Bala Krishnan
bala19_k@yahoo.com 269-267-5467
Excellent SAP Security Consultant

§ Solid five plus years of technical expertise as a SAP Security Administrator/Analyst.
§ Extensively worked with SOX, Remediation of Segregation of Duties (SOD) within SAP implementation.
§ Strong proficiency in all GRC tools –Role Expert, Compliance Calibrator, Access Enforcer and Firefighter.
§ Solid background across industries, including Pharmaceuticals, IT services, Consumer products, Manufacturing, Financial Telecom et el.
§ Participated in several full cycle implementations.
§ Extensive expertise in the areas of R/3 Security, SRM Security, BW security, CRM Security, upgrade activities and compliance issues.
§ Excellent problem solving skills, team player with GREAT communication and interpersonal skills.
§ Strong understanding of business issues and can communicate effectively with configurations/developers/power users to solve critical business issues


Project # 1: Wyeth Pharmaceuticals, PA May 2007- till date
SAP Security Consultant

· Responsible and accountable for the Security of a complex multi million dollar enterprise lablelling application on Netweaver 2004 platform.
· Effectively used VIRSA’s Compliance Calibrator to resolve and prevent SOX/SOD issues.
· Interacted with the business users to resolve and implement mitigating controls to ensure SOX compliance.
· Implemented GRC/VIRSA suite for the company, including Role Expert, Compliance Calibrator, Access Enforcer and Firefighter.
· Extensively used the profile generator to design and modify roles in ECC and WAS.
· Performed extensive user administration using SU01 and SU10.
· Actively participated in the upgrade project and Access Enforcer implementation.
· Created number of CATT scripts to create multiple users in the R/3 and BW system to maximize productivity.
· Involved in performining positive and negative tests for the Security roles developed.
· Resolved production issues in SRM, BW and R/3 systems.
· Worked on BW reporting authorization objects like S_RS_COMP, S_RS_ ADMWB, S_RFC_NAME et el.
· Resolved critical authorization issues using SU53 and ST01 (trace).
· Worked with the LDAP group to maintain portal security.
· Critical authorization objects such as S_TABU_DIS, S_DATASET, S_PROGRAM, S_DEVELOP were restricted and monitored.
· Made sure that the authorization groups for all the required tables have been maintained in TDDAT table using SE54 transaction

Project #2: IBM- Colgate-Pamolive, NJ Aug 2006- Apr 2007
SAP Security Consultant
· Involved in resolving SOX issues by implementing mitigating controls and eliminating the high risk violations.
· Configured Compliance calibrator and customized the rule set.
· Designed Firefigher ids and presented the usage reports to the management.
· Implemented security on enterprise portals and performed user administration on portal users.
· Performed security tasks for BW power users.
· Implemented security in SRM, HR, BW and R/3 systems and actively involved in upgrade to ECC and BI 7.0.
· Interfaced with LDAP directory service to synchronize data for the portal users.
· Utilized Virsa Firefighter to design critical roles for immediate access.
· Acted as the liaison in resolving SOX issues and played a lead role in getting the company clear the audit.
· Used Automatic Profile Generator (PFCG) to create roles/profiles
· Prepared the project plan and implemented the security activities in upgrading from R/3 4.6C to ECC 6.0.
· Prepared adhoc reports using SUIM and assisted the client in dealing with security audit.
· Extensively performed User administration and supported 4000 concurrent users.
· Designed and implemented efficient go-forward processes within the realm of security administration.
· Worked on security tickets and satisfied the client by reducing the ticket volume to a manageable number in the Oscar ticketing system.
· Controlled the access of end users in the CRM system by assigning them appropriate authorization profiles.
· Utilized system trace ST01 and SU53 to identify and resolve authorization issues for end users.
· Demonstrated leadership by raising important issues at the meetings and proactively solving issues before it impacted the implementation team.
· Updated the authorization values from tables USOBX_C and USOBT_C for upgrades.
· Utilized the category mapping tool to assign best fit material group to all items added to a shopping cart from a catalog as part of EBP phase II.
· Prepared security guidelines for managing the security for Master Data Management(MDM).
· Implemented security for all the EBP/SRM 4.0 users.
· Continuously monitored and implemented sensitive Authorization objects like S_TABU_DIS and S_DATASET.
· Involved in SAP security implementation and configured the content management engine.
· Used SE09/SE10 for single and mass role transports and SCC1 for role import.
· Extensive customization of security solutions to match complex requirements.
· Created over 100 customized end user roles and menus, plus hundreds of "mini-roles" to allow for low-level modular access control.

Project #3: T-mobile, WA Jan 2006- Aug 2006
SAP Security Administrator

· Mass transported the activity groups via PFCG for ECC 5.0 upgrade.
· Configured Role Expert and involved in setting up the tool as an alternative to PFCG.
· Determined SOD issues using Virsa's Compliance calibrator for SOX compliance.
· Maintained security for solution Manager 3.1.
· Performed a mapping of the portal roles with the backend system.
· Maintained security for BW power users and gave them authorizations for their new querries.
· Set up security roles and user accounts for three follow-on projects, including Business Warehouse (BW 7.0).
· Prepared numerous reports and coordinated with PWC auditors to make the company SOX compliant.
· Synchronized key data from SAP HR including default cost center, manager relationship, spend limit/signing authority, location etc in the EBP landscape.