Would you like to be part of a fast-moving SaaS team?

Would you like the flexibility to work at our HQ in Cottage Grove, MN or Remote?

If the answers are YES!, this job may be for you.


This is the job for you if you are:

• Self-starter with tremendous initiative and work ethic

• Excellent communicator and collaborator with other functional teams

• Desire to be a high-impact player at a product-driven company

• Ability to embrace change and someone who is a fast learner

• Creative and critical thinking abilities

• Ability to be detail oriented within a high-paced environment

• Passionate about technology

About the TravelNet Solutions Team:

Our mission is transforming how hospitality works. Every day we strive to solve the most difficult technology and workflow challenges, and we collaborate to provide solutions to help our customers in the hospitality industry become more efficient and profitable. Our goal is to become our customer's business concierge. It all starts with one question; how can we help you?

Our three Core Values reflect the behaviors that shape the tone of how we work with each other, our partners, and our customers.

• Serve Others: We nurture growth to help others succeed.

• Grit: We take ownership and never give up on what matters most.

• Create the Future: We innovate to disrupt the status quo.

Why join our winning team?

• We are a growing, fast-moving dynamic team that collaborates with each other in order to achieve continued growth and success.

• We are a portfolio company able to work with our customers to be that one vendor solution for SaaS technology, marketing, and distribution.

• We are reshaping the industry and the way it thinks about technology and service.

• Full medical dental and vision package

• Unlimited Paid Time Off

• Health Savings Account with up to a $2,000 annual match

• Flexible work environment

• Free life insurance and Long Term Disability

• Free Lunch on Mondays either in Cottage Grove or through Door Dash

• Complimentary Door Dash Pass account

• Availability of Flex Spending Accounts

• Retirement with employer match

• Free snacks and soda in the office

• Competitive wages

• Work with an amazing team

Do these responsibilities describe what you like doing?

Be the central point of contact and subject matter expert for the compliance programs at TNS.

Work with internal staff to provide guidance around the compliance controls and policies.

Work with internal stakeholders in each department to develop new controls or update existing controls.

Manage the PCI, SOC, GDPR, and CCPA compliance programs.

Perform the tactical end-to-end execution of technical risk management.

Review exception reports to identify, propose, and implement corrective action.

Review all requests requiring compliance approval.

Provide input for process and policy improvements.

Acquires a solid understanding of the various functions/organizations within the broader enterprise.

Reviews overarching project timeline and develops a schedule of tasks to achieve project milestones.

Applies a solid understanding in one or more of these areas (IT General Controls, Cybersecurity, Cloud operations, Data governance, Data privacy compliance, or Big Data) to execute technical audits or other risk and compliance-related initiatives in order to identify, assess, and explain risks, report findings, and develop and communicate recommendations.

Prepares summary reports for management on the results of financial, operational and technical audits.


What are some must-haves?

Solid knowledge of risks and controls, as well as risk management principles.

5-8 years of relevant experience.

Bachelor's degree in a related field; or equivalent related professional experience.

You should have experience in CIA, CPA, CISA, OSCP, CCSK, CISM, CISSP, CDPSE, IAPP, CRISC or similar.

IT General Controls (Logical Access, Change Management, IT Operations, Program Development/SDLC).

Cybersecurity concepts, risks and practices (e.g., identity access management, vulnerability management, security governance, software development, auditing and logging, micro segmentation, secure access services, PKI) and security frameworks such as NIST, ISO 27000.

Cloud operations (e.g., Cloud architecture, infrastructure, networks, secure compute workloads, resiliency, data encryption, account and key management, identity access management, software development in the cloud).

Data governance (e.g., frameworks, policies, third-party data risks, and data security and protection).

Data privacy compliance including GDPR, CCPA, HIPAA, and other regulations.


We are an Equal Opportunity Employer

We celebrate the diversity of thought, culture, and background and we are committed to creating an inclusive environment.