We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
Ardelyx jobs

Senior Director, IT Compliance and Privacy

Ardelyx
life insurance, parental leave, paid holidays, flex time, 401(k)
United States, Massachusetts, Waltham
Nov 01, 2025
Description
Ardelyx is a publicly traded commercial biopharmaceutical company founded with a mission to discover, develop and commercialize innovative first-in-class medicines that meet significant unmet medical needs. Ardelyx has two commercial products approved in the United States, IBSRELA (tenapanor) and XPHOZAH (tenapanor). Ardelyx has agreements for the development and commercialization of tenapanor outside of the U.S. Kyowa Kirin commercializes PHOZEVEL (tenapanor) for hyperphosphatemia in Japan. A New Drug Application for tenapanor for hyperphosphatemia has been approved in China with Fosun Pharma. Knight Therapeutics commercializes IBSRELA in Canada.
Position Summary:
The Senior Director, IT Compliance and Privacy, ensures all technology operations meet regulatory, legal, and corporate governance requirements while enabling business agility. This role manages the complex compliance landscape of pharmaceutical and public company requirements through compliance-by-design principles and embedded review processes across all IT operations. The position leads a team responsible for SOX ITGC, GxP validation, data privacy (GDPR, HIPAA), and comprehensive risk management across the technology portfolio.
Responsibilities:
Regulatory Compliance Leadership
  • Lead quarterly Sarbanes-Oxley IT General Controls testing across all financial systems, coordinate audit evidence preparation, and manage external auditor interactions
  • Oversee pharmaceutical system validation processes, ensuring compliance with FDA requirements and supporting regulatory inspections and audit preparation
  • Maintain comprehensive compliance programs for all public company IT obligations and regulatory reporting requirements
  • Conduct enterprise-wide IT compliance risk assessments and develop mitigation strategies across the technology landscape
Data Privacy & Governance
  • Implement and maintain comprehensive data privacy programs covering GDPR, HIPAA, and state privacy regulations
  • Establish enterprise data classification, handling procedures, and governance frameworks across clinical, commercial, and corporate data
  • Conduct privacy reviews for all new technology implementations and system changes
  • Parter with Cybersecurity lead on data breach response coordination across IT pillars and business units, ensuring proper regulatory notification and remediation
Cross-Pillar Integration
  • Review all technology decisions for regulatory impact before implementation, embedding compliance checkpoints into standard IT workflows
  • Translate complex regulatory requirements into practical IT policies, procedures, and training programs
  • Manage internal and external audit activities, coordinating evidence gathering across Business Technology, Infrastructure, and Security teams
  • Interface with external auditors, regulators, compliance consultants, and legal counsel on IT-related matters
Team Leadership & Development
  • Direct IT Compliance and Privacy & Data Governance teams, providing strategic guidance and professional development
  • Develop and deliver compliance training programs tailored to specific IT roles and business functions
  • Continuously improve compliance processes to balance regulatory requirements with business agility and operational efficiency
  • Manage escalation of significant compliance risks to CIO and executive leadership
Qualifications:
  • Bachelors in IT, Computer Science, or related field; advanced degree or JD preferred with 10+ years of IT compliance experience with 5+ years in leadership roles or equivalent experience
  • Pharmaceutical, biotechnology, or regulated life sciences industry experience required
  • Proven track record managing compliance for technology portfolios in public company environments
  • Extensive experience with Sarbanes-Oxley IT General Controls testing, documentation, and audit support
  • Deep knowledge of pharmaceutical validation requirements, FDA regulations (21 CFR Part 11), and quality management systems
  • Expert-level understanding of GDPR, HIPAA, CCPA, and other privacy regulations with hands-on implementation experience
  • Strong background in IT risk assessment methodologies, business continuity planning, and compliance program management
  • Understanding of enterprise applications, databases, cloud platforms, and integration architectures from a compliance perspective
  • Experience coordinating internal and external audits, evidence collection, and remediation planning
  • Proven ability to translate regulatory requirements into practical business processes and technical controls
  • Exceptional skills in communicating complex compliance requirements to technical and business audiences
  • Experience leading cross-functional compliance initiatives in matrix organizations
  • Proven ability to influence without authority across business units and IT teams
  • Experience managing relationships with external auditors, consultants, and regulatory bodies
  • Travel:10%
Preferred Qualifications
  • CISA, CRISC, CIPP, CIPM, or other relevant compliance and privacy certifications
  • Knowledge of ISO 27001, NIST frameworks, and life sciences industry best practices
  • Familiarity with evolving privacy laws, AI governance requirements, and digital health regulations
The anticipated annualized base pay range for this full-time position is $251,000 - $307,000. Ardelyx utilizes industry data to ensure that our compensation is competitive and aligned with our industry peers. Actual base pay will be determined based on a variety of factors, including years of relevant experience, training, qualifications, and internal equity. The compensation package may also include an annual bonus target and equity awards, subject to eligibility and other requirements.
Ardelyx also offers a robust benefits package to employees, including a 401(k) plan with generous employer match, 12 weeks of paid parental leave, up to 12 weeks of living organ and bone marrow leave, equity incentive plans, health plans (medical, prescription drug, dental, and vision),life insurance and disability, flexible time off, annual Winter Holiday shut down, and at least 11 paid holidays.
Ardelyx is an equal opportunity employer.
Applied = 0
MORE JOBS LIKE THIS

(web-675dddd98f-rz56g)