Summary
Overview
Work History
Education
Skills
References
Languages
Timeline
Generic

Patricia Flores

Waxahachie,TX

Summary

Patricia is a Senior Consultant with CDW’s SAP Advisory practice. She brings over 10 years of experience as a SAP Administrator. Patricia worked as a SAP Security Administrator for Verizon Wireless where she was responsible for maintaining SAP Security policies and procedures places company wide. Patricia was a member of the SAP Security Wireless team, where she facilitated end-user use of the SAP Systems in both production and non-production environments. Patricia is proficient in English and Spanish.

Overview

11
11
years of professional experience

Work History

SAP Security Senior Consultant

CDW Security Practice (formerly a part of Focal Point Data Risk)
12.2019 - Current
  • Preparing, reviewing, generating, and coordinating completion of User Access Review via GRC
  • Preparing, reviewing, and coordinating completion of BPC User Access Review
  • Perform sensitive access risk analysis of SAP Business Roles, and provide supplemental information to role owners to be taken into consideration while executing User Access Review
  • Maintaining Business Roles in GRC to accurately reflect sensitive access categories as needed
  • Update Sensitive Access Ruleset as requested by Customer
  • Preparing, reviewing, and coordinating completion of Privileged Access Review for BPC, Business Objects, and PO/PI production systems
  • Preparing, reviewing, and coordinating completion of Elevated Access (Firefighter) log review
  • Preparing, reviewing, and coordinating completion of Role Access Review, as requested by Customer
  • Preparing, reviewing, and coordinating completion of Business Role Access Review, detailing relationship between Business Roles and technical roles
  • Perform role maintenance to address any changes to either technical or business roles
  • Facilitating of review of Mitigating Controls, including control definitions, control/risk relationships, control/business role relationship, updating mitigating control language, and updating mitigating control assignments, as requested by Customer
  • Representing SAP Security in any meetings requested by audit to review or otherwise clarify documentation
  • Review, and update process documentation related to audit activities, as requested for following controls: CM-08, MA-02, MA-03, MA-04, MA-06, MA-07, MA-08, MA-09, MA-11
  • Manage SAP users and authorizations in all SAP environments
  • Role creation/modification using profile generator
  • SAP transport via ChaRm
  • Provides support for Severity incidents linked to SAP security
  • Ability to run authorization traces to analyze and resolve security issues
  • Weekly FireFighter audit log reports
  • Preparing and reviewing monthly Health Check for customers.

SAP Security Administrator

PYRAMID CONSULTING - VERIZON WIRELESS
06.2019 - 12.2019
  • Responsible for maintaining SAP Security policies and procedures placed companywide
  • Member of the SAP Security Wireless team facilitating end-user use of the SAP systems in both production and non-production environments
  • Create and modify user accounts
  • Database account management through HANA Studio
  • Manage SAP users and authorizations
  • Process transfer and termination reports on a daily basis
  • Role creation and role modification using profile generator
  • Updated OneJIRA and OneConfluence with modified documentations
  • SAP transport via ChaRm
  • SAP BW direct transport
  • Provides support for Severity 1 and Severity 2 incidents linked to SAP security in accordance with established Service Level Agreements
  • Manage SAP SSCR Keys
  • Manage SAP Remote Connections
  • Identified as a Control SME for SOX Operating Testing
  • Ability to run authorization traces to analyze and resolve security issues
  • Created documentation of SAP Security processes and procedures
  • Daily FireFighter audit log reports
  • Weekly audit review status report
  • Monthly SOD re-certification user reports
  • Quarterly Active User report
  • Improved process of minimizing elevated incident.

SAP Security Administrator

SEMPRA ENERGY
06.2013 - 04.2019
  • Member of the SAP Security team which worked closely with the business and project teams in developing functional specifications related to security concerns
  • Create and modify user accounts following the access request process in GRC, ARM
  • Database account management through HANA Studio
  • Manage SAP users and authorizations
  • Mass user updates using GUI scripting
  • Manage proxy profiles for executives
  • Manage external vendor profiles
  • Process transfer and termination reports on a weekly basis
  • Experienced with GRC 10.1 access control; ARM, BRM, EAM, ARA
  • Role creation and modification using BRM and profile generator
  • SAP Change Management (Charm) for transports
  • Provides support for Severity 1 and Severity 2 incidents linked to SAP security in accordance with established Service Level Agreements
  • Manage SAP SSCR Keys
  • Manage SAP Remote Connections
  • Manage role owners, FireFighter ID owners and controllers in GRC
  • Conduct FireFighter renewal access training sessions for Production Support team and SAP Managers
  • Identified as a Control SME for SOX Operating Testing
  • SAP License Administration audit (SLAW2)
  • Ability to run authorization traces to analyze and resolve security issues.

Education

Studied Business Administration -

UNIVERSITY OF PHOENIX
01.2004

Skills

  • Experienced using Microsoft Office products including Word, Excel and PowerPoint, Outlook, Teams, Snagit Editor, OneJIRA, OneConfluence, ServiceNow
  • SAP environments in customer’s operational environment (eg: S/4 HANA, eHANA, HANA Studio, ECC, CRM, BI, GRC, SRM, PI, NetWeaver Portal, BPC, SAC, FIORI)
  • Ability to establish strong relationships with the corresponding technical community
  • Ability to handle multiple projects simultaneously, with attention to detail and closure
  • Ability and flexibility to quickly learn new applications and software
  • Ability to work with teams or independently
  • Solid organization, time management, and project estimating skills

References

Available upon request

Languages

Spanish
Native or Bilingual
English
Native or Bilingual

Timeline

SAP Security Senior Consultant

CDW Security Practice (formerly a part of Focal Point Data Risk)
12.2019 - Current

SAP Security Administrator

PYRAMID CONSULTING - VERIZON WIRELESS
06.2019 - 12.2019

SAP Security Administrator

SEMPRA ENERGY
06.2013 - 04.2019

Studied Business Administration -

UNIVERSITY OF PHOENIX
Patricia Flores