Description
SUMMARY * Mike is an experienced Sr. Security consultant with approximately 29 years in the IT Industry and 15+ years of SAP security implementation, redesign, conversion / upgrade, and security audit expertise. * Successfully completed numerous Full Life cycle security design landscapes, four SAP Security redesign projects that met internal and external SOX Audit requirements, five SAP Security system Audit projects for Fortune 500 companies in the Heavy Industry, Manufacturing, Pharmaceutical, Banking & Investment, Retail and Public Sector. * Specializes in the implementation and conversion / upgrade of the SAP R/3 user authorizations and security profiles for the 3.1x, 4.0x up to ECC 7.40. Governance Risk Compliance (GRC), SAP Security Audit. * Specializes in Sarbanes/Oxley, GRC/VIRSA and Segregation of Duties (SOD) Analysis and Remediation with SAP security landscape redesign with 10 years of hands on experience to meet regulatory requirements. * Specializes in GRC, ECC, BW, CRM, Portal, HR, BOBJ and Fiori modules analysis, configuration and Administration. * Designs and manages the implementation of SAP security using all SAP's latest functionality in security like Profile Generator (PFCG) and BW Analysis Authorizations. * Designs and implements security development strategy using client resources from definition of job roles through to development, testing and migration. * Specializes in creating a security structure by which all transactions can be controlled and monitored to meet SOX internal and external Audit requirements. * Specializes in high-risk analyses of manufacturing, Retail, Pharmaceutical, Banking & Investment, and public sector entities' security. * Specializes in analysis of FI/CO, EN, Grants, HR, MM, SD, QM, WM, PM, PP, BW/BI, SRM, CCM, SEM/BPS business processes to assess all high-risk transactions for compliance reasons. * Hands on experience in releases 3.1x, 4.0x, 4.5x, 4.6C, 4.7, ECC 6.0, ECC 7.40 of SAP * SAP Skills * Authorizations and Security Strategist. Security Conversion Specialist * Security Implementation and Upgrade from Versions 3.1x to 4.0x, 31.x to 4.6C, 4.0 to 4.6C, 4.7 - up to ECC 6.0 and 7.40 * GRC, ECC, BI, CRM, Portal, HR, BoBJ, MM, SD, QM, PP, PM, SRM. * Portal Administration (UME) Page 1 Mike Ristic * Proficient in the use of Profile Generator (PFCG) * Structural HR w/ESS/MSS * Testing of SAP security across the Enterprise * Security Audit, Segregation of Duties (SOD), Sarbanes Oxley Compliance * Training and Program development for SAP Security * CUA Administration * GRC (VIRSA) up to 5.3 RAR, CUP, SPM, ERM, course study 10.0, partial install experience 10.1. Created FF id's and Controllers in 10.1 * BizRights / Approva / ZENDESK * Mercury Test Tool * Portal Integration * Project Management and Documentation for Security. * IBM Ascendant Project Management toolset * Mass uploads, ECATT scripts SAP Security Consultant /Developer- New Implementation, SOX/SOD Project DATAMATRIX Oct. 2016 -Present Cincinnati OH DATAMATRIX is engaged in creating a SOX/SOD analysis and remediation tools. Environment: SAP Net-Weaver 2004 (Web AS 6.40), BI 7.0, As Sr. SAP Security consultant, Mike performed the following assignment duties: * Created Project Plan with timelines. * Created a test environment with Users and Roles. * Provided expert advice on the tools functionality, reports, and user interface. * Identified security tables for the queries and reports. * Created test scripts for testing the Application Function Modules. * Tested and Validated multiple reports and Function Modules. * Communicated with team members with project updates, issues and next development steps. * Administered the security landscape and provided support for the team members to resolve all issues. * Provided subject matter expertise on SAP GRC 5.3 Risk Analysis and Remediation (RAR), Compliant User Provisioning (CUP), Super User Privilege Management (SPM), Enterprise Role Management (ERM).
Work Experience
COMPANY | POSITION HELD | DATES WORKED |
---|---|---|
Mike Successfully | Sr. Analyst, Sap Applications Security Chico's Consultant | 2/2014 - 9/2016 |
Applied Industrial Technologies | Sap Security Analyst /Architect 3 Go Live Implementations | 9/2012 - 3/2013 |
Datamatrix | Sap Security Consultant New Implementation | 11/2011 - 8/2012 |
Sox/Remediation | Sap Security Consultant | 10/2011 - 11/2011 |
Itelligence Group | Security Redesign | 5/2011 - 10/2011 |
Chico's Fas Inc. | Design Consultant | 9/2010 - 3/2011 |
Subaru | Sr Sap Security Consultant | 6/2010 - 8/2010 |