IT Security Specialist

Position Overview

Sunbridge Energy Services seeks a technically skilled, security‑focused IT Security Specialist to serve as the on‑site front line of IT operations, user support, and security compliance. You will partner closely with Operations, Safety, and Compliance teams to protect digital assets, enforce policies, and ensure reliable, safe, and secure IT services in a demanding energy and CNG logistics environment.

You will be balancing help desk and infrastructure support with proactive security oversight, policy enforcement, incident response, and continuous improvement — always with a mindset of safety, compliance, and operational resilience.

Key Responsibilities

- Serve as the primary point of contact for end users (desk side / field) for IT support—hardware, software, network, and access issues.

- Administer and maintain on‑premises and cloud infrastructure: servers, workstations, networking, firewalls, VPNs, switches, wireless, etc.

- Design, implement, monitor, and enforce security controls and policies: access management, patch management, endpoint protection, encryption, backup, disaster recovery.

- Manage identity & access / directory services (e.g. Active Directory, Azure AD, SSO, MFA).

- Monitor security systems (SIEM, intrusion detection/prevention, EDR/AV) and respond to threats, alerts, and incidents.

- Conduct regular vulnerability assessments, penetration testing (or coordinate with third-party), and remediation follow‑ups.

- Develop, update, and enforce IT / security policies, procedures, standards, and documentation, ensuring alignment with regulatory and industry best practices.

- Lead incident response: triage, investigation, root cause analysis, containment, mitigation, forensic logs, and lessons learned.

- Collaborate with compliance, safety, and operations teams to ensure that IT / security practices align with company safety culture and regulatory requirements.

- Provide training and awareness programs on cybersecurity, best practices, phishing, social engineering, and proper use of company systems.

- Plan and execute IT projects: upgrades, migrations, system hardenings, process automation, and new tool implementations.

- Maintain and audit IT asset inventory (hardware, software, licenses) and lifecycle management.

- Drive continuous improvement: monitor metrics (MTTR, uptime, incident rate), identify gaps, propose and implement enhancements.

- Assist with vendor selection, management, and oversight of IT service providers and third‑party security audits.

Qualifications & Requirements

Must Haves:

- Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or equivalent experience (or related technical degree).

- 5+ years of IT / security experience (system administration, security operations, infrastructure) in enterprise or industrial environments.

- Solid hands-on experience with Windows and Linux server environments, networking, firewalls, VPNs, routing/switching.

- Experience with identity & access systems (Active Directory, Azure AD, SSO, MFA).

- Experience with endpoint security / EDR / AV tools (e.g. Microsoft Defender, CrowdStrike, SentinelOne, or equivalent).

- Familiarity with SIEM / log management / incident detection & response tools.

- Strong understanding of industry security frameworks and best practices (NIST CSF, CIS Controls, ISO 27001, etc.).

- Experience with vulnerability scanning tools, penetration tests, patch management.

- Excellent troubleshooting, analytical, and problem-solving skills.

- Strong communication skills — able to talk to both technical and non-technical stakeholders.

- Self-starter, proactive, detail-oriented, able to manage multiple priorities under pressure.

- Must be comfortable working both in-office and in field settings (onsite visits to facilities).

- Must reside in the Midland / Odessa area (or acceptable commute) and be able to work from Tarzan, TX location as needed.

Preferred / Ideal Attributes:

- Professional security certifications (CISSP, CISM, CEH, CompTIA Security+, GIAC, etc.).

- Prior experience in energy, oil & gas, utilities, or industrial control systems (ICS / OT environments).

- Experience with cloud environments (Azure, AWS) and hybrid architectures.

- Familiarity with compliance or regulatory standards (e.g. NERC CIP, NIST, HIPAA, etc.).

- Experience with backup / disaster recovery, business continuity planning.

- Experience with scripting / automation (PowerShell, Python, Bash, etc.).

- Experience managing IT projects (hardware refreshes, migrations, rollouts).

- Experience coordinating third‑party security audits or assessments.

Compensation & Benefits

- Eligible for performance-based bonus or incentive (if applicable)

- Benefits Package: Health, dental, vision, life, and disability insurance (as per company plan)

- Paid time off, holidays, and other standard company leave policies

- 401(k) eligibility (as per company policy)

- Training, professional development, and certification reimbursement

- Opportunity to make a strong impact in a growth-focused energy/logistics company

Culture & Mission

At Sunbridge, we operate in a high-stakes environment where safety, consistency, and compliance matter deeply. We take pride in doing things the right way — not just the fast way. As our IT / Security lead, you will play a critical role in safeguarding our operations, earning trust across the business, and influencing the future of our digital infrastructure.

You’ll join a team that values accountability, integrity, continuous learning, and collaboration. You’ll be empowered to take ownership, propose solutions, and grow with the company.