Snapp is Iran's largest super app, processing over four million daily rides across 287 cities and serving more than 60 million users. The platform integrates 20 distinct services - from ride-hailing and food delivery to grocery shopping and travel booking - into a single ecosystem built for urban mobility at national scale. That's a massive attack surface: a marketplace connecting drivers, couriers, merchants, and tens of millions of end users, each transaction carrying payment data, real-time geolocation, and personal identifiers.
Operating exclusively within Iran, Snapp's security challenges are shaped by its threat environment. The platform must defend a distributed logistics network, protect high-volume payment flows, and secure APIs spanning two decades of integrated services - all while maintaining uptime across a super app where downtime in one service cascades across the rest. The company has built what it describes as scalable infrastructure responsive to local needs, which at this scale means serious engineering across identity, access control, and fraud detection.
For security engineers, the draw is specificity: this isn't abstract cloud work. It's securing a real-time marketplace where ride dispatch, delivery routing, and checkout happen in parallel, with infrastructure that has to perform under the operational constraints of a single-country mega-platform. Snapp was founded in 2014 and positions itself as a driver of Iran's digital economy, investing in innovation across its expanding service portfolio.
