Cyber Security Engineer

Job Summary:

Are you ready to join a dynamic team at Western Midstream and make a significant impact on our digital transformation journey? Western Midstream is a master limited partnership dedicated to owning, developing, acquiring, and operating midstream assets. We are an industry leader in gathering, compressing, treating, processing, and transporting natural gas, condensate, NGLs, crude oil, and produced water. With operations spanning several states, we manage approximately 16,000 miles of pipelines and over 100 facilities.

We are seeking a passionate and experienced Cybersecurity Engineer with a diverse skillset to join our Digital Technology team in The Woodlands, TX. In this role, you will be at the heart of managing digital identity workflows and technology across our organization, including both on-premises IT & OT systems and cloud workloads. If you thrive in a fast-paced environment and have a passion for cybersecurity, data integration, and cutting-edge technology, this is the perfect opportunity!
 

Qualifications:

• Hands-on experience installing, configuring, and troubleshooting identity management systems such as Sailpoint, Saviynt, or Microsoft Entra Identity Governance
• Knowledge of Enterprise IT systems – Windows Servers, SAP, Domains, Office 365, Microsoft Azure, data integration, identity/access controls
• Scripting/development experience with Microsoft tools and APIs
• Expertise in both modern and legacy identity protocols such as SAML 2.0, OIDC, OAuth 2.0, WS-Fed, SCIM, FIDO2, Kerberos, NTLM, etc.
• Experience with Microsoft Active Directory and Entra ID
• Familiarity with HRIS systems like SAP SuccessFactors and SAP FieldGlass
• An understanding of identity considerations within OT environments
• Proficiency in managing server infrastructure and privileged access technology
• 5-10+ years of experience in Oil & Gas, Energy, or other regulated industries
• Exceptional people skills and a customer service mindset
• Strong written and verbal communication abilities
• The ability to juggle multiple tasks and adapt to changing priorities
• Understanding of regulatory controls (TSA SD, SOX, etc.) and their impact on identity management
• A valid driver’s license and willingness to travel occasionally to other WES locations

Responsibilities:

• Lead IAM activities within a hybrid cloud infrastructure and IT/OT environments, migrating legacy on-prem tooling to modern cloud-based platforms

• Develop and maintain user lifecycle processes and documentation
• Enhance the security posture of identity systems
• Drive innovation by adopting new technologies and protocols
• Provide clear and consistent direction to operational teams
• Support complex data integration with HR information systems like SAP SuccessFactors and SAP FieldGlass
• Foster positive working relationships with field employees and site operations
• Collaborate with IT groups to stay current on changes, initiatives, and experiences across the enterprise

Education:

• Bachelor’s degree preferred in one of the following: Computer Science, Information Management or Information Technology
• Professional or industry certifications are desirable: CISSP, CIAM, CISM, CCSP, etc.

​​​​

Travel Requirements:

• 0-10%

Work Schedule:

• Enjoy a flexible work schedule: Monday through Thursday, 9 hours, and Friday, 4 hours. On-call and some off-hours support will be required as needed, typically during system upgrades or critical incidents.