Shandoola LogoShandoola
    Back to Case Studies
    AWSTerraformMulti-tenantHealthcare

    Multi-Tenant, Multi-Region Healthcare Platform on AWS

    A secure, scalable healthcare platform for analyzing blood test data with global compliance and multi-region deployment.

    Multi-Tenant, Multi-Region Healthcare Platform on AWS

    Client Overview

    A health-tech company developed a digital healthcare platform designed to analyze blood test data collected via connected medical devices. The platform offered immediate diagnostic feedback using algorithm-based evaluations, eliminating the need for physician interpretation for certain conditions. With growing global adoption - particularly in the EU, United States, and parts of Africa - the platform required scalable, secure, and regulation-compliant infrastructure.

    Challenge

    The initial architecture relied heavily on AWS Cloud Functions and CloudFormation templates, with minimal ECS involvement. As the project grew in complexity, this setup became difficult to scale, maintain, and audit.

    Key challenges included:

    • Reorganizing infrastructure to support multi-tenant and multi-region deployments due to varying data protection laws (e.g., GDPR in the EU)
    • Replacing CloudFormation with Terraform for better infrastructure-as-code management and team collaboration
    • Supporting multiple environments (dev, test, UAT, prod) for safer deployments
    • Ensuring the mobile apps for Android and iOS were CI/CD-enabled and multi-environment ready
    • Enabling secure, isolated data handling across regions for patient privacy and compliance

    Solution

    Infrastructure Re-Architecture

    Our team proposed and implemented a new infrastructure design:

    Switched from CloudFormation to Terraform for better modularization and environment-specific configurations
    Adopted Amazon ECS as the core compute platform, reducing reliance on Lambda while still leveraging a few Cloud Functions for lightweight auth tasks
    Created modular Terraform codebases to handle provisioning across multiple environments and regions

    Multi-Tenant & Multi-Region Setup

    Designed the system to isolate each tenant (per country) with dedicated Cognito User Pools, DynamoDB tables, and Aurora databases
    Extended the architecture to multi-region when onboarding clients from outside the EU (e.g., African and US clients), adhering to regional data residency regulations

    CI/CD and DevOps

    All application code was hosted on GitHub with proper branch protection and code review workflows
    Set up GitHub Actions pipelines for deploying backend services to ECS and frontend to AWS Amplify
    Established mobile app deployment pipelines for both Android (Google Play Store) and iOS (App Store via Codemagic)

    Results

    Infrastructure was streamlined using Terraform with clean separation per environment and region
    Enabled secure multi-tenant isolation, complying with GDPR and other global regulations
    Reduced deployment times and human errors with GitHub Actions and Codemagic CI/CD
    Established a clear path for future expansion into new regions as needed

    Resulting Infrastructure

    The infrastructure was redesigned to be modular, secure, and compliant with healthcare regulations:

    Healthcare Platform Infrastructure Diagram

    Technical Implementation

    The platform was built using a modern tech stack designed for healthcare compliance and scalability:

    Backend Services

    • API Gateway: Managed API endpoints with custom authorizers
    • ECS Fargate: Containerized microservices for core business logic
    • Lambda: Serverless functions for lightweight operations
    • AppSync: Real-time data synchronization

    Data Layer

    • Aurora PostgreSQL: Primary relational database with read replicas
    • DynamoDB: High-performance NoSQL for time-series and high-velocity data
    • ElastiCache (Redis): Caching layer for improved performance
    • OpenSearch: Full-text search and analytics

    Security & Compliance

    • Cognito: Multi-tenant authentication and authorization
    • KMS: Encryption at rest and in transit
    • WAF & Shield: DDoS protection and web application firewall
    • GuardDuty & Config: Continuous security monitoring

    Technology Stack

    Technology Stack

    Cloud Platform & Compute

    • • Amazon ECS Fargate
    • • AWS Lambda
    • • AWS API Gateway
    • • AWS AppSync
    • • AWS CloudWatch
    • • AWS X-Ray

    Data & Storage

    • • Amazon Aurora PostgreSQL
    • • Amazon DynamoDB
    • • ElastiCache (Redis)
    • • Amazon OpenSearch
    • • AWS S3
    • • AWS Backup

    Security & Compliance

    • • AWS Cognito
    • • AWS KMS
    • • AWS Secrets Manager
    • • AWS WAF & Shield
    • • AWS GuardDuty
    • • AWS Config

    DevOps & Infrastructure

    • • Terraform
    • • GitHub Actions
    • • Codemagic
    • • AWS Systems Manager
    • • AWS CloudFormation
    • • Docker

    Infrastructure Delivery

    The infrastructure was designed for scalability, security, and global compliance with healthcare regulations:

    Multi-Region Deployment

    Enabled global data residency compliance across EU, US, and African regions with isolated tenant infrastructure

    Healthcare Compliance

    Achieved GDPR compliance and healthcare data protection standards with end-to-end encryption

    Scalable Architecture

    Containerized microservices with auto-scaling capabilities handling millions of medical device data points

    CI/CD Excellence

    Automated deployment pipelines for backend, frontend, and mobile apps with zero-downtime deployments

    Need Healthcare Cloud Solutions?

    Let's discuss how we can help build secure, compliant healthcare infrastructure for your organization.

    Schedule a Consultation

    Technologies Used

    AWS ECSTerraformGitHub ActionsAurora PostgreSQLAWS Cognito

    Industry

    Healthcare Technology

    Ready to Build Secure Healthcare Solutions?

    Contact us today to discuss your healthcare technology needs and discover how we can help you build secure, compliant, and scalable solutions that meet global healthcare regulations.

    Schedule a Free Consultation