About BridgeBio Pharma, Inc. 

BridgeBio is a biopharmaceutical company dedicated to discovering, developing, and delivering transformative medicines for patients living with genetic diseases and genetically defined cancers. Since our founding in 2015, we have built a diverse portfolio of more than 20 drug development programs, ranging from early discovery to late-stage clinical trials, across multiple therapeutic areas including precision oncology, cardiology, endocrinology, neurology, and renal disease. We have already achieved regulatory approval for three therapies and continue to advance promising science from academia into meaningful treatments for patients worldwide. 

Who We Are 

BridgeBio is a global biotechnology company with our Global Headquarters located in San Francisco, USA, and our International HQ located in Zug, Switzerland. Since establishing our European presence in 2021, we’ve been building empowered, high-performing teams across countries — with experienced colleagues who move quickly, take ownership, and are fueling the company’s international growth. 

At BridgeBio, you’ll find an energetic and collaborative culture where pragmatism meets bold decision-making. We embrace uncertainty with confidence, guided by our commitment to making a meaningful impact for patients. Our people are trusted and empowered, united by urgency, purpose, and the drive to advance science for patients around the world. 

To learn more about our story and company culture, visit us at https://bridgebio.com

What You'll Do

The legal work behind bringing medicines to patients is rarely one-dimensional. It spans commercial contracting, launch readiness, promotional review, digital channels, compliance, privacy, and the judgment to know when to move quickly and when to pause.

As Legal Counsel, International, reporting to the VP, Associate General Counsel, Legal International, you will serve as a hands-on legal business partner supporting pre-launch activities, commercial launch, and ongoing operations across Europe. You will advise a broad range of stakeholders, delivering practical, business-oriented guidance, managing risk thoughtfully, and helping the organization move with clarity, consistency, and speed.

This role is suited to a pragmatic lawyer who is excited by breadth, ownership, and the opportunity to help build scalable legal frameworks in a fast-moving biotech environment.

Responsibilities

Commercial Contracting & Day-to-Day Legal Support

• Draft, review, negotiate, and advise on a broad range of agreements, including supplier and vendor agreements, master services agreements, service agreements, NDAs/CDAs, technology and digital services contracts, and other ancillary commercial documents
• Provide day-to-day legal support across Commercial, Medical Affairs, Regulatory, Market Access, Finance and Supply Chain, on contractual and commercial, ensuring alignment with applicable laws, internal policies, and business objectives
• Advice on contract structuring, liability and risk allocation, and contract interpretation, and helping manage the full contracting lifecycle in partnership with business stakeholders

Commercial Launch, Marketing & Promotional Review

• Support launch readiness and ongoing commercial operations across relevant European markets by advising on pre-marketing activities, field force materials, promotional reviews, patient support initiatives and operational readiness questions
• Support EU MLR (Medical, Legal, Regulatory) review for Legal International, ensuring promotional and medical materials meet EU and national requirements, giving clear, enabling advice on claims, fair balance, substantiation, and appropriate risk mitigation
• Support the development and maintenance of EU-specific promotional review guidelines and support training of cross-functional stakeholders on compliant pre-marketing and promotion practices

Operational Excellence & Cross-Functional Partnership

• Partner closely with the global Compliance function to identify, assess, and manage regional compliance risks, including competition law, anti-bribery and anti-corruption, sanctions, and commercial governance, while supporting guidance and oversight on applicable industry codes and ethical standards across Europe
• Champion continuous improvement in legal operations, including the implementation and responsible use of modern legal tools, templates, playbooks, and AI-enabled solutions
• Contribute to legal training, knowledge sharing, and a culture of legal excellence across the wider Legal Department
• Handle additional legal projects and operational matters assigned

Where You'll Work

• This is an office role based and requires in-office collaboration 2-3x per week in our Zug Office
• Domestic and international travel is expected when required

