Georg Rudy
SAP Authorization Expert
Experience
SAP Authorization Expert
Lapp Stuttgart Industrie
Independent project work focused on authorizations with S/4HANA and Fiori for the Korea site.
Rolling out Korea-specific roles to test users as per template.
Providing support during various testing phases.
Assigning roles for UAT and subsequent go-live.
Independent project support for the GTS project (Global Trade System).
Creating function roles and assigning them to individual locations.
Creating business catalogs and Spaces & Pages.
Supporting testers during integration tests.
Preparing for UAT and the planned go-live.
Independent project support for the TM EWM project (Transport Management; Extended Warehouse Management).
Creating function roles and business catalogs in collaboration with the project team.
Developing Spaces & Pages with the project team.
Preparing for the integration test, creating users in the test system, assigning roles.
Supporting the authorization teams with ticket processing.
Lead Consultant / Team Lead
EEW Helmstedt Energy from Waste GmbH
- Independently created an authorization concept for the S/4HANA and Fiori rollout.
- Developed additional concepts for SAP Signavio, SAP Enable Now, CALM, xSuite.
- Responsible consultant for designing and creating authorization roles based on user roles.
- Team lead for 4 external consultants.
- Created function roles that were then replicated into business roles for each site.
- Supported testing (UAT, role function test).
- Rolled out authorizations to users according to the role-user matrix (RUM).
- Provided hypercare support after go-live with troubleshooting.
SAP Consultant GRC & IdM
IVZ Potsdam (Information Processing Center of ARD & Deutschlandradio)
- Independently managed GRC and IdM.
- Supported the hypercare phase after waves 2 and 3 rollout.
- Troubleshooting.
- Creating roles in GRC, deriving FUMR for individual RFAs in CO and MM areas.
- Creating Fiori tiles and groups, Fiori Launchpad.
SAP Authorization Consultant
Dürr AG
- Independent functional support in SAP authorizations for Carl Schenck AG.
- Resolving SoD conflicts and breaking up SoD conflict chains.
- Cleaning up roles of critical authorization objects.
- Creating report transactions to reduce SA38 usage.
- Designing and building new authorization roles.
- Participating in audits and reviewing changes.
- Ensuring GDPR compliance in Dürr AG’s HR system.
- Analyzing authorization roles and quality checking requirements.
- Documenting changes made.
- Supporting colleagues with S/4HANA and Fiori roles.
- Assisting in resolving conflicts in the HR system.
SAP Authorization Consultant
Zeppelin Baumaschinen GmbH
- Converting ZOE roles to S/4HANA and Fiori.
- Analyzing existing roles for transaction-based or Fiori-app based functions.
- Configuring front- and backend authorizations as well as gateway authorizations.
- Using XAMS software from XITING to identify obsolete or replaceable transactions.
SAP Authorization Consultant
Zeppelin Rental GmbH
- Redesign of existing roles and profiles.
- Job-specific creation and assignment of roles compliant with SoD.
- Analyzing transaction usage using the XITING XAMS Role Designer tool.
- Creation of a workplace org chart.
- Defining job roles and assigning department and team leaders as well as clerks, in accordance with GDPR.
- Defining new roles in the Role Designer and discussing critical transactions, reports (SA38), and table maintenance with managers.
- Creating report transactions to restrict the use of SA38/SE38.
- Weekly reconciliation of SU24 with XITING Checkman.
- Creation of workplace roles (composite roles), following a naming convention.
- Creation of individual workplace roles, organized by modules/functions (accounts receivable, accounts payable, asset accounting, etc.).
- Reviewing roles for high-risk issues (FI/CO).
- Testing new roles in the quality assurance system by business departments.
- On-the-fly troubleshooting using STAUTHTRACE and SU53.
- Refining roles and transporting them to the production SAP environment.
- Go-live with hypercare.
SAP Authorization Administrator / Subproject Lead
MAN Financial Service
- Daily operations support for DE, AT, and UK.
- Modifying roles, revising and updating concepts.
- Project AIM (Access and Identity Management) (Go-live and hypercare for MAN Ltd. in the UK).
