Snyk is the leader in secure AI software development, helping millions of developers develop fast and stay secure as AI transforms how software is built. Our AI-native Developer Security Platform integrates seamlessly into development and security workflows, making it easy to find, fix, and prevent vulnerabilities — from code and dependencies to containers and cloud.
Our mission is to empower every developer to innovate securely in the AI era — boosting productivity while reducing business risk. We’re not your average security company - we build Snyk on One Team, Care Deeply, Customer Centric, and Forward Thinking.
It’s how we stay driven, supportive, and always one step ahead as AI reshapes our world.
Why this role?
Snyk's Legal Department is seeking a law student to support the company's Governance, Risk & Compliance (GRC) function. This role sits at the intersection of law, technology, and business, offering hands-on experience in how a high-growth cybersecurity SaaS company operationalizes legal and regulatory requirements into enterprise-wide compliance programs. This role will sit in Ottawa, Ontario, Canada.
What You'll Do
In this role, you will work directly with Snyk's compliance team to support activities across several core workstreams:
Regulatory Compliance & Policy Development: Research and analyze legal and regulatory frameworks (including GDPR, CCPA/CPRA, NIS2, DORA, and the EU Cyber Resilience Act) and assist in drafting and updating internal policies, procedures, and standards to align with evolving requirements.
Security & Compliance Frameworks: Support audit preparation and evidence collection for industry certifications and attestations, including ISO 27001, SOC 2, and FedRAMP, gaining exposure to how legal obligations translate into operational controls.
Third-Party Risk Management: Assist in evaluating vendor contracts and risk assessments, reviewing data processing agreements, and analyzing third-party compliance posture against Snyk's legal and security requirements.
Risk Management: Contribute to the maintenance of Snyk's enterprise risk register, including researching emerging legal and regulatory risks, drafting risk summaries, and supporting quarterly risk reporting to leadership.
Customer Trust & Assurance: Help prepare responses to customer security questionnaires and due diligence requests, learning how enterprise customers evaluate a SaaS provider's legal and compliance posture during procurement.
Internal Audit Support: Assist with internal audit activities, including reviewing control documentation, tracking remediation items, and researching regulatory guidance relevant to audit findings.
Cross-Functional Collaboration: Work alongside information security, engineering, procurement, and business teams to understand how legal compliance is embedded across a technology organization.
What You'll Learn
This role offers law students a unique opportunity to develop practical skills in:
Applying data privacy and cybersecurity law in an operational context
Translating statutory and regulatory requirements into corporate policies and controls
Conducting legal risk assessments for technology companies
Understanding the role of in-house counsel in enterprise compliance and governance
Working with international legal frameworks across multiple jurisdictions (US, EU, UK, and others)
What We're Looking For
Current JD candidate (1L, 2L, or 3L) with demonstrated interest in technology law, data privacy, cybersecurity, regulatory compliance, or corporate governance
Strong legal research and writing skills
Ability to synthesize complex regulatory requirements into clear, actionable guidance
Comfort working in a fast-paced, cross-functional environment
Prior coursework or experience in data privacy, information security, or technology regulation is a plus but not required
We care deeply about the warm, inclusive environment we’ve created and we value diversity – we welcome applications from those typically underrepresented in tech. If you like the sound of this role but are not totally sure whether you’re the right person, do apply anyway!
About Snyk
Snyk is committed to creating an inclusive and engaging environment where our employees can thrive as we rally behind our common mission to make the digital world a safer place. From Snyk employee resource groups, to global benefits that help our employees prioritize their health, wellness, financial security, and a work/life blend, we aim to support our employees along their entire journeys here at Snyk.
Benefits & Programs
Prioritize health, wellness, financial security, and life balance with programs tailored to your location and role.
Flexible working hours, work-from home allowances, in-office perks, and time off for learning and self development
Generous vacation and wellness time off, country-specific holidays, and 100% paid parental leave for all caregivers
Health benefits, employee assistance plans, and annual wellness allowance
Country-specific life insurance, disability benefits, and retirement/pension programs, plus mobile phone and education allowances
Top Skills
Similar Jobs at Snyk
What you need to know about the Los Angeles Tech Scene
Key Facts About Los Angeles Tech
- Number of Tech Workers: 375,800; 5.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Snap, Netflix, SpaceX, Disney, Google
- Key Industries: Artificial intelligence, adtech, media, software, game development
- Funding Landscape: $11.6 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Strong Ventures, Fifth Wall, Upfront Ventures, Mucker Capital, Kittyhawk Ventures
- Research Centers and Universities: California Institute of Technology, UCLA, University of Southern California, UC Irvine, Pepperdine, California Institute for Immunology and Immunotherapy, Center for Quantum Science and Engineering