Who You Are

• Swiss or EU qualified lawyer with 4–5 years of post-qualification experience in pharmaceutical or biotech, with meaningful exposure to commercial operations, product launch, and cross-functional legal support — at a law firm, a company, or both
• You have exposure to additional jurisdictions. MLR (Medical, Legal, Regulatory) review experience required
• You communicate with precision and confidence across all levels — whether advising a field team, sitting in an MLR, presenting to affiliate leadership, or escalating a complex matter to senior legal counsel. People always know where you stand and why
• You build real relationships with the teams you support — and those relationships are what make you effective
• You can work in a fast-paced dynamic work environment with efficient prioritization, responsiveness and focus (especially during periods of sustained pressure and often under tight deadlines). You are flexible and have a high tolerance for ambiguity
• You are fluent in English (working proficiency required); proficiency in an additional European language is preferred

Rewarding Those Who Make the Mission Possible

We have high expectations for our team members. We make sure those working hard for patients are rewarded and cared for in return.  

• Market leading compensation 
• Hybrid work model - we value your flexibility in how you work, but encourage time in the office to strengthen our culture, collaboration, and sense of community
• We provide career development through regular feedback, continuous education and professional development programs
• We celebrate strong performance with financial rewards, peer-to-peer recognition, and growth opportunities
  
  

The Opportunity:

RevMed is seeking an experienced privacy executive to support RevMed’s business.  The Executive Director, Global Privacy will lead the strategy, development, and execution of the company’s Privacy Program, ensuring all activities are conducted ethically and in accordance with applicable laws, regulations, and industry codes. This attorney will be instrumental in shaping and sustaining a culture of integrity as the company advances and commercializes its oncology pipeline.

The Executive Director, Global Privacy is a senior leader responsible for driving the organization’s global privacy strategy, governance, and compliance framework. This role ensures that all business activities involving personal data are conducted ethically and in compliance with applicable international laws, regulations, and industry standards.

Reporting to the Vice President, Compliance, this role serves as a key advisor to the General Counsel (GC) and other senior executives on global privacy, data protection, and responsible data use, while fostering a culture of privacy-by-design across all business functions worldwide.

The position can be based in the US or Switzerland.

Key responsibilities include:

Strategic Leadership & Governance

• Lead the development and execution of a comprehensive global privacy strategy aligned with business objectives and the broader compliance program.

• Serve as a senior advisor to the General Counsel (GC) and other senior executives on global privacy risks, regulatory developments, and data governance.

• Establish and maintain enterprise-wide global privacy governance frameworks, policies, and standards.

• Design the Global Privacy team structure and operating model leveraging both regional and global resources, support design and implementation of technology-enabled systems and processes for regional adaptation where appropriate and recruit a high-performing team.

• Provide regular updates to the General Counsel and other senior executives on global privacy program performance, risks, and mitigation strategies.

Global Privacy Program Management

• Design, implement, and continuously enhance a global privacy program aligned with international laws and best practices.

• Ensure alignment of the privacy program with the company’s overall compliance framework and enterprise risk management approach.

• Ensure compliance with global privacy and data protection regulations, including GDPR, UK GDPR, HIPAA, CCPA/CPRA, and other applicable international and local laws.

• Oversee Data Privacy Impact Assessments (DPIAs), cross-border data transfer mechanisms, and global risk assessments.

• Monitor and report on privacy metrics, trends, and program effectiveness across regions.

Clinical and Commercialization Data-Driven Activities

• Serve as the primary privacy lead for all clinical trial-related activities, including data collected from clinical sites, investigators, and patients.

• Partner with R&D and clinical teams to ensure compliant handling of sensitive clinical and health data.

• Collaborate with Commercialization teams to advise on processes, controls, and risks related to data-driven activities, including analytics, digital initiatives, and commercialization strategies.

Operational Integration

• Embed privacy-by-design and privacy-by-default principles into systems, products, and business processes globally.

• Partner cross-functionally with Compliance, Legal, IT Security, R&D, HR, and Commercial teams across regions.

• Support global initiatives involving sensitive data, including clinical, digital, and analytics-driven programs.

• Work closely with HR and Information Security (IS) to address employee and internal data privacy matters, including monitoring, investigations, and governance of workforce data.

Risk Management, Investigations & Incident Response

• Lead or oversee global privacy incident response, including breach assessment, notification, and remediation across jurisdictions.