- Go-live of the AIM project in the UK and hypercare phase with issue resolution.
- Protected go-live with tool support from XITING Times.
- Introduction of a simplified process for requesting changes to business roles or creating new business roles.
- Creating an authorization concept for the UK, taking VWFS guidelines and concepts into account.
- Analyzing used transactions and roles.
- Creating new task-specific roles.
- Rolling out the new roles to UK business units in cooperation with the AIM audit team.
- Troubleshooting during the go-live.
- Subproject lead for authorizations.
SAP Authorization Support / Rollout Specialist
Zeppelin Baumaschinen GmbH
Authorization support for Zeppelin Baumaschine ZOE with FI/CO, SD, MM, and CRM modules, Solution Manager (with ChaRM), and Fiori in Austria (approx. 220 users).
Recording error messages from business departments.
Analyzing trace data and refining roles.
User management with XITING's ZBV and XCW.
Consulting and training the internal authorization team.
Creating user documentation.
Evaluating support-user usage.
Go-live in Austria with the new roles.
Hypercare during go-live with tool-supported protected go-live (XITING Times).
Rolling out the new roles to headquarters and branch business areas.
Troubleshooting during the first hypercare phase.
Post-documentation of changes in the role documentation.
Implementing the emergency user concept via XITING Times.
Redesign of master roles based on go-live support insights.
SAP Authorization Administrator / Subproject Lead
MAN Financial Service
Authorization administrator for SAP, LIS@, and non-SAP applications in day-to-day operations for DE, AT, and UK.
Handling tickets and findings from internal audit and compliance guidelines.
Revamping the support user solution (reference user) with the XITING Times tool.
Requesting additional rights via the tool, with and without workflow support.
Project AIM (Access and Identity Management) go-live and hypercare.
Introducing a new simplified process for business role changes.
Rolling out the new roles to business units in AT and DE.
Splitting inherited UK roles.
Troubleshooting during go-live.
Subproject lead for authorizations.
SAP Authorization Administrator / Subproject Lead
MAN Financial Service
Authorization administrator for SAP, LIS@, and non-SAP applications in day-to-day operations for DE, AT, and UK.
Addressing internal audit findings in the batch-input area.
Project AIM (Access and Identity Management) according to VWFS corporate requirements.
Creating new business roles and ensuring user rights recertification.
Using NEXIS Controle and XAMS tools.
Analyzing existing user rights in business departments.
Redesigning roles based on XAMS evaluations.
Maintaining SU24 for the LIS@ application.
Fixing issues during test phases.
Testing new roles and troubleshooting during the hypercare phase.
Subproject lead for authorizations.
SAP Authorization Administrator
MAN Financial Service
- Handling all day-to-day operational tasks for the DE, AT, and UK subsidiaries.
- Handling findings from the internal audit in the batch input area.
SAP Authorization Consultant
MAN Financial Service
- Designing a role and permission concept for privileged IT access (PAM II - non-dialog users).
- Limiting permissions for technical users (RFC, batch, and system users) according to VWFS guidelines.
- Analyzing existing permissions of technical users.
- Creating and testing the new roles.
- Assigning the new roles and troubleshooting after go-live.
SAP Authorization Consultant
Zeppelin Baumaschinen GmbH
- Developing a cross-country role and permission concept (DE, AT, CZ, SK).
- Implementing XITING's XAMS software.
- Supporting the rollout of SAP on HANA with modules FI/CO, SD, MM, CRM, Solution Manager (ChaRM), and Fiori.
- Developing the authorization and role concept after the blueprint phase, considering security guidelines and Zeppelin specifics.
- Creating a security concept for SAP systems.
- Defining roles for running development environments (ERP, SCM, CRM, SolMan, PO).
- Supporting and building up internal staff in authorization administration and user management.
- Creating key user roles for SD, FI, CO, Service, Basis, and Solution Manager (ChaRM).
- Designing an emergency user concept.
- Creating roles for the testing phase.
- Creating single and composite roles.
