Job Description

BoardOutlook is looking for a sharp, proactive and detail-oriented Legal and Compliance Manager to join BoardOutlook and take ownership of both our legal and compliance functions.

This is a rare opportunity for an ambitious, aspiring Head of Legal in Enterprise Saas to learn fast and grow in a meaningful mission-driven startup.


Below we've included more detail on:


Why join BoardOutlook?


About this role


About you


Compensation


Hiring process


Location

1. Why join BoardOutlook?

------------------------------

###

1.1 A purpose-driven mission

We founded BoardOutlook in 2019 to help more boards become great boards--for the benefit of shareholders, employees, communities, and society. Our software is used by some of the most senior leaders in the country to make better decisions at critical moments.


We've now worked with thousands of directors across hundreds of organisations. Our conviction is stronger than ever: great governance is a force multiplier, and our platform helps drive it.

###

1.2 A team you'll learn from

We're a small, senior, cross-functional team with deep experience across tech startups, consulting, design, and product. This is an excellent environment for someone who wants mentorship, autonomy, and exposure to how great product is built in the real world.


We live by five core values:

Organisation

- We believe this gives us an unfair advantage

Attention to detail

- The small things matter

Urgency

- We move quickly and execute with intent

Generous investment

- We support each other's growth

Optimism and ambition

- We set a high bar and go after it

###

1.3 A growth company with momentum

We're well-funded, expanding globally, and investing in our product suite. This is a formative time in our journey -- and a great opportunity to make an outsized impact early in your career.

2. About this role

-----------------------


We're looking for a sharp, proactive and detail-oriented Legal & Compliance Manager to join BoardOutlook and take ownership of both our legal and compliance functions.


This is a unique hybrid role that combines traditional in-house legal responsibilities -- such as negotiating commercial contracts and advising on privacy law -- with hands-on ownership of our ISO 27001-aligned compliance program and broader risk management initiatives.


This is an ideal role for a commercially minded lawyer with an interest in privacy, security, and regulatory compliance who is excited to shape and scale legal and risk frameworks within a global, growing Enterprise SaaS business.

Key Responsibilities

Legal Advisory & Commercial

Draft, review and negotiate a range of commercial agreements, including SaaS customer contracts, partnership agreements, DPAs, and NDAs.


Advise internal teams on legal and regulatory issues, with a focus on privacy, IP, and commercial risk.


Act as the primary legal advisor on customer and vendor engagements, including security and privacy-related legal terms.


Ensure contract templates and processes are kept up to date, fit for purpose, and aligned with evolving business needs.

Privacy & Data Protection

Advise on all aspects of data protection, including GDPR and Australian Privacy Act compliance.


Maintain and enhance privacy policies, notices, data maps, and consent mechanisms.


Manage privacy incidents or DSARs, and serve as the internal point of contact for privacy inquiries.

Risk & Compliance (Security and Regulatory)

Maintain and evolve our ISO 27001-aligned Information Security Management System (ISMS).


Own the compliance calendar: ensure timely audits, evidence collection, and Vanta platform oversight.


Support security initiatives alongside the Engineering team -- from policy creation to vendor assessments and incident response.


Roll up your sleeves to manage third-party risk processes including completion of customer security questionnaires.


Monitor legal and regulatory developments and provide actionable updates to leadership.

3. About you

-----------------

Qualifications & Experience

4-6 years of post-qualification legal experience, ideally including in-house experience in a SaaS or tech business.


Strong working knowledge of privacy and data protection laws (especially GDPR).


Familiarity with ISO 27001, SOC 2, or similar frameworks (formal certification a plus but not essential).


Comfortable operating across both legal and compliance functions -- from redlining contracts to managing risk registers.

Skills & Attributes

Strong commercial judgment, drafting skills, and attention to detail.


Practical, solutions-focused approach to balancing risk and business outcomes.


Excellent communication and stakeholder engagement skills.


Comfortable working autonomously in a fast-paced environment, while collaborating closely with Engineering, Sales, and Leadership.

4. Compensation

--------------------


We're offering total cash compensation of GBP 60-70k, depending on experience.


This role will also include a meaningful equity (ESOP) grant, so you can grow with us and share in our success.

5. Hiring process

----------------------


We keep our process fast and human. You can expect:


A short screening call


1-2 interviews with team members


A short written or practical exercise


Final interview and references


We aim to provide feedback quickly after each stage.

###

5.1 How to apply:

Please send your application including these details totalent@boardoutlook.com- Please make sure you include "Legal and Compliance Manager" within the subject line of your email.

6. Location

----------------


We work hybrid from our office in London. We ask that you're available in-office 3 days per week.


We are only considering candidates with full working rights in London and are not offering visa sponsorship at this time.