• Lead and/or oversee privacy-related investigations, including internal reviews and regulatory-driven inquiries.

• Collaborate with Compliance and Information Security to ensure consistent global controls and preparedness.

• Identify, assess, and mitigate global privacy risks in alignment with enterprise risk management priorities.

Regulatory & External Engagement, Third-party & Contractual Oversight

• Serve as a key point of contact for global data protection authorities and regulators, in coordination with Compliance and Legal.

• Support global regulatory inquiries, audits, and inspections related to privacy.

• Oversee global privacy due diligence and risk management for third-party vendors and partners.

• Own and maintain privacy-related standards across the organization, including templates and playbooks.

• Review, negotiate, or oversee negotiation of privacy and data protection terms in contracts, including data processing agreements (DPAs), standard contractual clauses (SCCs), and related provisions.

• Ensure consistent and appropriate privacy language across all contractual forms and third-party engagements.

Training, Culture & Awareness

• Develop and deliver global privacy training and awareness programs aligned with compliance initiatives.

• Promote a culture of privacy, ethics, and accountability across all geographies.

• Partner with Compliance to integrate privacy into Code of Conduct, global policies, and enterprise training programs.

Required Skills, Experience and Education:

• Juris Doctor (JD); active bar membership a plus.

• Privacy certifications (e.g., CIPP/E, CIPP/US, CIPM, CIPT).

• 15+ years of experience in privacy, data protection, legal, compliance, or risk management

• Significant experience managing or leading global privacy programs in multi-jurisdictional environments.

• Experience in regulated industries (e.g., biotech, pharmaceutical, healthcare, or technology) preferred.

• Deep knowledge of global privacy regulations and frameworks (e.g., GDPR, UK GDPR, HIPAA, CCPA/CPRA, and other international laws).

• Experience with cross-border data transfers, data localization requirements, and global data governance.

• Strong understanding of privacy risk assessments, data lifecycle management, and compliance program integration.

• Familiarity with emerging areas such as AI/ML governance, digital health, and global data strategy.

• Ability to influence senior leadership and drive global, cross-functional initiatives.

• Strong strategic thinking with practical, business-oriented judgment.

• Excellent communication and stakeholder management skills across diverse geographies.

• Proven ability to lead teams and operate effectively in a matrixed, global organization.

• Strong organizational and project management capabilities.

#LI-Hybrid  #LI-YG1

The Opportunity:

RevMed is seeking an experienced privacy executive to support RevMed’s business.  The Executive Director, Global Privacy will lead the strategy, development, and execution of the company’s Privacy Program, ensuring all activities are conducted ethically and in accordance with applicable laws, regulations, and industry codes. This attorney will be instrumental in shaping and sustaining a culture of integrity as the company advances and commercializes its oncology pipeline.

The Executive Director, Global Privacy is a senior leader responsible for driving the organization’s global privacy strategy, governance, and compliance framework. This role ensures that all business activities involving personal data are conducted ethically and in compliance with applicable international laws, regulations, and industry standards.

Reporting to the Vice President, Compliance, this role serves as a key advisor to the General Counsel (GC) and other senior executives on global privacy, data protection, and responsible data use, while fostering a culture of privacy-by-design across all business functions worldwide.

The position can be based in the US or Switzerland.

Key responsibilities include:

Strategic Leadership & Governance

• Lead the development and execution of a comprehensive global privacy strategy aligned with business objectives and the broader compliance program.

• Serve as a senior advisor to the General Counsel (GC) and other senior executives on global privacy risks, regulatory developments, and data governance.

• Establish and maintain enterprise-wide global privacy governance frameworks, policies, and standards.

• Design the Global Privacy team structure and operating model leveraging both regional and global resources, support design and implementation of technology-enabled systems and processes for regional adaptation where appropriate and recruit a high-performing team.

• Provide regular updates to the General Counsel and other senior executives on global privacy program performance, risks, and mitigation strategies.

Global Privacy Program Management

• Design, implement, and continuously enhance a global privacy program aligned with international laws and best practices.

