Drago Nicolas Bonacich

Drago Nicolas Bonacich

IT Security & Compliance Specialist

Lillington, North Carolina, United States

Drago.Bonacich@Outlook.com

LinkedIn Profile

Professional Summary

Results-driven professional and Marine Corps veteran with an active DOD Secret clearance and a proven track record of performing under pressure. Known to exceed expectations in fast-paced, collaborative environments and highly skilled in analyzing and solving problems quickly and effectively. Dedicated to continuous personal growth and to developing a broad array of IT & cybersecurity skills and knowledge. A current undergraduate student at the SANS Technology Institute and a team member at the North Carolina Department of Information Technology.

Certifications

CompTIA CSIS

A+, Network+, Security+

CompTIA CSAP

Security+, CySA+

SANS GIAC

GFACT, GISF, GSEC, GCIH

ISC2

CISSP

Department of Defense

Secret Clearance

Professional Experience

December 2023 - Present | Remote

Working as part of a team member at the NC DPS/DAC Information Security Office under NCDIT to strengthen the department's security posture through incident response, strategic project management, and the integration of advanced security tools and automation.


  • Actively participating in the Incident Response process, addressing and resolving security incidents from a variety of sources, including tickets, automated alerts, and SOC teams, contributing to efforts in incident analysis and mitigation
  • Engaging in the process of researching, evaluating, and communicating with vendors to explore and vet security products suitable for enhancing our department's security infrastructure, ensuring alignment with our security needs and goals
  • Driving strategic security projects aimed at mitigating identified security gaps, involving cross-departmental collaboration, advanced scripting, and leveraging tools to enhance project execution and outcomes
  • Utilizing a comprehensive set of security management tools, including CrowdStrike, Nessus, ServiceNow, Acunetix, and Tanium, to support daily security operations and maintain the department's security posture
  • Leveraging AI to assist in developing custom GUI programs, enhancing team efficiency by simplifying access to specific security processes
  • Creating and utilizing custom Python and PowerShell scripts for security automation and auditing across Windows hosts, both locally and through CrowdStrike's Real Time Response (RTR) feature

April 2023 - December 2023 | Raleigh, NC

Served as an apprentice with the North Carolina Department of Public Safety Information Security Office under NCDIT, contributing to compliance assessments, vendor vetting, and the implementation of IT security tools and policies.


  • Conducted thorough vetting of third-party local and cloud software vendors to ensure compliance with federal regulations, state laws, and state policies
  • Performed compliance assessments on internal operating system images
  • Gained hands-on experience in Business Continuity Planning, Digital Forensics, and Policy writing
  • Tested and implemented new IT security tools
  • Provided backup support for other ISO staff as needed
  • Assisted in coordinating IT security assessments using both internal tools and external vendors
  • Collaborated with other agency IT sections, various agencies, and the Department of Information Technology (DIT) on an ongoing basis

September 2022 - February 2023 | Remote

Provided comprehensive support for Microsoft Defender for Endpoint, Defender Antivirus, and related technologies, ensuring timely issue resolution and maintaining positive customer relationships.


  • Delivered support for Microsoft Defender for Endpoint, Defender Antivirus, and related technologies through phone, email, and Teams
  • Maintained positive customer rapport with an empathetic approach, ensuring timely issue resolution
  • Collaborated with internal teams across various departments to analyze and resolve complex problems
  • Effectively managed multiple cases simultaneously, ensuring high-quality service for each customer

July 2021 - September 2021 | Remote

Specialized in providing support for Microsoft Cloud App Security, Microsoft Defender for Identity, and Microsoft Advanced Threat Analytics, performing backend analysis and ensuring prompt issue resolution.


  • Delivered support for Microsoft Cloud App Security, Microsoft Defender for Identity, and Microsoft Advanced Threat Analytics through phone, email, and Teams
  • Conducted in-depth backend analysis of client accounts using Splunk, Azure Support Center, and Kusto databases
  • Resolved various customer issues promptly by leveraging internal and public documentation and collaborating with peers on complex issues

February 2019 - April 2021 | Camp Lejeune, NC

Completed a rigorous assessment and selection screening for entry into the unit's Scout Sniper platoon. Operated as part of an elite intelligence asset for the infantry battalion and maintained various communication assets, as well as Small Unmanned Aircraft Systems (SUAS), to ensure effective communications and successful surveillance operations.


  • Conducted various reconnaissance and surveillance operations for the infantry battalion in support of the intelligence section
  • Trained in fieldcraft and marksmanship to deliver long-range precision fire on selected targets from a concealed position
  • Updated radio frequencies and cryptographic codes, maintaining currency on required protocols
  • Performed maintenance and troubleshooting procedures on various communications and surveillance assets to ensure successful internal and external unit communication and effective surveillance capabilities
  • Ran diagnostics, analyzed, and repaired Harris radios and antennas, maintaining responsibility and serviceability for several radios and equipment

April 2017 - February 2019 | Camp Lejeune, NC

Completed specialized training in urban breaching and infiltration, demolitions, and rocket fire to support rapid worldwide deployments for light Infantry combat operations.


