Ola
Security Engineer - Application Security
Full details on LinkedIn
The complete job description, requirements, and application details are available on the original posting.
About Ola
Ola, founded in December 2010 by IIT Bombay graduates Bhavish Aggarwal and Ankit Bhati, is India's largest mobility platform and a major player in the global ride-hailing market. Headquartered in Bengaluru, the company connects customers with over 1.5–2.5 million verified driver-partners through its mobile app, available on Android, iOS, and Windows. Initially launched as a trip-planning service, Ola evolved into a taxi aggregation service and introduced its app in 2012. The platform offers a variety of transport options, including city rides, outstation travel, car rentals, auto-rickshaws, and bike taxis. Ola emphasizes convenience, safety, and fair pricing, providing features like real-time tracking and multiple payment options. With operations in over 250 cities across India, Australia, New Zealand, and the UK, Ola has powered over a billion rides, showcasing its commitment to enhancing mobility for a vast audience.
Security at Ola
Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.
Security Philosophy
“Ola's AppSec philosophy includes a stated mission to encourage security researchers through its Bug Bounty Program. Their approach to developer enablement involves plugging security suites into CI systems and Git via hooks. For risk philosophy, they developed Jackhammer, a collaboration tool with an inbuilt vulnerability management capability. A stated goal is to effectively run Ola's Bug Bounty program. However, a public, verbatim mission statement from an AppSec leader is not publicly available.”
Security Team
Ola's AppSec team is expected to manage a team of highly skilled security engineers. Key public-facing leaders include Mohd. Shadab Siddiqui, identified as Head Of Security, Sachinraj Shetty, the Chief Information Security Officer at Ola, and N. Ananthakrishnan Potti, the Security Operations Center (SOC) Manager at OLA. The team size estimate is not publicly available. As of, there are at least 2 active AppSec-related job postings. Common skill patterns from job posts include "Vulnerability Assessment"and "Application Security."Definitive organizational charts, exact team size, and current reporting chains with dates are not publicly available.
Key Initiatives
Information regarding a Security Champions Program is not publicly available. For "Shift Left"practices, the security suite plugs into CI systems and Git via hooks. The vulnerability management process includes intake via "The Ola Bug Bounty Program is designed to encourage security researchers"and triage/remediation using an integrated vulnerability manager. The team aims to "Enforce Security in SDLC."Details on recent initiatives (last 6 months) are not publicly available, nor are detailed triage SLAs, MTTRs, ticketing ownership statements, or documented Security Champions program evidence.
Preparing for an AppSec interview?
Get the weekly briefing 2,000+ security pros trust.