Manager, IT Quality & Compliance

Mavericks Wanted

When was the last time you achieved the impossible? If that thought feels overwhelming, you might want to pause here, but if it sparks excitement...read on
 
In 2015, we pioneered a “moneyball for biotech” approach, pooling projects and promising early-stage research from academia together under one financial umbrella to reduce risk and unleash innovation. This model allows science and small teams of experts to lead the way. We build bridges to groundbreaking advancements in rare disease, and develop life-changing medicines for patients with unmet needs as fast as humanly possible. 
 
Together we define white space, push boundaries and empower people to solve problems. If you're someone who defies convention, join us and work alongside some of the most respected minds in the industry. Together, we'll ask "why not?" and help reengineer the future of biopharma.

What You’ll Do

The Manager, IT Quality & Compliance will report to the Associate Director, IT Quality and Compliance and will be responsible for supporting the execution and ongoing operation of BridgeBio’s IT compliance programs. This role will focus primarily on SOX IT General Controls (ITGCs) and IT Application Controls (ITACs), with meaningful involvement in other technology and regulatory compliance areas such as GxP Computer System Validation and data privacy (e.g., GDPR).

As a key contributor within the BridgeBio Information Technology organization, the IT Compliance Manager will partner closely with IT, Finance, Quality, and business stakeholders to ensure IT control requirements are well understood, consistently executed, and appropriately documented. The ideal candidate is detail-oriented, proactive, and capable of managing multiple priorities in a fast-paced and evolving environment.

Responsibilities

SOX Compliance Execution:

• Support and manage the Company's IT SOX Audit program, including planning, execution, and monitoring of IT control activities under the director of IT Quality and Compliance Leadership
• Perform day-to-day management of ITGC and ITAC activities, including evidence collection, control execution validation, and issue tracking
• Assist in identifying and assessing IT risks that impact the Company’s SOX control environment

Audit Support and Coordination:

• Serve as a key liaison with internal and external auditors for assigned IT compliance activities
• Coordinate and participate in audit walkthroughs, testing, and follow-up requests
• Provide timely and accurate audit evidence and responses in collaboration with IT process owners

Control Design and Implementation:

• Assist in the design, implementation, and maintenance of IT controls in alignment with SOX and regulatory requirements
• Evaluate control performance and identify gaps or inefficiencies
• Execute and support preparation of IT General Controls, IT Application Controls, and key reports

Risk Assessment and Mitigation:

• Support IT risk assessments and help identify control deficiencies or emerging risks
• Perform root cause analysis for identified control issues
• Track remediation plans, validate corrective actions, and support closure of findings

IT Change Management and Access Controls:

• Support IT Change Management processes, including review of changes for compliance with established policies and controls
• Assist with user access reviews (UARs), including coordination, execution, and documentation

Documentation and Reporting:

• Ensure accurate and timely documentation of IT control processes, including control narratives, test plans, and results
• Assist in preparing status updates and reports for management regarding IT compliance activities and remediation progress
  
  

Continuous Improvement and Collaboration:

• Identify opportunities to improve efficiency, consistency, and effectiveness of IT compliance processes
• Collaborate with IT teams and business partners to enhance control awareness and compliance maturity
• Support training and guidance efforts related to IT compliance requirements and best practices

Vendor Management:

• Assist with third-party IT risk and control assessments as needed
• Support reviews of vendor controls and documentation related to compliance obligations

Automation and Artificial Intelligence:

• Stay current with emerging automation and AI technologies, tools, and best practices, and assess their applicability to the organization
• Identify opportunities for process automation across business or IT functions through data analysis and stakeholder collaboration

Where You’ll Work 

This is a hybrid role based in BridgeBio’s San Francisco office, with an in-office collaboration cadence of 2-3 days per week. This is a compelling opportunity to join a high-impact, dynamic team as an individual contributor, shaping the IT Quality and Compliance roadmap and advance quality standards for IT in partnership with the business.

Who You Are

• Bachelor’s degree in information technology, accounting, finance, information systems, or a related field
• 4+ years of experience in IT compliance, IT audit, or related roles, with demonstrated SOX ITGC experience
• Working knowledge of Sarbanes-Oxley (SOX) requirements and IT control frameworks such as COBIT and COSO
• 1+ years of exposure to GxP Computer System Validation and data privacy regulations (e.g., GDPR) preferred
• Experience with SAP systems and GRC tools preferred; familiarity with AuditBoard SOXHub is a plus
• Strong analytical and organizational skills with high attention to detail
• Ability to manage multiple priorities, meet deadlines, and work both independently and collaboratively
• Familiarity with A.I tools and experience with responsible A.I practices

Rewarding Those Who Make the Mission Possible

We have high expectations for our team members. We make sure those working hard for patients are rewarded and cared for in return. 

Financial Benefits:

• Market leading compensation 
• 401K with 100% employer match on first 3% & 50% on the next 2%
• Employee stock purchase program
• Pre-tax commuter benefits
• Referral program with $2,500 award for hired referrals

Health & Wellbeing:

• Comprehensive health care with 100% premiums covered - no cost to you and dependents
• Mental health support via Spring Health (6 therapy sessions & 6 coaching sessions)
• Hybrid work model - employees have the autonomy in where and how they do their work 
• Unlimited flexible paid time off - take the time that you need
• Paid parental leave - 4 months for birthing parents & 2 months for non-birthing parents
• Flex spending accounts & company-provided group term life & disability 
• Subsidized lunch via Forkable on days worked from our office

Skill Development & Career Paths:

• People are part of our growth and success story - from discovery to active drug trials and FDA pipelines, there are endless opportunities for skill development and internal mobility
• We provide career pathing through regular feedback, continuous education and professional development programs via LinkedIn Learning, LifeLabs, Spring Health & BetterUp Coaching
• We celebrate strong performance with financial rewards, peer-to-peer recognition, and growth opportunities