You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Malt Strategy
New report
Malt Tech Trends 2026
Valerie UtgesVU

Valerie Utges

Cyber, GRC, Dora, NIS2, AI Act... Strategy Consulting

€1,500/day
22 projects
Paris, FR
15+ years
Cybersecurity
Governance, Risk & Compliance (GRC)
Risk Analysis and Management
Contracts

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Valerie

I support Boards of Directors, CIOs, CISOs, DPOs, and Risk Managers in defining and steering their cybersecurity, operational resilience, and compliance strategies.
🔹 Areas of intervention, all sectors of activity:
• Cybersecurity strategy and governance
• Resilience / business continuity (BIA, DRP, BCP)
• Regulatory compliance (GDPR, DORA, NIS2, AI Act...)
• Risk management (EBIOS, security assurance plan, audits, benchmarks)
• Awareness & governance (IT charter, security policy, procedures, contracts, crisis management, breaches)
🔹 Example deliverables:
• Cybersecurity roadmap and transformation plan
• Business Impact Analysis (BIA)
• Security / IT policy or charter
• Due diligence / partner security assurance plan
🔹 Pricing:
– Fixed fee per deliverable (audit, analysis, strategic deliverable)
– Time-based (hourly, half-day, daily), short, medium, or long term!

🎯 Objective: To provide you with concrete value and rapid improvement areas tailored to your specific needs.
Banking and Financial Services
Telecommunications
Rail and Public transport
E-commerce
Consulting and Audits

  • Spanish

    Native or bilingual

  • English

    Fluent

Can work on-site
Paris (up to 50km), Lyon (up to 10km), Marseille (up to 10km), Lille (up to 10km)

Experience

  • Toyota Financial Services
    Part-time CISO and Compliance Officer for DORA
    August 2025 - Today (10 months)
    Cybersecurity and DORA compliance
    Board of Directors awareness
    Partner negotiation
    Risk analyses
    Coaching of an internal employee for RSO skill development
    Cybersecurity GRC Risk Mapping
  • Stago
    Part-time Data Classification Program Manager
    PHARMACEUTICALS INDUSTRY
    June 2025 - Today (1 year)
    Program management for the Group CISO:
    - Business processes and data inventory
    - Confidentiality, integrity, availability classification
    - NIS2 compliance
    - DLP preparation
    Classification NIS 2 CMMC DLP BIA
  • Comcyber
    Operational Reservist
    DEFENSE AND MILITARY
    October 2024 - Today (1 year and 8 months)
    Ad-hoc cyber missions
    The confidential nature of the subjects handled does not allow me to elaborate further...
Check out Valerie's experience

Reviews

5.0

Out of 3 ratings

B

Benoit

CYBELE AM

Reviewed on 10/19/2023

Thank you
C

Contact

JUSTPLAYFAIR

Reviewed on 2/13/2023

It was a pleasure collaborating with Valérie. In addition to her professionalism, she has very appreciable interpersonal skills: she is very caring, a good listener, and always smiling. During this mission, she perfectly adapted and adjusted her business expertise to our needs. She also has a knack for making highly technical subjects understandable and accessible to everyone. I recommend her without hesitation!
Show all 3 reviews

Recommendations

CC
SB
FU
+3
Coline Chaumont and 5 other people have recommended Valerie

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Signup to reveal

Education

  • DEA AUTOMATISMES
    FACULTY OF SCIENCES OF ROUEN
    1990
  • DESS BUSINESS ADMINISTRATION CERTIFICATE
    IAE AIX EN PROVENCE
    1991
Check out Valerie's education

Certifications

  • Cissp
    Isc2

Skill set

Consulting
GDPR
Change Management
Transition Management
Risk Analysis
Digital Transformation
Interim Manager
Audit
Needs Assessment
GDPR
CNIL
ISO 27001
ISMS
EBIOS RM
DPO
Data Privacy
Data Protection Officer
ISO 27002
PIA
EBIOS
ISSP
CISO
GDPR Compliance
Information Security
NIST
Security Audit
ISO 27005
Security Audit
Cybersecurity Incident Management
Data Privacy (GDPR, CCPA)
GRC (Governance, Risk and Compliance)
Risk and Vulnerability Assessment
Security Awareness Training
Data Integrity and Governance
Change and Transformation Management
IT Project Management
IT Strategy
Least Privilege Principles
Project Management
NIS2
Governance
Compliance
Testing
Consulting
Negotiation
Contract
Cloud Computing
Benchmark
Innovation
Digital
IT Management
Virtualization
Networks
Contract Management
E-commerce
Mobile Application
Big Data
Organization
Project
Strategy

Categories