percyrwandarugali – Securing Businesses, Enabling Compliance, and Building Trust Through Expert-Led Cyber Governance

Hi, there! I am Percy Jacob R.

CYBERSECURITY
& IT AUDIT LEADER,
GRC EXPERT &
CLOUD SECURITY
STRATEGIST

CYBERSECURITY & IT AUDIT

LEADER, GRC EXPERT &

CLOUD SECURITY STRATEGIST

Securing Businesses, Enabling Compliance,
and Building Trust Through Expert-Led Cyber Governance

4.8

Satisfaction

ABOUT ME

With a foundation built on security, trust, and performance, I specialize in helping organizations align their information systems with global compliance standards while reducing risk exposure. I’ve led and supported efforts in regulatory compliance, application and cloud security reviews, and enterprise risk management all while tailoring solutions that meet business objectives.

From conducting 1,000+ control reviews to leading assessments across dozens of SaaS applications and cloud platforms, my approach is hands-on, scalable, and compliance-driven.

WHAT I DO

Cloud Security Readiness

Assessing and preparing SaaS platforms and web applications for secure deployment in AWS and Azure, aligned with SOC 2 and NIST standards.

Cloud Security ReadinessIt is a long established fact that a reader will be distracted by the readable content of a page when looking at its layout.

Audit & Compliance Leadership

Leading full-cycle compliance programs — SOC 1, SOC 2, ISO 27001, HIPAA, HITRUST, PCI DSS — including internal

Governance, Risk, & Control (GRC)

Implementing GRC frameworks that drive measurable outcomes in risk reduction, control maturity, and audit success — for businesses of all sizes.

Security Assessments & Remediation

Identifying risks, evaluating control effectiveness, and designing remediation strategies that support operational and regulatory excellence.

MY EXPERIENCE

PROJECTS AND EXPRIENCE

01. Security Review Program for SaaS Apps

Designed and executed a cloud readiness and security validation process for SaaS platforms now used to continuously evaluate over 25 applications against SOC 2, HIPAA, and HITRUST.

02. AWS Cloud Security Audit for Enterprise Data

Led a critical security assessment covering over 100 TB of sensitive data in AWS infrastructure, achieving seamless SOC 2 Type II certification.

03. PCI DSS Compliance for FinTech Platform

Performed end-to-end PCI DSS assessment for mobile payment solutions across East Africa, including point-of-sale and e-cash systems.

04. IT Risk Automation & Continuous Monitoring

Reduced manual effort in IT control monitoring by 20% through automation, GRC tooling, and strategic process alignment.

Master's Degree in Cybersecurity & IT Auditing

Temple University

Bachelor's Degree in Information Technology

Makerere University

Executive Training – Managing Risk in the Information Age

Harvard VPAL

Certified Information Systems Auditor

CISA

Certified Information Security Manager

(CISM)

ISO 27001 Lead Auditor

HITRUST Certified CSF Practitioner

AWS Certified Security – Specialty

NIST-FISMA, COBIT (Vendor Management)

LET'S CONNECT

Whether you’re preparing for a security audit, need help with SaaS application reviews, or want to implement a scalable GRC program let’s talk.

MY COMPANY – BYST SECURITY

BYST Security is a cybersecurity and IT audit consultancy dedicated to helping organizations secure their digital infrastructure, achieve compliance, and manage risk with confidence.

We specialize in:

SOC 2, HIPAA, HITRUST, ISO 27001, and FedRAMP readiness
Cloud security assessments (AWS & Azure)
GRC program design and continuous monitoring
Security awareness and control testing
Vendor risk management

Whether you’re preparing for an audit or improving your cybersecurity posture, BYST Security delivers tailored solutions that work.