Amazon Web Services (AWS) and CrowdStrike this week expanded their alliance to include an incident response that is now available on the Amazon Web Services (AWS) marketplace.
Announced at the AWS re:Inforce 2025 conference, the Falcon for AWS Security Incident Response is a managed hosted service running on the AWS cloud that makes extensive use of artificial intelligence (AI) to identify and respond faster to cloud security incidents.
The Falcon for AWS Security Incident Response platform provides capabilities that complement an existing AWS Security Incident Response service.
Chris Grusz, managing director for technology alliances, said it’s not uncommon to find third-party offerings in the AWS Marketplace that may overlap with some of the capabilities the AWS provides or extend core capabilities at the application level, such as in the case of Wiz.
In general, the AWS marketplace is now open to any vendor, including those providing offerings that may run in other clouds or even an on-premises IT environment, he noted. It’s not clear how inclined organizations might be to buy those offerings through the AWS Marketplace, but AWS remains committed to creating a flywheel effect across a wide range of products and services, said Grusz.
In the case of CrowdStrike, that relationship is especially significant because it gives AWS a way to work with customers to secure endpoints—many of which, once compromised, wind up being used to infiltrate cloud security, noted Grusz.
It’s not clear how much software is being consumed via marketplaces, but the amount of revenue being generated is now measured in billions of dollars, he added. The challenge cybersecurity teams often encounter is that they might not even be aware their organization has made an enterprise agreement that, in theory, might provide access to additional tools that can be readily installed in the AWS cloud.
Additionally, organizations that operate globally can also take advantage of the AWS marketplace to gain access to those tools via a local AWS partner versus encountering any digital services taxes (DST) that might otherwise be imposed, added Grusz. That issue has become more complicated as organizations in Europe and, increasingly Asia-Pacific, look to build their own sovereign clouds to make sure their operations can’t be disrupted by changes in trade policies, he added.
Regardless of where and how that software is deployed, it all shows up on one integrated bill that makes it simpler to provision and renew, noted Grusz.
There is, of course, no shortage of options when it comes to online marketplaces, many of which gained traction during the COVID-19 pandemic when traditional methods for acquiring and installing software were not a viable option.
Going forward, it may only now be a matter of time before artificial intelligence (AI) agents are conducting transactions in online marketplaces on behalf of organizations, which should only serve to further increase the volume of software being sold.
The challenge, of course, will be finding a way for AI agents to negotiate pricing when the ones created by organizations are assigned missions that are diametrically opposed to the mission a vendor may have assigned to their AI agent. In the meantime, however, the level of transaction and deployment friction that many organizations previously experienced continues to decline in the age of the online marketplace.
