About

Mr. Popovic works in a multi-disciplinary team, driving cyber security services and solutions to enable secure adaptation of private, hybrid, and public Cloud platforms. Dragoljub's presence is in primary security interfaces, closely collaborating with development teams, architects, engineers, and operational teams involved in Cloud-related projects. Mr. Popovic is a part of an operating model that emphasizes DevSecOps, that is, automation, integration, and agility based on Security as a Service / Security as Code concepts. The assignments are in line with real-world security problems in the Cloud space that challenges and expands the technical knowledge through security automation development, threat modeling, vulnerability assessment, penetration testing, and many other security-related disciplines aimed at securing Cloud environments. Dragoljub is team-oriented with the ability to develop and execute ideas and initiatives.

Work Experience

Vice President - Cloud SecOps Citibank N.A.
March 2020 - Present
  • Managed the revamp and enhancement of Citi's Cloud security automation capabilities using AWS cloud-native services (CodePipeline, CodeCommit, CodeBuild, Lambda, etc.) with secure DevOps principles and standardized Citi developer toolsets.
  • Lead quarterly scheduled Red Team AWS Hands-on exercises against Hybrid Cloud environments, assessing defensive posture (detective and defensive controls) and Blue Team (SOC, CSIS, CSFC, etc.) response readiness. The exercises followed a consistent cyber kill chain model, utilizing AWS exploitation frameworks such as Pacu, resulting in discovery and remediation of potential security gaps within AWS.
  • Performed internal Vulnerability Assessments of Citi's Cloud environments as part of the yearly compliance regulations, identifying areas of risks and ensuring that the gaps are documented and remediated.
  • Collaborated with Cloud Security Engineering, IAM and Operations teams in development of new detective, auto-remediation and preventive security controls/policies, utilizing frameworks such as Sentinel and custom in-house developed toolsets.
  • Engaged in Threat Modeling and Risk assessment sessions that lead to identifying potential security flaws and made recommendations in characterizing the risk and severity posture of AWS services and components in Citi's Cloud environments.
  • Created security policies using third-party frameworks that leverage cloud service provider API's to provide visibility and control over public cloud environments.The policies are utilized for continuous Cloud Monitoring reporting/metrics, governing all security compliance/hygiene issues across the entire Cloud ecosystem.
  • Collaborated with AWS Partners in continuous effort to enhance Citi's defensive posture in Cloud, utilizing events such as Tabletops and Capture the Flag (CTF).
  • Obtained security-related operational metrics through automation, increasing security visibility across the organization; measure the coverage and effectiveness of security tools; transparency over the security state of the Cloud.
Solution Analyst - Cloud Eng. Deloitte LLP
July 2018 - March 2020
  • Lead/Architect multi-cloud migration strategies; defining delivery architecture, developing migration and orchestration procedures in AWS, GCP and Azure.
  • Managed on-boarding through stages of Cloud provider account procurement, security enrollment, network and application infrastructure deployment, managed services deployment, and environment release.
  • Managed hand-off of new projects from sales/pursuits team to managed services/operations team.
  • Fulfilled operations tickets in collaboration with team members ranging the spectrum of operations incidents/change requests, including Windows and Linux server issues/requests, SSL certificates, Relational Database Service, Elastic Load Balancers, DNS, Group Policies, Delegation, Windows Hardening, Centrify Server Access Suite, Centrify IDP, and Active Directory/Federation.
  • Developed integrated disaster recovery and business continuity infrastructures across different cloud platforms utilizing cloud native toolsets and third-party applications.
  • Managed on-boarding of new clients, including all environment deployments within a team of engineers across the US and India.
  • Successfully managed services (IAM control, security monitoring and alerting, configuration management, capacity monitoring, patching) for over 100 clients, each containing 1-4 environments, across AWS, GCP, Azure, Bluelock.
  • Created and oversaw processes in bridging the gaps between complex business problems and solutions in the cloud.
  • Automated portions of the new project on-boarding procedure in ServiceNow and AWS.
Technical Support Specialist Saint Leo University
December 2016 - June 2018
  • Successfully managed ticket requests through ManageEngine Service desk system
  • Provided technical assistance and support for students and faculty regarding issues related to computer systems
  • Installed, modified and repaired computer hardware and software
  • Imaged desktops and laptops with Symantec management platforms including Altiris
  • Assisted senior IT technicians with various tasks.

Education

Bachelor of Science - CIS Saint Leo University GPA: 3.8
September 2016 - May 2018
Associate of Arts - CIS Hillsborough Community College
September 2013 - June 2015

Certifications

GIAC Cloud Penetration Tester (GCPN)

AWS Security Specialty

AWS DevOps Engineer - Professional

AWS SysOps Administrator - Associate

AWS Developer - Associate

AWS Solution Architect - Associate

HPE ATP - Hybrid IT Solutions V1

Skills

Python
Amazon Web Services
Microsoft Azure
Google Cloud Platform
Jira
Pacu
Ansible
Jenkins
Splunk
ServiceNow
Datadog
Powershell
SQL
Terraform