
Drip Capital
https://www.dripcapital.comJobs at Drip Capital

The recruiter has not been active on this job recently. You may apply but please expect a delayed response.
About Drip Capital & Tech Team
The engineering team at Drip Capital is responsible for building and maintaining the online global trade financing platform that supports the interactions between buyers, sellers, financing partners, insurance agents, global retail partners, trade agents, shipping & transportation companies, supply chain and warehousing companies worldwide.
Our primary goal is to ensure that customers are provided time-critical capital and at the same time balance requirements related to risk, fraud management, and compliance. The services are accessed by customers worldwide and hence the engineering systems need to be policy-driven, easily reconfigurable, and able to handle multiple regional languages. We use machine learning for risk classifications/predictions, intelligent document parsing subsystems, robotic process automation, REST APIs to connect our microservices, and a cloud-based data lake and warehouse for data storage and analysis.
Our team comprises talent from top-tier institutions including Wharton, Stanford, and IITs with years of experience at companies like Google, Amazon, Standard Chartered, Blackrock, and Yahoo. We are backed by leading Silicon Valley investors - Sequoia, Wing, Accel, and Y Combinator. We are a global company headquartered in Silicon Valley along with offices in India and Mexico.
Your Role
As an AppSec Engineer in Drip Capital’s engineering team, you will have the opportunity to take ownership of :
- Contribute to and improve secure SDLC practice
- Design architecture, methods, and controls required to meet security, compliance, and audit requirements.
- Designing and implementing cloud and network security solutions.
- Do comprehensive threat modelling for our applications and infrastructure in an Agile flow
- Perform secure code review and security assessments of web, android and iOS applications, and cloud infrastructure (infrastructure as code).
- Proactively identify vulnerabilities across our platform and work with developers in fixing them.
- Automate and simplify security, as “Complexity is the enemy of Security”.
- Handle Vulnerability Management and Patch Management processes.
- Participate in the investigation related to Privacy/Security incidents and response activities.
- Work with DevOps to implement the security tools and automation of the security tasks.
- Mentor other engineers and evangelize security practices through cross-functional work with DevOps and engineering teams.
- Testing the deployed security solutions to make sure they function as planned.
Our Checklist
- A minimum of 4 years of experience as an AppSec Engineer
- Hands-on experience in secure design and architecture review of backend services, payments systems like payment gateways.
- Hands-on experience in secure code review and automation of common security workflows.
- Hands-on experience and a proven record of securing one or more of the cloud platforms: Azure, GCP, AWS and Hosted Cloud Solutions.
- Good understanding of OWASP and SANS testing methodologies.
- Good understanding of software security weaknesses and vulnerabilities.
- Good knowledge in securing architecture of web, mobile applications and cloud infrastructure.
- Ability to contribute as an individual and as part of a team
- Working knowledge of any scripting language; Python or Go preferred
- Experience in writing custom tools/scanners/extenders is a plus
- Red teaming experience is a plus
If you love to explore the security aspects of a distributed system that makes decisions related to global trade finance, let's talk!

Similar companies
About the company
Appknox, a leading mobile app security solution HQ in Singapore & Bangalore was founded by Harshit Agarwal and Subho Halder.
Since its inception, Appknox has become one of the go-to security solutions with the most powerful plug-and-play security platform, enabling security researchers, developers, and enterprises to build safe and secure mobile ecosystems using a system-plus human approach.
Appknox offers VA+PT solutions ( Vulnerability Assessment + Penetration Testing ) that provide end-to-end mobile application security and testing strategies to Fortune 500, SMB and Large Enterprises Globally helping businesses and mobile developers make their mobile apps more secure, thus not only enhancing protection for their customers but also for their own brand.
During the course of 9 years, Appknox has scaled up to work with some major brands in India, South-East Asia, Middle-East, Japan, and the US and has also successfully enabled some of the top government agencies with its On-Premise deployments & compliance testing. Appknox helps 500+ Enterprises which includes 20+ Fortune 1000 and ministries/regulators across 10+ countries and some of the top banks across 20+ countries.
A champion of Value SaaS, with its customer and security-first approach Appknox has won many awards and recognitions from G2, and Gartner and is one of the top mobile app security vendors in its 2021 Application security Hype Cycle report.
Our forward-leaning, pioneering spirit is backed by SeedPlus, JFDI Asia, Microsoft Ventures, and Cisco Launchpad and a legacy of expertise that began at the dawn of 2014.
Jobs
4
About the company
Baker Street Fintech (Product Name: Cambridge Wealth) is a Financial Products Company. We help build world-class Fintech Products for our Clients who want to manage their wealth on our platform. Founded by professionals with Experiences spanning from PwC UK to Banking and Technology firms, we are a financially stable, profitable company growing quickly!
Jobs
1
About the company
Jobs
11
About the company
Jobs
4
About the company
Jobs
49
About the company
StepSecurity is dedicated to enhancing CI/CD security by providing solutions to prevent pipeline attacks. Founded by seasoned security professionals with experience at Microsoft, Uber, and Plaid, StepSecurity addresses the security gaps highlighted by major breaches like SolarWinds and Codecov.
Founders:
- Varun Sharma: CEO & Co-Founder, formerly at Microsoft.
- Ashish Kurmi: CTO & Co-Founder, with experience at Plaid, Uber, and Microsoft.
Advisors:
- Sekhar Sarrukai, David Cross, Gagan Gulati, Jordan Harband, Ram Shankar Siva Kumar.
Investors:
StepSecurity is backed by leading VCs and notable angel investors, including Anmol Malhotra (Coinbase), Ash Devata (GreyNoise), and David Cross (Rain Capital).
Funding raised: $3M - Seed Funding
For more detailed information, visit - https://www.stepsecurity.io/team
Jobs
1
About the company
Jobs
3
About the company
Unravel Carbon is the climate platform helping companies with global supply chains make data-driven decisions.
Our platform provides enterprises with reliable insights on their emissions, enabling them to measure, reduce, and report with confidence.
Headquartered in Singapore, with offices in Australia and Vietnam, we serve customers across the globe.
We are trusted by companies across key sectors, including manufacturing, fashion, consumer goods, food and beverage, and financial services.
Our customers include leading enterprises such as Global Fashion Group, Big Dutchman, and AIA.
We are backed by some of the best investors, including Sequoia and Y Combinator.
Our calculation methodology is certified by TÜV Rheinland against the GHG Protocol corporate standard for Scope 1, 2, and 3 emissions, and the ISO 14064 series for GHG inventories.
We ensure data security with our ISO 27001 certification and SOC 2 Type 1 attestation.
At Unravel Carbon, we are driven by a powerful mission: to accelerate the world's progress toward a zero-carbon economy.
Our vision is to integrate climate-driven decisions into global business practices to leave a habitable world for future generations.
Jobs
0
About the company
Jobs
2