Everjoy Shumba

I am a dedicated and experienced SAP Security Consultant with a strong background in user administration, role management, and authorization control. My expertise encompasses a wide range of SAP security functions, including user creation, modification, and deletion using SU01 and SU10, as well as role design, creation, and modification using PFCG. I have a proven track record of establishing robust user administration practices and implementing effective authorization profiles to ensure a secure and compliant environment.

One of my key strengths is my proficiency in SAP GRC (Governance, Risk, and Compliance) tools, including RAR (Risk Analysis and Remediation), CUP (Compliance User Provisioning), ERM (Emergency Access Management), and EAM (Emergency Access Management). I have successfully integrated SAP CUA (Central User Administration) with SAP GRC, allowing for streamlined user management and enhanced security controls.

My experience extends to the creation and assignment of Fire Fighter (FF) IDs, enabling the management of super user privileges for critical tasks. I am adept at setting up role creation methodologies, establishing condition groups, and defining role approvers using ERM, contributing to efficient and structured security practices.

In the realm of compliance, I specialize in Segregation of Duties (SoD) and authorization stacking analysis. My role involves monitoring security roles to identify critical transactions and objects, thereby resolving SOD conflicts to maintain a compliant environment. I excel in analyzing SOD reports, providing valuable insights, recommending solutions, and implementing necessary redesigns to mitigate conflicts.

Furthermore, I have a strong foundation in customizing SAP-provided user role templates, and I've created a set of tailored user role templates to meet specific business needs. My dedication to continuous improvement and attention to detail ensure that security protocols are well-designed and effective.

I am a proactive problem solver, capable of working collaboratively in diverse teams, and I possess excellent communication skills.

SAP GRC/ AUTHORISATION CONSULTANT

• Role Build, Role changes, new roles creation - single and Composite using PFCG. • User master Record creation/ modification initial password reset and invalidity date extensions (SU01). • Worked with User Information System, creating and changing users and assigning users to roles. • Generated and maintained authorizations and authorization profiles based on existing roles-PFCG. Role Creation, modifying using PFCG including complex design. • Copying and Modifying SAP-Provided User Role Templates and created a set of custom user role templates. • Experience with SAP GRC - RAR, CUP, ERM, EAM, and SAP CUA (Central User Administration) integration with SAP GRC. • Experience in creating and assigning FF IDs and extracting Fire Fighter logs • Working on Fire Fighter (FF) for Super User privileges like maintaining Owners, Controllers, and Fire Fighter Access to the user. • Setting up role creation methodology, condition group, and role approvers using ERM • Segregation of Duties (SoD) and authorization stacking analysis • Monitoring of security roles for identifying critical transactions/objects and resolving SOD conflicts • Analyzing SOD reports to analyze, recommend and implement solutions/redesign to resolve SOD conflicts

SAP Security & AuthorizationsUdemy Fiori UX100/200 – System AdministrationUdemyADM 940 – SAP Authorizations Concept for SAP S/4HanaUdemyADM 945 - Authorization Concept for SAP Fiori on SAP S/4HANASAP WoodemeadGRC AC – 300 – Access Control Implementation and ConfigurationUdemy