SAP Authorization Consultant
MAN Financial Service
- Designing a role and permission concept for privileged IT access (PAM - Privileged Access Management).
- Creating a functional concept based on reorganization and BaFin guidelines.
- Revising and creating the technical authorization concept.
- Implementing into IT roles and setting up reference users.
- Preparing and conducting functional tests.
- Supporting role testing and roll-out.
- Ensuring GDPR compliance (EU) for branches in DE and AT.
SAP Security Specialist
BMW Group
- Developing a role and permission concept for SAP platforms during the department reorganization.
- Creating a concept for developers, testers, and platform managers, considering the BMW SAP Security Guideline.
- Mapping SAP roles according to platform processes (e.g., transport management via SAP Solution Manager - ChaRM).
- Minimizing authorization violations and reducing maintenance efforts for role and user management.
SAP Authorization Consultant
Refresco Deutschland GmbH
- Revision of SAP authorizations and assessment of custom-developed transactions.
- Addition of process flows for SoD analysis according to auditor requirements.
- Creation of an emergency user concept and corresponding roles.
- Setting up emergency users and configuring the Security Audit Log (parameters rsau/*).
- Development of an additional transaction to capture ticket numbers and short texts for emergency use.
SAP Authorization Consultant
MAN Finance International GmbH
Project PAM (Privileged Access Management).
Creation of an authorization concept for users with privileged, system-critical (PAM-IT) rights.
Development of system-specific roles for developers, administrators, power users and supporters.
Prevention of unwanted assignments of critical rights by blocking role transports between system lines.
Implementation and testing of authorizations with IT teams.
Support / emergency user concept and authorization concept for non-dialog users.
Resolution of SoD conflicts from the PwC analysis.
Creation of SoD-compliant roles.
Redesign of the support user concept due to changed legal requirements and corporate affiliation (VW).
Cleanup of systems from outdated roles.
Monitoring of conflicts at the user level through compensating controls and internal control system (ICS).
SAP Authorization Consultant
REFLEXA-WERKE Albrecht GmbH
- Project Sunraise authorizations for SAP go-live (all standard modules except HR).
- Creation of an authorization concept and implementation in single, composite and job roles.
- Definition of new processes and replacement of temporary profiles SAP_ALL and SAP_NEW.
- Assignment of single roles to test users according to process design.
- Creation of work instructions for user management and emergency user concept.
- Development of transactions for custom reports and queries.
- Transport of roles and assignment to users.
SAP User Management Consultant
Drägerwerk AG
- Project OPTIMUM: support of SAP roles and authorizations as part of the global ERP harmonization.
- Responsible for SAP roles and user management during the migration of subsidiary companies to the central ERP system.
- Derivation of existing roles for new company codes and organizational levels.
- Development of user-role mapping proposals based on legacy system analyses.
- Coordination with business departments and confirmation in UAT.
- Assignment of new roles and reduction of authorizations in legacy systems during the rollout.
- Focus on the subsidiaries in Switzerland, Austria and the UK.
SAP ERP Basis & UPM Consultant
Drägerwerk AG
- Member of the support team for creating and assigning SAP authorizations.
- Handling global user requests using the SAP GRC tool.
- 1st level support (password resets, employee onboarding/offboarding).
- 2nd level support for changes to existing roles.
- Development and implementation of an emergency user concept according to auditor guidelines.
- Analysis and resolution of SoD conflicts.
- Support during release upgrades (SU24 / SU25).
- Participation in internal projects using SAP ERP 6.0, GRC, BMC Remedy and Solution Manager.
SAP Basis & Authorization Support
Atos / SIS (Siemens IT Solutions and Services)
Basis and authorization support (1st and 2nd level) for clients like BWI, VW Finance Systems, Siemens Healthcare, etc.
Creating and extending roles with consideration of GoB and SoD conflicts.
Testing and monitoring conflicts via NetWeaver, SAP GRC, and APM Atlantis.
Monitoring systems according to SOX rules and eliminating audit findings.
Maintaining authorizations across the full range of SAP modules (ERP, HR, BW, APO).
