BIS Safety Software is a SaaS company on a mission to change how organizations manage safety, learning, and compliance. As we grow, so does the complexity of our legal and risk landscape - and we need someone who is ready to dig in, take ownership, and grow with us. We are looking for a Lawyer - In-House Legal Counsel who is sharp, curious, and energized by the challenge of building something.
BIS is headquartered in Sherwood Park, Alberta. We are open to filling this role remotely or in-person.
About the role:
This is a hands-on role for someone who is comfortable operating independently. You do not need to be an expert across every area of law, but you should bring broad legal knowledge with deeper expertise in privacy, data protection, and risk management. What matters most is your drive to understand our business, your resourcefulness when you hit the edges of your knowledge, and your instinct to get ahead of problems.
Privacy and risk sit at the center of this role. You will own privacy and data protection across the business, supporting our privacy program as we grow, and working closely with our Risk and Compliance team to get ahead of legal and regulatory exposure. You will also draft and negotiate our commercial agreements - SaaS contracts, MSAs, DPAs, and vendor agreements - and keep our template library current.
You will report directly to leadership and serve as the primary legal resource across the organization - partnering closely with our Risk and Compliance team, coordinating with external counsel when needed, and helping the business move confidently without unnecessary friction.
- Privacy Accountability & Leadership
- Risk Identification & Mitigation
- Data Security
- Cross-Functional Partnership on Risk & Privacy
- Commercial Contracting & Drafting
- External Counsel Coordination
- Legal Process & Documentation
- Corporate & General Legal Support
- Own privacy and data protection compliance across the business, with full accountability for adherence to applicable legislation (GDPR, HIPAA, Quebec Law 25, PIPEDA, and similar frameworks as the business grows)
- Support and maintain our privacy program: policies, data mapping, breach response protocols, vendor privacy risk assessments, and training
- Proactively identify legal, regulatory, contractual, and privacy risks before they escalate - and recommend practical, business-aligned mitigation strategies
- Serve as a key legal partner to the Risk and Compliance team, providing guidance, issue analysis, and ongoing support on security and regulatory matters
- Collaborate with Security, Engineering, Product, Sales, Customer Experience, and Finance teams to understand how the business operates and where privacy and risk exposure lives
- Draft, review, and negotiate commercial agreements including SaaS subscription agreements, MSAs, DPAs, vendor agreements, and NDAs
- Develop and maintain contract templates, standard clauses, and fallback positions to improve consistency and reduce repeat work
- Coordinate with external legal counsel for specialized or complex matters - scoping and managing that work to ensure it is efficient and cost-effective
- Build and maintain legal documentation, playbooks, and internal guidance that reduce repeat questions and support the team in making better decisions
- Support general corporate, compliance, and governance matters, and assist with due diligence and strategic initiatives as needed
- Have 3+ years of legal experience with a strong foundation in privacy, data protection, and risk management (ideally in a software or technology environment)
- Have hands-on experience with privacy and data protection frameworks such as GDPR, HIPAA, SOC 2, Quebec Law 25, the EU AI Act, ISO 27001, or PIPEDA
- Bring a working understanding of commercial contracts, particularly SaaS and technology agreements
- Demonstrate exceptional attention to detail - in this role, the details matter
- Take ownership of problems - even ones outside your comfort zone - and find a way forward
- Proactive by nature: you identify risks early, ask the right questions, and do not wait for issues to land on your desk
- Can operate independently, manage competing priorities, and know when to escalate
- Communicate clearly and practically - your legal guidance makes things easier, not harder
- Humble, eager to learn, and comfortable asking for help when you need it
- Have a pragmatic, business-minded approach to legal risk - you understand that the goal is to protect the business, not slow it down
- A member in good standing with the Law Society of Alberta or willing to become one upon successful selection
- In-house experience, particularly within a SaaS or technology-driven organization
- Familiarity with privacy, data protection, and security concepts in a software business context
- A formal privacy certification (CIPP/E, CIPP/C, CIPM, or similar)
- Experience supporting a company in the $10M-$50M revenue range
- Exposure to contract lifecycle management tools or contract automation
- Employee Stock Ownership Plan (ESOP)
- Full medical, dental, and vision coverage
- Life insurance and disability insurance
- Health spending account
- Flexible working hours
- On-the-job training and growth opportunities
- Free on-site parking
Salary ranges are based on experience, reflecting the unique skillset each individual brings to the role.
About BIS:
BIS Safety Software has been headquartered in Sherwood Park, Alberta, since 2006. We build software that helps organizations manage safety training, learning, and compliance - and we’re growing!
A few things that make us different: we don’t use job titles internally - we value humility and contribution over hierarchy. We move fast, integrate new ideas quickly, and give people real ownership of their work. And through our Employee Stock Ownership Plan (ESOP), you have the opportunity to own a piece of the company you’re helping build.
How to apply:
Visit our Careers Page for more information. We sincerely thank all applicants for their interest. Only those selected for interviews will be contacted.
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
Job ID: #E202603-04CLC
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses and identifying potential inconsistencies or verification signals in application materials based on available information. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.