Go to Top

Uber to quell data security worries by boosting it’s staff

Uber Technologies Inc. signage stands inside the company's office prior to Senator Marco Rubio, a Republican from Florida, speaking in Washington, D.C., U.S., on Monday, March 24, 2014. Rubio addressed the need to adapt antiquated government regulations to increase economic opportunities for the 21st century and outdated regulations limit consumer choice. Photographer: Andrew Harrer/Bloomberg via Getty Images

As one of the fastest growing private, venture backed company in the world, security was always going to be hot topic.

Uber is a ride-share based transport company where users "hail" a ride using the app on their smart phone. This then prompts a near-by driver to take the fare. The purpose of this and other similar applications, is to show transparency to both driver and passenger. The driver's information is produced to the passenger and the driver knows who they are picking up.  Instantly there is a need for good security practice with the transfer of PII (Personal Identifiable Information).

Earlier this year, Uber reported a data breach in it's system where up to 50,000 driver's PII was stolen. This led to a report from the Guardian stating that login details of users and drivers could be purchased online for as little as $1.

Since this and other issues held with the company over how it handled information, Uber drafted former Federal Cyber crime prosecutor Joe Sullivan as their CISO in April.

Sullivan is reported to have stated that Uber have taken significant steps in improving it's Information Security management system. The $50bn valued company will increase it's security team above 100 people. An increase of about 4x it's current capacity.

Uber's CISO has also been reported to say - "Every company is a data company now, no one can be unsophisticated. The challenge is half the company needs access to customer data some of the time — it is not just customer support, it is marketing, engineers as they iterate, communications when they need to figure out what happened in an incident".



Like most websites Certification Europe uses cookies. In order to deliver a personalised, responsive service and to improve the site, we remember and store information about how you use it. This is done using simple text files called cookies which sit on your computer. These cookies are completely safe and secure and will never contain any sensitive information.

They are used only by Certification Europe or the trusted partners we work with. If you continue without changing your settings, we'll assume that you are happy to receive all cookies on this website.

» How to manage your cookies