Performing client copies and system monitoring.
Conducting ICS audits (emergency users, password policies, standard users).
Applying SAP notes, CERT telegrams, and support packages.
Managing objects, tables, and views in the SAP Marketplace.
Conducting self-assessment and measurement audits.
Supporting about 60 SAP systems with different release levels.
SAP Security Auditor
SIS (Siemens IT Solutions and Services) / HDX
- Conducting a security audit for Siemens Healthcare & Diagnostics (HDX).
- Adjusting 36 checkpoints based on group control descriptions.
- Collaborating with key users to explain and resolve findings.
- Documenting audit results in the ARIS Audit Manager.
SAP User & Authority Management Consultant
Siemens IT Solutions and Service GmbH
- Project Topas: definition of global work authorization procedures.
- Redefinition of service level agreements for user and authority management in various clusters (MAM, LAM, AA, SWE, MSE, NWE).
- Definition and rollout of changed processes for role changes and SAP user requests.
- Consideration of local tools such as PerMag, SAP GRC Access Control, and in-house developments (AUA).
SAP Authorization Consultant
Laverana GmbH
- Development of a high-level and detailed concept for SAP ECC 6.0.
- Creation of a task-oriented authorization concept.
- Definition of roles and assignment to users.
- Identification and monitoring of critical business processes.
SAP Authorization Consultant
Refresco Deutschland GmbH
- Redesign of company-wide SAP authorizations based on KPMG/PWC audits.
- Development of a 3-role strategy (base roles, display roles, task-oriented roles).
- Installation of an analysis tool to evaluate used transactions.
- Conducting interviews with departments to identify core tasks.
- Creation of master roles and derivation of functional roles considering the organizational level.
- Use of Realtime's APM tool and distribution via ZBV.
- Performing risk assessments to prevent SoD conflicts.
- Implementation of an emergency concept and an electronic authorization request.
- Introduction of the Tangro add-on (OCR invoice processing) and key user training.
SAP Trainer
Bundeswehr / BWI / Logistikamt der Bundeswehr
- Training soldiers and civilian staff in the SAP industry solution IS-DFPS.
- Training in material master data maintenance (MM) and structure elements.
- Training on recording project systems (PS) as cost collector for controlling (FI/CO).
- Training on supply routes and vendor master data maintenance (SD).
- Training in planned maintenance and servicing (PM) and utilization management.
- Course topics: SAP basics, organizational structure, master data management, inventory management and project execution.
SAP Authorization Developer
Bayer AG - BMS (Bayer Material Science)
- Central management and development of authorizations for global systems.
- Lotus Notes-based change management for documentation and transports (EMEA/APAC).
- Handling change request tickets (CRT) for the modules SD, MM, PP, WM, FI/CO and HR.
- Upgrade support for the APAC systems from R/3 4.7 to mySAP ERP 2005.
- Testing functions and new authorization objects using the profile generator.
- Monitoring authorization violations with the BizRights tool.
- Developing compensating controls and conducting security reviews.
- Responsible for creating authorizations during the setup of Europe-wide system houses for BaySystems.
Deputy Team Lead SAP Authorizations
Bayer AG / Bayer Business Services / Bayer Yakuhin
- Project JADE II: Technical authorization integration of the Japanese company.
- Implementation of the modules SD, SC, FI/CO and BW in compliance with the corporate security policy.
- Developing and documenting business roles for SD, SC and master data.
- Supporting the areas of cross applications, support, BW and basis.
- Coordinating role creation with Japanese colleagues and support teams in Hong Kong/Singapore.
- Monitoring security policies using BizRights.
SAP Authorization Consultant
Bayer AG / Bayer Business Services
- Hypercare phase for various project parts within the subgroups (e.g. BMS).
- Completing remaining tasks in authorization development after quarterly closings.
SAP Authorization Consultant
Atos Origin / Wolff AG
- Taking over and implementing developed authorization solutions for three additional clients.
- Testing and transport to production systems including hypercare phase via remote access.
