Security is critical for organizations when they are planning to run, or are already running, their workload on the cloud. On the cloud, security also comes under the sharing responsibility model, where the cloud provider and cloud consumer have defined boundaries for their security responsibilities based on cloud services (IaaS, PaaS, or SaaS).
On a private cloud, one has to take complete responsibility for security, from physical components to the application itself.
In addition to security, organizations also have to meet compliance requirements if they are applicable.
Although there are different sets of security tools and services available on AWS, it's always the customers'/users' responsibility to use these tools and services ...