  • Engineered risk assessments for complex operations in various locations, formulated risk mitigation matrices and implemented control measures for several complex missions
  • Partnered with and trained international forces and NATO allies in the operation of various weapon systems and the application of military tactics and equipment
  • Applied effective leadership and communication skills to lead a team of infantry Marines through various operations
  • Maintained direct accountability for safe storage, transportation, and quality of equipment and supplies

Projects

Fullstack Academy Cybersecurity Project

Goal: Demonstrate a live Man in the Middle attack using ARP poisoning and DNS cache spoofing, then demonstrate the configuration of enterprise defenses for these kinds of attacks.

  • Collaborated with a fellow student to create a two-phase cyber attack and defense demonstration
  • Attacked a mock target in a LAN environment using the Bettercap framework and redirected the victim's URL queries to a malicious Apache server running on our Kali Linux machine
  • Built a mock enterprise network in the Cisco Packet Tracer simulation platform to demonstrate the defense strategy
  • Walked through the configuration of DHCP Snooping and Dynamic ARP Inspection on a Cisco managed switch to protect against these kinds of attacks
View on GitHub Watch Demo

Pi-Hole Project

Goal: Create and implement a private DNS server that acts as a network-wide ad blocker.

  • Physically prepared a Raspberry Pi Zero using component heat sinks and a small protective case
  • Flashed a lightweight, non-GUI Linux distribution to the device memory card
  • Attached the device to physical home LAN using a compatible micro-USB to RJ45 adapter
  • Performed a headless installation of the Pi-Hole application using an SSH connection on the internal LAN
  • Configured the network gateway to use the Pi-Hole device as the default DNS server for all traffic

Hybrid Cloud Project

Goal: Create and manage a mock enterprise environment using hybrid cloud solutions.

  • Installed and configured physical and virtual Windows Server machines with necessary server roles and implemented remote access for management using Windows Admin Center and RDP tools
  • Connected Windows Admin Center to Azure cloud for remote implementation of hybrid cloud solutions such as Azure AD
  • Created a Node.js app using Visual Studio Code and deployed it as an Azure Webapp from an on-premises repository

Education

SANS Technology Institute

Bachelor's degree, Applied Cybersecurity

September 2022 - Present

A current undergraduate student working toward a bachelor's degree in Applied Cybersecurity, earning several SANS GIAC certifications along the way as part of the degree program.

Fullstack Academy

Cybersecurity Boot Camp

August 2022 - February 2023

  • Forming a solid foundation of computer knowledge, including Windows OS and Linux OS
  • Mastering common CLI for Linux through Fullstack's CTF challenges
  • Learning Python basics and scripting, as well as Bash scripting
  • Practicing offensive techniques and how to mitigate these threats using industry blue team tools to align with cybersecurity frameworks such as NIST, ISO-27001 and MITRE ATT&CK
  • Writing and modifying rules for IPS, IDS such as Snort and ACLs for firewalls/routers based on parameters provided
  • Using packet capture tools such as Wireshark and TCPDump to investigate traffic for IOCs (Indicators of Compromise)
  • Executing basic incident response procedures and gaining familiarity with forensics tools, PCI-DSS and FISMA
  • Performing simulated threat hunting by analyzing logs in the SIEM Splunk
  • Gaining familiarity with a variety of tools including Snort, Splunk, Wireshark, Burp Suite, Metasploit, Nessus, Nmap

Western Governors University

Bachelor's degree, Cyber Security and Information Assurance

October 2021 - October 2022

Attended two semesters of classes working toward the bachelor's degree program in Cybersecurity and Information Assurance. Earned a Dean's List award and was invited to join the WGU chapter of The Order of the Sword and Shield National Honor Society (Omicron Sigma Sigma).

Covered Six Security Academy

Cyber Security Technician Program

May 2021 - June 2021

Graduated a five week, 200-hour technical training program with Covered 6 Security Academy and gained hands-on training and experience within the Cyber Security space.

  • Developed core skills for IT employment to include hardware troubleshooting and maintenance, network management, and the application of security principles
  • Gained hands-on experience with a variety of systems and concepts to include Linux and Windows operating systems, network devices and topologies, and cyber war-gaming
  • Built professional skills and competencies to help foster a successful career, including personal development, collaborative thinking, organizational skills, and workplace safety principles

Embry-Riddle Aeronautical University

Microsoft Software and Systems Academy

2021

Graduated an 18-week technical training course developed by Microsoft, focused on Server and Cloud Administration. Gained hands-on experience and an understanding of Windows Server and Azure cloud environments. Earned the Dean's List award on January 2021

  • Designed and implemented advanced network topologies including private, public, and hybrid clouds
  • Created, managed, and maintained Active Directory databases
  • Configured and maintained Hyper-V and Azure virtual machines
  • Implemented remote access, VPNs, network load balancers, and failover clusters
  • Implemented IaaS, PaaS, and SaaS cloud service solutions

Volunteering

Food Service Volunteer

Principal of St. Paul Kindergarten

South Korea

November 2018

Teaching Assistant

Naha Kindergarten

Okinawa, Japan

September 2018

Builder

Habitat for Humanity

North Carolina

February 2018

SYSTEM INITIALIZATION
Verifying system integrity...