Rappi

Fastest growing e-commerce delivery network in South/Latin America

Rappi was founded in 2015 by three Colombian entrepreneurs. Rappi's customers can "order almost anything they want with a super app concept that will deliver it to them in 30 minutes in exchange for a buck." The company generates revenue by taking a % from each retail transaction.

Rappi entered Y-Combinator's Winter 2016 batch, generating additional investment & raised another $200 million in funding in 2018. SoftBank became a major stakeholder in Rappi in April, 2019 with a $1 billion dollar investment.

Today, if you want to get anything from lunch to a new phone or even cash, it probably will be Rappi who will do it for you. Rappi's defining characteristics is the broad range of products and services available for delivery. The mobile app lets users order groceries, food or drugstore medications, but also send money (cash) to someone, or have a courier withdraw money from their bank account from an ATM and get it delivered to them, also, the couriers can offer transport personal belongings (such as house keys, wallets, purses and more). Couriers even walk customers' dogs.

  • Industry:Ecommerce
  • Product purchased:WAF
  • Migrated from Imperva SecureSphere WAF
  • AWS + Auto-Scalingweb applications and multiple APIs
  • WAF should havefitInfrastructure as a Code approach (IaaC)
  • Multiple APIs with frequent releases
  • Heavy loadwith spikes that require autoscaling
  • Integrations:with Slack and DevSec tools

We have a lot of trouble moving Imperva SecureSphere to the cloud. It just can’t scale to the extent that Rappi has. And it’s not ready for our infrastructure as a code approach

Gustavo Ogawa
Head of Security at Rappi

Company profile

10
countries of operation across LATAM
220
220M USD estimated revenue
1500
employees
200K
individual couriers
COL
HQ in Colombia
250K
business represented
YC
2016 YCombinator alumni

Wallarm WAF advantages for Rappi

  • Readiness for the cloud
    Autoscaling: 1-2 minutes
    Centralized way
  • Infrastructure as a Code
    Bitbucket + sync up configuration
    Push changes in live infrastructure
  • Modern UI, navigation & reports
  • API protection approach
  • Integration with DevOps (SIEM) tools

The company's hypergrowth resulted in a switch from legacy appliance-based WAF, which is a no-brainer. Auto-scaling, management with API, low false positives, and robust protection for mobile API backends were the main requirements.

Wallarm
Адрес:94107San FranciscoBrannan St, 415
(415) 940-7077,request@wallarm.com