diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index 0cf92f28deeb6835938f671520867eb6afdf4a56..e8103cd78b515877e3a23dc59d0589ef1999bb3d 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -1,7 +1,9 @@
 variables:
   AWS_BUILD_SUBDIR: provider/partition-aws/build-aws
   AWS_TEST_SUBDIR: testing/partition-test-aws
+  AWS_CHART_SUBDIR: devops/aws/chart
   AWS_SERVICE: partition
+  AWS_SERVICE_GATEWAY: osdu-gateway
   AWS_ENVIRONMENT: dev
   AWS_DEPLOY_TARGET: EKS
   AWS_EKS_DEPLOYMENT_NAME: os-partition
diff --git a/devops/aws/chart/values.yaml b/devops/aws/chart/values.yaml
index 0fdde033be006b527e739319ecafeddb7c06af31..ced5a814dcae436ea9138f0957ca2cd0210fe142 100644
--- a/devops/aws/chart/values.yaml
+++ b/devops/aws/chart/values.yaml
@@ -1,6 +1,6 @@
 # Service Config
 image: __CONTAINER__
-imagePullPolicy: IfNotPresent
+imagePullPolicy: Always
 service:
   type: ClusterIP
   port: 8080
@@ -61,7 +61,9 @@ environmentVariables:
     value: "true"
   - name: MONGODB_ENABLE_TLS
     value: "false"
-podAnnotations: {}
+podAnnotations: 
+  seccomp.security.alpha.kubernetes.io/pod: "runtime/default"
+
 # Resource Config
 replicaCount: 1
 resources:
@@ -91,13 +93,15 @@ cors:
     - Data-Partition-Id
     - Correlation-Id
     - Content-Type
-securityContext: {}
-# capabilities:
-#   drop:
-#   - ALL
-# readOnlyRootFilesystem: true
-# runAsNonRoot: true
-# runAsUser: 1000
+securityContext: 
+  runAsUser: 10001
+  runAsNonRoot: true
+  readOnlyRootFilesystem: false
+  allowPrivilegeEscalation: false
+  capabilities:
+    drop:
+    - ALL
+
 allowedPrincipals:
   - cluster.local/ns/istio-system/sa/istio-ingressgateway-service-account
   - cluster.local/ns/{{ .Release.Namespace }}/sa/compliance-queue