Responsible project team member
Bayer AG / Bayer Business Services
- Project CrABS (Cross-Application, Basis & Support): Redesign of the group-wide authorization concept.
- Analysis of current states based on audit reports.
- Implementation of business requirements in new or changed roles for the subgroups BHC and BCS.
- Execution of special transports in production systems while ensuring quality assurance.
SAP authorization consultant
Atos Origin / Wolff-Cellulosics
- Revision and correction of single and composite roles after internal audit.
- Elimination of security risks by removing critical transactions and restricting activities.
- Generation of roles using the profile generator and transport via KTW to the production system.
- Documentation of changes for roll-out to other clients.
SAP SD consultant
Akzo Nobel Nippon Paint
- Support of the US team during the global SAP roll-out for the SD, MM, FI/CO, PP modules.
- SD customizing for orders, deliveries, and invoices.
- Review and cleanup of material, condition, and customer master data after migration.
- Creation and translation of user documentation and training materials.
- Conducting workshops for power users and end-user training.
- On-site support after go-live.
Deputy Project Manager User Support / Consultant
Siemens AG INC EN
Operation and setup of Level 2 user support using the Remedy Action Request System.
Resolving user issues in all SD areas and debugging programs.
Creating queries, evaluations and monitoring IDocs as well as workflows.
Monitoring of invoices, jobs, test systems, and RFC connections.
User administration and authorization management via ZBV.
Executing KTW transports and preparation of financial year-end closures.
Training end users on changed procedures.
Cleanup and recreation of authorizations and activity groups.
Development of an authorization concept considering KPMG guidelines.
SAP SD/MM/PP consultant
Fresenius AG
Project Pro Reha: Integration of a subsidiary into the SAP R/3 system.
Documentation of changes in SD, SM, MM, PP and the ELVIS warehouse management system.
Customizing and creation of user manuals.
Creation and testing of authorizations for key users and end users.
Conducting key-user and end-user trainings (approx. 80 participants).
Project SalesCom: Integration of field sales staff for online quotations and orders.
Testing the in-house development for usability and functionality.
Creation of variants for sales reporting.
Revision of the documentation for the ELVIS system in German and English for validation after release changes.
SAP Consultant
Motorola
- Documentation of various in-house developments for a global distribution system (Project Cell Server).
SAP Consultant / Trainer
Motorola
- Implemented the in-house developed Factory Control System (Picasso).
- Documented the applications and created user manuals in German and English.
- Created online documentation using PowerPoint.
- Planned and conducted user training sessions.
- Rolled out the system and trained users in Libertyville, USA.
SAP Consultant
Lufthansa Technik AG
- Billing subproject as part of the A&D industry solution development.
- Developed and implemented the authorization concept.
- Conducted integration tests and workshops for end users.
- Customized message determination, document control, and copy control.
- Responsible for the INES add-on program (Integrated Recording of Station Services).
- Planned and executed the monthly billing of services at German stations.
Project Migration Team Member
DVG Hannover / NBG Berlin
- Migrated a data center and a network operating company to WinNT, SAP (CO/FI), and Lotus Notes.
- Prepared and conducted employee information sessions.
- Took inventory of existing hardware.
- Prepared legacy data for migration and supported the migration process.
- Assisted with integration tests.
