This document discusses securing healthcare data on AWS to ensure HIPAA compliance. It notes that more patient data is now stored digitally and accessed remotely. This requires protecting the confidentiality, integrity and availability of personal health information as required by HIPAA. The HIPAA Security Rule stipulates technical, physical and administrative safeguards. AWS services like vulnerability assessment, intrusion detection, firewalls and log management can help health organizations comply with these safeguards. Leveraging DevOps practices and security tools like AWS ConfigRules and CloudTrail also assists with meeting HIPAA requirements.