SeniorSecurityEngineer

Application deadline: Jun 15, 2026 This position is part of the AWS Specialist and Partner Organization (ASP). Specialists own the end-to-end go-to-market strategy for their respective technology domains, providing the business and technical expertise to help our customers succeed. Partner teams own the strategy, recruiting, development, and growth of our key technology and consulting partners. Together they provide our customers with the expertise and scale needed to build innovative solutions for their most complex challenges. AWS Marketplace within ASP is a curated digital catalog where customers find, buy, deploy, and manage third-party software, data, and services to build solutions and run their businesses. Every listing represents a trust relationship between AWS, an independent software vendor, and the customer — and security is what makes that trust possible. We're looking for a Senior Security Engineer to own security for the third-party (3P) catalog. You'll set the bar for how 3P software is vetted, monitored, and protected across its lifecycle on Marketplace, and dive deep into emerging threat vectors to protect our customers. You'll also partner closely with our Application Security and Engineering teams to ensure the features we build on AWS Marketplace meet AWS's high security bar and continue to protect our customers. This role has high visibility, broad scope, and direct impact on millions of AWS customers. Key job responsibilities - Own the security strategy for the AWS Marketplace 3P catalog, including ingestion, scanning, vulnerability management, and ongoing posture monitoring of seller-provided artifacts (AMIs, containers, SaaS, data products, ML models). - Identify systemic risks across the catalog and lead remediation campaigns that span multiple teams and orgs. - Investigate and respond to security findings, vulnerabilities, and incidents involving Marketplace services and 3P content. - Partner with AppSec to drive threat modeling, secure de