GRC 10.0 support activities like Creation/modification of roles by using the enterprise role managemento Creating the new User account and providing/removingo Experience on Audit projects and working as a liaison between the security team and auditors.o Configuration of Centralized Emergency Access Management (EAM).o Configured Role Management (BRM), Configured Role Methodology, and Plan for technical role, business

roles.o Defined workflow related Multi-Stage Multi-Path (MSMP) Workflow Rules for Access requestso Defined and created business rules using the BRF+ Workbench

Academic Qualification

B.E. (Computer Science) from VTU University with 63.4% in the year 2012.

Professional Experience

1. Project: SAP Security & GRC - R/3, HR ,BI, portal and GRC (Major Pharma Client)Organization: Accenture Services Pvt.Ltd.Duration:(June 2013 – Sept 2015)

Responsibilities:

o User Management :Expertise in user administration activities to process requests such as user creation and assigning Roles and resetting passwords, Lock/Unlock and other day-to-day operations relevant to the user administration.Modifying user authorization access, Analyses of missing authorizations from the SU53 screen shot or Tracing the user.Trouble-shooting authorization problems using repository Information System and tracing authorizations using SU53 and ST01 trace.

o Central User Administration (CUA): Implemented CUA in Solman System.Configured and connedted 26 child systems.Maintain user master records centrally in one system. Checking SCUL Logs

o Governance Risk compliance(GRC) v10.0,10.1 Performed SAP GRC10 post & pre installation steps and configuration for ARA, ARM and EAMConfiguration of custom Agents & Initiators using BRF+MSMP Workflow Configuration for Access Requests.Performing Role sync activities.Creating RFC connection for target system.Maintained Connectors with Integrated Scenario and Synchronization jobs scheduled for Repository Object Sync, Authorization Sync, Users and Transactions

Defined rule sets as required in project as per client requirements. Defined and performed Risk analysis, Alerts & MitigationsDefined custom Initiator Rule in BRF plus for new user, change user, lock user and firefighter access and used in MSMP workflow; maintained MSMP workflows for agents, rules and paths auto provision settingsGenerated rules for Risk Analysis and configured Access Control settings with required parametersGRC 10.0 support activities like Creation/modification of roles by using the enterprise role managementCreating the new User account and providing/removingConfiguration of Centralized Emergency Access Management (EAM).Configured Role Management (BRM), Configured Role Methodology, and Plan for technical role, business roles.Defined workflow related Multi-Stage Multi-Path (MSMP) Workflow Rules for Access requestsDefined and created business rules using the BRF+ Workbench

o Portals Role assignment in portals, role mapping, user creation, deletion, content Administration and password reset.

o Authorization management : Designing new roles (Single, Composite, Master and Derived Roles), creation/modification of roles.

o SAP Service Marketplace : Opening OSS Connections at service.sap.comfor support.Raising OSS messages for SAP support

o Working on small AD projects and support after Go Live

o Quality Management : Performed peer review of fellow team mates and maintaining a log for the same. Identifying trend of incoming requests and come up with process improvements to reduce the request count and improve the efficiency of the team. Some of the process improvements worked out is automation of end dating and deletion of users, preparation of e-mail templates for communication with customers

o Knowledge Transfer: Preparation of Knowledge Capture Documents of the various new improvements

o Worked on tickets logged in BMC remedy and ITSM by the end users, fetching Dumps and maintaining various reports.

o Mentoring new team members

2. Project : Pharma Client - SAP Security & GRC Implementation- R/3,GRC 10.1Organization: Ernst & YoungDuration:(Oct 2015 – present)

Responsibilities:o Role Administration:

Worked on creating / maintaining template roles, derived roles, single roles and composite roles using Profile Generator in SAP R/3 systems for APAC markets.Identifying and analysing localized requirements and creating roles based on the market requirement.Used PFCG extensively to create and maintain roles Addition/Removal of Transaction Codes, authorizations, authorization objects by modifying existing roles based upon change request.  Performed reconciliation of user master records and roles using T-code PFUD

o Defect Maintenance: Worked on defects raised after PQ testing.Analysing Missing Authorizations and Troubleshooting security issues using SU53, ST01.Extensively used SUIM to get Transactions, Roles, and Users etc. Creating of Test IDs Worked on ECATT scripts for Mass user upload , Mass role assignment.Identifying new requirements  based on the testing .Coordinate with functional / Client for Successful TestingHandling defects in HPALM Tracking System

o Hypercare: Post Go Live SupportRole validations after all roles has been moved to Production Handling incidents in Service Now Tracking SystemWorked on new role change requests after Technical go-Live.Ad-hoc Post go-live maintenance

o GRC: Configuration for ARA, ARM and EAMConfiguration of custom Agents & Initiators using BRF+MSMP Workflow Configuration for Access Requests.Configuration of Centralized Emergency Access Management (EAM).Configured Role Management (BRM), Configured Role Methodology, and Plan for technical role, business roles.

Trainings Attended

o Attended GRC AC 10.0 training conducted by Accentureo Attended GRC Training conducted by Accentureo Completed SAP Basis trainingo Attended training on SAP Security – R/3, HR ,Portalso Attended Soft Skill development training.

Personal Information

Name: Mitul JainDOB: 07/08/1989Mobile: +918237077705E-mail: mituljainmits@gmail.comLanguages: English, HindiMarital status: Single