Simplify third-party software risk assessments
AWS Marketplace Vendor Insights helps simplify third-party software risk assessments by compiling security and compliance information in a unified dashboard. It helps streamline the procurement process by granting you access to evidence made available by sellers related to data privacy and residency, application security, and access control. AWS Config and AWS Audit Manager provide automated evidence refreshing, helping you perform continual compliance monitoring. Using AWS Artifact third-party reports, gain on-demand access to vendors’ compliance reports.
Automate Vendor Security
Accelerate assessments and maintain continuous compliance monitoring of your third-party software providers
Enterprise customers
Accelerated Risk Assessment
Your security engineers can now complete third-party software risk assessments in days instead of months. Vendor Insights reduces the need for an extensive IT security assessment and discovery process.
Streamlined Security Compliance Search
Quickly discover products in AWS Marketplace that meet your security and certification standards by searching for and accessing Vendor Insights profiles.
Verified Vendor Documentation
Access and download current and validated information, with evidence gathered from the vendors’ security tools and audit reports.
Continuous Security Monitoring
Monitor your software’s security posture post-procurement and receive notifications for security and compliance events.
Software vendors
Streamlined Customer Due Diligence
AWS Marketplace software vendors can now reduce the operational burden of responding to buyer requests for risk assessment information by centralizing security and compliance artifacts and giving your customers a self-service access experience.
Simplified Profile Creation
Build your product’s profile by uploading your audit and compliance reports and completing a software risk assessment with Audit Manager.
Centralized Compliance Documentation
Store your compliance reports, including SOC 2 Type 2, ISO 27001, PCI DSS, FedRAMP, HIPAA, and GDPR, in AWS Artifact third-party reports.
Controlled Information Sharing
View and approve your buyer requests for viewing security controls and compliance artifacts stored in Vendor Insights.
Discover products with Vendor Insights profiles



How it works
Page topics
Make AWS Marketplace purchases on Partner websites using Buy with AWS
