Application deadline: Jun 15, 2026
This position is part of the AWS Specialist and Partner Organization (ASP). Specialists own the end-to-end go-to-market strategy for their respective technology domains, providing the business and technical expertise to help our customers succeed. Partner teams own the strategy, recruiting, development, and growth of our key technology and consulting partners. Together they provide our customers with the expertise and scale needed to build innovative solutions for their most complex challenges.
AWS Marketplace within ASP is a curated digital catalog where customers find, buy, deploy, and manage third-party software, data, and services to build solutions and run their businesses. Every listing represents a trust relationship between AWS, an independent software vendor, and the customer — and security is what makes that trust possible.
We're looking for a Senior Security Engineer to own security for the third-party (3P) catalog. You'll set the bar for how 3P software is vetted, monitored, and protected across its lifecycle on Marketplace, and dive deep into emerging threat vectors to protect our customers. You'll also partner closely with our Application Security and Engineering teams to ensure the features we build on AWS Marketplace meet AWS's high security bar and continue to protect our customers. This role has high visibility, broad scope, and direct impact on millions of AWS customers.
Key job responsibilities
- Own the security strategy for the AWS Marketplace 3P catalog, including ingestion, scanning, vulnerability management, and ongoing posture monitoring of seller-provided artifacts (AMIs, containers, SaaS, data products, ML models).
- Identify systemic risks across the catalog and lead remediation campaigns that span multiple teams and orgs.
- Investigate and respond to security findings, vulnerabilities, and incidents involving Marketplace services and 3P content.
- Partner with AppSec to drive threat modeling, secure design reviews, and code reviews for Marketplace services.
- Define and raise security standards for sellers and Marketplace internal teams. Influence policy, tooling, and automation so the security bar rises without slowing the business down.
- Mentor engineers across the org on secure development practices, cloud security, and threat modeling.
- Represent Marketplace security in cross-AWS forums, working with AWS Security, service teams, and partner orgs.
About the team
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.
Why AWS?
Amazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating — that’s why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Mentorship & Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.