• Ensure alignment of the privacy program with the company’s overall compliance framework and enterprise risk management approach.

• Ensure compliance with global privacy and data protection regulations, including GDPR, UK GDPR, HIPAA, CCPA/CPRA, and other applicable international and local laws.

• Oversee Data Privacy Impact Assessments (DPIAs), cross-border data transfer mechanisms, and global risk assessments.

• Monitor and report on privacy metrics, trends, and program effectiveness across regions.

Clinical and Commercialization Data-Driven Activities

• Serve as the primary privacy lead for all clinical trial-related activities, including data collected from clinical sites, investigators, and patients.

• Partner with R&D and clinical teams to ensure compliant handling of sensitive clinical and health data.

• Collaborate with Commercialization teams to advise on processes, controls, and risks related to data-driven activities, including analytics, digital initiatives, and commercialization strategies.

Operational Integration

• Embed privacy-by-design and privacy-by-default principles into systems, products, and business processes globally.

• Partner cross-functionally with Compliance, Legal, IT Security, R&D, HR, and Commercial teams across regions.

• Support global initiatives involving sensitive data, including clinical, digital, and analytics-driven programs.

• Work closely with HR and Information Security (IS) to address employee and internal data privacy matters, including monitoring, investigations, and governance of workforce data.

Risk Management, Investigations & Incident Response

• Lead or oversee global privacy incident response, including breach assessment, notification, and remediation across jurisdictions.

• Lead and/or oversee privacy-related investigations, including internal reviews and regulatory-driven inquiries.

• Collaborate with Compliance and Information Security to ensure consistent global controls and preparedness.

• Identify, assess, and mitigate global privacy risks in alignment with enterprise risk management priorities.

Regulatory & External Engagement, Third-party & Contractual Oversight

• Serve as a key point of contact for global data protection authorities and regulators, in coordination with Compliance and Legal.

• Support global regulatory inquiries, audits, and inspections related to privacy.

• Oversee global privacy due diligence and risk management for third-party vendors and partners.

• Own and maintain privacy-related standards across the organization, including templates and playbooks.

• Review, negotiate, or oversee negotiation of privacy and data protection terms in contracts, including data processing agreements (DPAs), standard contractual clauses (SCCs), and related provisions.

• Ensure consistent and appropriate privacy language across all contractual forms and third-party engagements.

Training, Culture & Awareness

• Develop and deliver global privacy training and awareness programs aligned with compliance initiatives.

• Promote a culture of privacy, ethics, and accountability across all geographies.

• Partner with Compliance to integrate privacy into Code of Conduct, global policies, and enterprise training programs.

Required Skills, Experience and Education:

• Juris Doctor (JD); active bar membership a plus.

• Privacy certifications (e.g., CIPP/E, CIPP/US, CIPM, CIPT).

• 15+ years of experience in privacy, data protection, legal, compliance, or risk management

• Significant experience managing or leading global privacy programs in multi-jurisdictional environments.

• Experience in regulated industries (e.g., biotech, pharmaceutical, healthcare, or technology) preferred.

• Deep knowledge of global privacy regulations and frameworks (e.g., GDPR, UK GDPR, HIPAA, CCPA/CPRA, and other international laws).

• Experience with cross-border data transfers, data localization requirements, and global data governance.

• Strong understanding of privacy risk assessments, data lifecycle management, and compliance program integration.

• Familiarity with emerging areas such as AI/ML governance, digital health, and global data strategy.

• Ability to influence senior leadership and drive global, cross-functional initiatives.

• Strong strategic thinking with practical, business-oriented judgment.

• Excellent communication and stakeholder management skills across diverse geographies.

• Proven ability to lead teams and operate effectively in a matrixed, global organization.

• Strong organizational and project management capabilities.

Revolution Medicines takes protection and security of personal data very seriously and respects your right to privacy while using our website and when contacting us by email or phone. We will only collect, process and use any personal data that you provide to us in accordance with our CCPA Notice and Privacy Policy. For additional information, please contact privacy@revmed.com. 

#LI-Hybrid #LI-LO1