IN THIS GUIDE:
The Threat Landscape: What Energy Security Leaders Are Actually Defending Against
Petrochemical facilities operate in one of the most heavily regulated and physically demanding industries in the country. The sites are sprawling. The assets are high-value. The workforce shifts constantly, especially during turnarounds and construction phases. Securing these facilities must account for complex threats, regulatory requirements and operational scale.
Security leaders responsible for these environments are managing a set of overlapping risks that shift by geography, operational phase and workforce composition. A refinery near the Texas-Mexico border faces cartel-related exposure. A Gulf Coast plant mid-turnaround deals with insider theft and substance activity among thousands of rotating subcontractors. A pipeline corridor in rural Texas attracts equipment theft and protest-driven disruption.
These threats are rarely spontaneous. According to research from UNU-WIDER, oil theft costs an estimated $133 billion globally per year. The operating model behind most of this loss is organized crime, not opportunism. Workers and outside actors scope facilities during legitimate access windows, identify coverage gaps and coordinate removal of materials when the perceived risk of getting caught drops low enough to act.
That pattern applies across the energy sector. Metal theft alone costs U.S. businesses an estimated $1 billion annually. Copper wiring, pipe sections, specialized equipment and fuel are all targets. The longer a site runs without consistent, visible security presence, the more risk normalization sets in. Workers, vendors and even site managers start to accept gaps as routine.
For a deeper look at the specific threat categories energy facilities face, including insider theft, cartel activity and geographic exposure, read The Real Threats to Petrochemical Sites: Organized Crime, Insider Theft and Border Risk.
The strategic question for security leaders is how to design a program that addresses these layered risks without creating the vendor fragmentation and accountability gaps that make the problem worse.
How Do You Secure a Refinery During a Turnaround?
Turnarounds are the highest-risk window in refinery operations. A facility that normally runs with a stable, badged workforce suddenly has 1,500 to 2,000 contractors on site, according to the U.S. Energy Information Administration. Total site staff can more than triple. The work runs 12-hour shifts, seven days a week, for 30 days or more.
That surge changes the behavioral dynamics of a site quickly. The workforce is transient, fatigued and largely anonymous in a crowd. Substance activity rises. SAMHSA’s National Survey on Drug Use and Health reports that mining and construction workers have the highest rates of heavy alcohol use among all full-time industries surveyed, at 17.5% and 16.5% respectively. An additional 11.6% of construction workers reported illicit drug use in the prior month.
Theft follows a similar pattern. Workers assess coverage during legitimate shifts. They identify high-value targets. They calculate when they can act undetected. When the cost of getting caught feels lower than the benefit of acting, they move.
Perceived deterrence changes that calculus. A visible, credentialed security presence at access points, combined with documented patrol activity and real-time monitoring, alters the behavioral response of everyone on site. At one refinery turnaround, positioning a law enforcement officer and a detection dog at the entrance caused workers carrying contraband to turn back before reaching the gate. No confrontation. No incident. The social signaling of authority at a controlled access point changed behavior before any threat materialized.
Turnaround security requires layered coverage: law enforcement officers managing traffic and perimeter access, unarmed security officers handling gate credentialing, mobile patrols covering the interior and remote video monitoring filling overnight gaps. No single service type handles it alone.
For the full breakdown of how turnaround risk develops and what a consolidated security program looks like in practice, read Why Turnarounds Are the Highest-Risk Moment for Refineries.
What Does Compliance Require at Pipeline Construction Sites and Lay-Down Yards?
Pipeline construction and lay-down yard operations carry a distinct set of security requirements shaped by regulatory oversight, physical exposure and long project timelines.
A lay-down yard is a staging area for pipe, equipment and materials before they move to the field. These yards are often remote, expansive and active around the clock. The combination of high-value assets and difficult-to-control perimeters makes them attractive targets for both opportunistic and organized theft.
The regulatory layer adds complexity. OSHA safety standards apply to everyone on an active construction site, including security officers. Hard hats, high-visibility vests, steel-toed boots and eye protection are required. A security officer who arrives without proper PPE cannot legally work the site.
For projects connected to ports, waterways or marine terminals, the Transportation Worker Identification Credential (TWIC) is mandatory for unescorted access to secure areas. Deploying a non-TWIC-certified officer in a TWIC-required environment is a regulatory violation that can result in fines, project delays and loss of site access.
The head of security carries the liability when a vendor falls short on these requirements. Vendors self-report compliance. Invoices reflect what was scheduled. Without verified data, nobody has the evidence to confirm what actually happened on site.
