Uber is seeking a Senior Security Technologist, Incident Command, to lead responses to the company’s most significant security incidents. The role demands a leader capable of managing events from initial detection through resolution and long-term preventative measures.
A Multifaceted Role
This position is described as operating at the intersection of a Fire Captain, an NTSB Investigator, and a hands-on technical expert. The individual will be responsible for setting strategy, allocating resources, and making critical decisions under pressure during active incidents. Following an incident, the technologist will lead in-depth investigations to determine the root cause and implement lasting solutions.
The position is not simply about coordination; it requires technical credibility and the ability to take ownership even when established procedures are lacking. The Senior Security Technologist will also be tasked with improving Uber’s incident response capabilities, including developing simulations and leveraging new technologies like AI.
Required Skills and Experience
Candidates must have at least five years of experience in security operations, detection, or incident response, with a proven track record of managing complex, high-impact incidents. A deep understanding of modern attacker tactics and strong technical investigation skills are essential. Experience with AI-driven tooling is also considered a basic qualification.
Preferred qualifications include experience leading and mentoring other responders, a proactive approach to continuous improvement, and experience in cloud-scale environments. The ability to script or code is also considered a plus.
Compensation and Location
The base salary range for this position is $180,000 to $200,000 per year, depending on location. Open positions are located in San Francisco, Seattle, and Sunnyvale, California. Eligible employees will also participate in Uber’s bonus program and may receive equity awards and benefits, details of which can be found here.
What Could Happen Next
If Uber successfully fills this role, we could see a more streamlined and effective incident response process. The emphasis on simulations and AI integration may lead to faster detection and containment of security threats. It is also likely that Uber will continue to invest in its security infrastructure and personnel to protect its platform and user data. A successful program could also influence security best practices across the transportation network company industry.
Frequently Asked Questions
What is the primary responsibility of this role?
The primary responsibility is to lead Uber’s most critical and complex security incidents from start to finish, including escalation, containment, recovery, and systemic remediation.
What technical skills are required?
Candidates must have strong technical investigation skills, be comfortable working with logs and system data, and possess a deep familiarity with modern attacker tactics.
What is Uber’s expectation regarding in-office work?
Unless formally approved for fully remote work, Uber expects employees to spend at least half of their work time in their assigned office. Some roles may require 100% in-office presence.
As security threats continue to evolve, how important do you think proactive threat modeling and AI integration will be for companies like Uber?