Skills
Sap Authorization Expert (>24 Years) Module Knowledge Across The Entire Logistics Area. Modules: Sd, Fi, Co, Crm, Mm, Sc, Bw, Wm, Pp, Pm, Scm, Apo, Hr And Gdpr (Eu) Fiori Roles, Tiles And Catalogs, Spaces & Pages, Grc, Idm, S/4 Hana
Authorization Development: Creating Authorization Strategies, Advising Business Units On Authorization Technology, Developing Authorization Concepts And Implementing Them
Developing Technical Authorization Concepts For Sap Basis And It
Creating, Testing And Maintaining Sap Authorization Roles With Consideration Of Segregation Of Duties (Sod)
Creating Roles For Auditors And Internal Audits
Testing The Roles
Supporting Both Technical And Organizational Go-lives
Monitoring And Defining Quality Standards
Confident Use Of The Profile Generator (Transaction Pfcg) And Other Authorization Transactions Such As Su24, Su25, Pfud, Sugr, Su01, U10, Sm01, Plus Know-how For Defining Single And Composite Roles And Good Knowledge Of Sap And Xams Inheritance Functionality
Understanding The Structure Of Relevant Table Schemas (Agr*, Us*, Tstc, Tbgrt, Tddat, Trdir, Etc.) To Build Targeted Queries For Risk Analysis Checks And To Grasp The Overall Context
Analyzing Custom Developments
Creating Report Transactions To Limit The Use Of Sa38 / Se38
Conducting Audits Of Existing Authorizations And Authorization Concepts
Excellent Knowledge Of Xams By Xiting (Introduced At Man Finance Services And Zeppelin Construction Equipment, Eew Energy From Waste)
Good Knowledge Of Nexis Controle
Solid Knowledge Of Lis@ (Software By Ikbl Hamburg)
Strong Knowledge Of The Fiori Launchpad, Launchpad Content Manager, Designer, Spaces & Pages, Technical And Business Catalogs, Sap Fiori Reference Library
Confident Use Of Analysis Tools Such As St01, St03n, St05, Slg1, Stauthtrace, Sm20, Sm21, Sm50, Sm51, Al08, Etc.
Compliance With Gdpr When Collecting And Processing Personal Data
Support In Setting Up Internal Control Systems (Risk Prioritization)
Detailed Knowledge Of The Sarbanes-oxley Act (Sox) Regarding Technical And Organizational Security Requirements
Adherence To The Global Security Guideline "Sap Security"
Implementing Customer-specific Naming Conventions, Programming Standards Or Naming Rules For Authorization Development
Performing Full System Audits Or Security Checks Using Audit Info Systems (Ais) Including Collaboration With Internal And External Audit (Transaction Secr)
Conducting And Assessing Risk Analysis As Part Of Ics (Internal Control System) Testing And Designing And Implementing Methods To Address Action Items
Creating Sod Matrices Based On Marisk
Ms Excel
Ms Word
Ms Access
Ms Powerpoint
Remedy Action Request System
Photoshop
Paint Shop Pro
Corel Draw
Ms Outlook
Sap Script
Sap Profile Generator
Visual Basic (Basic Knowledge)
Abap/4 (Basic Knowledge)
Documentum
Bizrights
Lotus Notes
Windows Xp
Vista
Windows 7
Apm (Realtime)
Apm Atlantis (Realtime)
Tangro Invoice Management.
Languages
Education
Diploma in Business Administration (FH) · Business Administration
Similar Freelancers
Discover other experts with similar qualifications and experience
SAP Authorization Consultant / SAP Authorization Consulting (Freelancer/SAP Consultant)
SAP Authorization Consultant
BW Consultant, Authorizations, Fiori
SAP Basis Administrator
SAP FI/CO Consulting
SAP Certified Solution Architect (CSA) / Executive Consultant SAP Authorizations, Security & Compliance / Senior Consultant
Project Manager Business Technology Platform BTP
SAP Security Expert
SAP SuccessFactors & S4HANA Consultant
Senior Project Manager S4HANA in the Energy Sector
GRC Consultant
Interne Teilprojektleitung für das Berechtigungswesen
SAP Principal Consultant (RM-CA)
Freelance SAP Project Manager focusing on HR-IT (SAP HCM)
SAP Consultant
SAP Basis Consultant / SAP Technical Consultant
Project Manager & Portfolio Owner for Infrastructure (Automotive)
SAP Senior Consultant
SAP SCM Consultant Second Level MM and PP & SAP Coaching & Training
Migration to HANA BP
Compliance Consultant
SAP FI/CO Lead Consultant
Head of IT
Onboarding Applications Expert
Senior SAP FI/CO Consultant
SAP Development, Adobe Form Development
Solution Architect ABAP, BW and BTP
SAP S/4HANA Key Account Support, Training & Prototyping
Technical Consultant R/3 OS/DB Migration Qualified
