Todd S. McClelland

Todd McClelland advises clients on data breach response and other information security-related issues, including pre-breach cybersecurity risk assessment and management, compliance, response preparedness, and other risk mitigation activities. He also counsels clients on data privacy issues, outsourcing transactions, technology and data licensing, technology audits, and cloud transactions.

Todd has particular experience with PCI/payment system incidents, HIPAA-related incidents, critical infrastructure security, global privacy compliance, and IP theft. He has advised hospitals, payment processors, retailers, financial institutions, and traditional "brick and mortar" companies on data security incidents and pre-breach preparedness. Before joining Jones Day in 2014, he represented a global business information concern in connection with a sophisticated APT intrusion by organized criminal actors that impacted data assets and systems worldwide. He also advised a global payment processor in connection with a complex cyber crime investigation involving a sophisticated APT intrusion. On the outsourcing side of his practice, Todd has represented a power distribution concern in a statewide comprehensive smart grid initiative; a global transportation company in outsourcing components of its IT platform, international F&A functions, and ADM functions; one of the largest big-box home improvement stores in the outsourcing of infrastructure management services; and a large independent power producer in the sourcing of multiple HR and IT processes. [1]