Ryan advises organizations across virtually all industries on data privacy and information security planning and compliance. He works closely with corporate in-house privacy professionals and information security teams to develop policies and procedures to mitigate the occurrence and impact of cybersecurity incidents.

Ryan has counseled national and multinational brands on data privacy program requirements, including those under state laws such as the California Consumer Privacy Act and Tennessee Information Protection Act, as well as federal laws and guidance including, among others, HIPAA and HITRUST, GLBA, and the numerous privacy and security requirements surrounding financial, healthcare, government classified and children’s data.

In addition to his regulatory practice, Ryan has advised hundreds of organizations through their response, investigation and communication strategies following cybersecurity incidents. From misplaced laptops and wire fraud to complex ransomware events impacting global business units, Ryan brings the necessary expertise and third-party resources to minimize business interruption, legal exposure and reputational risks.

Ryan followed his J.D. from the University of Tennessee College of Law with a M.S. in Cybersecurity Risk and Strategy from New York University School of Law and Tandon School of Engineering, where he engaged in the extensive study of the business, regulatory and technical aspects of data privacy compliance and cyber risk management. Prior to attending law school, Ryan served in the U.S. Navy as a Supervisory Agent of the USN Criminal Investigation Division, where he led federal criminal investigations as a military augmentee of certain U.S. Justice and Defense Department Agencies.

Ryan lives in Nashville and spends his free time entertaining his daughter, searching for the best meal in town, and failing to improve his golf swing.