Colin Scanlon is a Partner at Mullen Coughlin and focuses his practice on counseling organizations of all sizes and from all industry sectors as they respond to data privacy and security incidents. Colin specializes in advising organizations on how to appropriately respond to incidents which may include ransomware attacks, business email compromises (BEC), inadvertent disclosures, third-party/vendor breaches, and other unauthorized network intrusions.

As Breach Counsel, Colin directs the privileged investigation into the incident alongside digital forensic and incident response (DFIR) firms and data mining firms to determine the nature and scope of the incident. He also identifies the legal, regulatory, and contractual obligations the organization has stemming from the incident. He then ensures compliance with these legal obligations, including with law enforcement and regulatory agency reporting; notification to individuals, business partners, and the media; and the provision and management of post-incident services such as mailing and call center support, internal and external public relations and communications regarding the incident and response, and procuring client and/or identity monitoring services for affected individuals.

Prior to joining Mullen Coughlin, Colin practiced subrogation and casualty defense litigation for a mid-size civil litigation law firm.