Commercial Legal Counsel

About the Position

Ox Security is the pioneer of Active ASPM, purpose-built to secure the modern software supply chain in the age of AI. While traditional tools overwhelm teams with endless alerts, Ox cuts through the noise to identify the critical 5% of risks - those that are truly reachable and exploitable. From GenAI-generated code to cloud runtime, we provide developers and security teams with the visibility and automation needed to ship secure software, faster.

We’re growing fast and looking for a Commercial Legal Counsel to join our team and build our legal function from the ground up, supporting our global expansion.

This is a high-impact role reporting to the VP Finance & Operations, where you’ll work closely with Sales, Procurement, and Leadership, acting as a strategic legal partner while shaping legal processes, infrastructure, and best practices across the company.

If you’re someone who enjoys solving complex legal challenges in a fast-paced environment, takes a pragmatic approach, and knows how to enable the business while managing risk - we’d love to meet you.

What You’ll Be Doing

• Build and establish the legal function, including workflows, processes, and legal infrastructure
• Partner with Sales, Procurement, and Leadership to review, draft, and negotiate commercial agreements (SaaS, licensing, services, NDAs, partnerships)
• Support cross-border transactions and ensure compliance with global regulations (including data protection laws)
• Develop and maintain contract playbooks, templates, and legal policies
• Manage vendor onboarding processes and internal approval workflows
• Oversee corporate documentation and signatory processes
• Support and help streamline ESOP administration and equity-related processes
• Drive legal initiatives and support cross-functional projects across the organization

What We’re Looking For

• LL.B. from a recognized institution (LL.M. advantage)
• 3+ years of experience in commercial and corporate law from a top-tier law firm
• Strong experience with SaaS agreements and data protection laws (GDPR, CCPA)
• Experience working with U.S.-based companies or clients
• Strong business mindset with the ability to balance legal and commercial considerations
• Fluent English (written and spoken) at a professional level
• Ability to work independently, manage multiple priorities, and adapt in a fast-paced environment
• Strong attention to detail, combined with a big-picture perspective
• Excellent interpersonal skills - a collaborative, business-oriented legal partner

Bonus Points For

• 2+ years of in-house experience (preferably in tech or startups)
• Experience building legal processes or infrastructure from scratch