Risk normalization makes this worse over time. On a 14-month pipeline project, a vendor who occasionally misses a patrol checkpoint or sends an officer without the right PPE may not trigger an alarm until an audit, an incident or an insurance claim demands documentation that doesn’t exist.
Rigorous, visible access control at these sites does more than check a compliance box. It creates perceived deterrence. Anyone approaching knows that unauthorized entry will be detected. It also shapes the behavioral response of workers already on site, reinforcing that security is taken seriously and that cutting corners will be noticed.
For a detailed look at compliance requirements, accountability gaps and how technology closes them, read Lay-Down Yards and Pipeline Construction Security.
How Do Energy Companies Scale Security Across Remote and Multi-Site Operations?
Directors of security at energy companies manage a portfolio, not a single facility. A corporate security director might oversee Gulf Coast refineries, pipeline construction in rural Texas and substations scattered across multiple states. Each site has its own threat profile, workforce composition and regulatory requirements.
What works at a large, staffed facility near Houston falls apart at a remote site two hours from the nearest metro area. Coverage that’s routine in an urban market becomes a logistical challenge in a place like Pecos, Texas, where finding qualified security officers may require housing arrangements and premium pay to make the assignment viable.
Staffing remote sites is one of the most underestimated challenges in energy security. The local labor pool is small. Urban pay rates don’t translate. Officers face the same isolation as the workers they’re protecting. Without a data-driven approach to compensation and scheduling, turnover cycles through faster than officers can learn the site.
The other persistent challenge is vendor fragmentation. One company handles officer staffing. Another covers off-duty law enforcement. A third manages remote monitoring. That means multiple contracts, multiple points of contact and multiple sets of performance gaps to track. For a security director already stretched thin, the administrative burden alone creates risk.
Consistency across the full footprint requires a single program that can flex across geography and service type without losing accountability. That means coordinated deployments where unarmed security officers and off-duty law enforcement all report through one platform, one account manager and one billing structure.
For the full picture of how multi-site energy security programs work in practice, including labor intelligence and turnaround surge coverage, read Scaling Security Across Remote and Multi-Site Energy Operations.
Building a Program That Holds Up
Energy security is a leadership problem, not a staffing problem. The threats are organized. The regulations are strict. The geography is unforgiving. And the operational tempo during turnarounds and construction phases compresses every margin for error.
Security leaders who build programs around these realities share a few common priorities.
Accountability must be verified, not self-reported.
Geo-fencing, guard touring and GPS-verified officer tracking create a record of what was actually delivered. Data-validated billing ensures clients pay for coverage that happened, not coverage that was scheduled. That record holds up in audits, insurance claims and internal reporting to the C-suite.
Coverage must match the environment.
A turnaround at a Gulf Coast refinery needs layered service types working in coordination. A remote pipeline site needs officers sourced from labor markets that can sustain the assignment. A TWIC-required maritime facility needs credentialed officers on Day One. Standard programs applied uniformly across these environments miss the specific risks each one carries.
Vendor consolidation reduces exposure.
Every additional vendor adds a contract, a point of contact and an accountability gap. Consolidating guarding services, off-duty law enforcement and remote monitoring under a single program creates one line of responsibility for performance.
Presence shapes behavior.
Consistent, visible security at access points and along patrol routes is a tool for changing how people act on site. The perceived deterrence value of officers at gates, documented patrols and real-time monitoring suppresses risk normalization before problems escalate. When the perceived risk of getting caught stays high, planned theft, substance activity and unauthorized access become less likely.
Protos Security coordinates a network of vetted local security vendors alongside the largest off-duty law enforcement network in the country, with technology that verifies officers are on-post and active. For petrochemical and energy clients, that means a single point of contact managing layered coverage across complex, often remote sites.
Protos has provided more than 321,900 hours of security across the energy industry, serving 46 energy clients including all five of the top oil and gas companies in the U.S., with more than 950 work orders fulfilled across rapid-response and permanent assignments.
The company’s chemical and petrochemical security program is built to adapt to the specific layout, regulatory profile and threat environment of each facility. Off-duty law enforcement services provide trained personnel for high-exposure access points and traffic management. Remote guarding fills perimeter gaps with solar-powered cameras and live monitoring.
Security should protect revenue, people and operations without adding administrative burden. When the program fits the environment, behavioral response stabilizes. Workers focus on their jobs. Leaders maintain control. The organization’s assets and reputation stay protected.
Build Security Around How Energy Facilities Actually Operate
If your organization is evaluating its security approach across petrochemical or energy sites, start with a direct question: Does your current program account for the specific threats, compliance requirements and geographic challenges your facilities actually face?
If the answer is unclear, the strategy needs attention.
Build a security program grounded in accountability, local expertise and the flexibility to scale when conditions change.
