diff --git a/CHANGELOG.md b/CHANGELOG.md
index 8eee4435..5c95ced6 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -9,6 +9,9 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+### Changed
+- Update deployment to be PSS compliant and PSP toggle.
+
 ## [0.2.1] - 2023-09-21
 
 ### Added
diff --git a/helm/teleport-operator/templates/deployment.yaml b/helm/teleport-operator/templates/deployment.yaml
index 88ddd303..afbd6cff 100644
--- a/helm/teleport-operator/templates/deployment.yaml
+++ b/helm/teleport-operator/templates/deployment.yaml
@@ -34,6 +34,11 @@ spec:
         args:
         - "--namespace={{ include "resource.default.namespace"  . }}"
         securityContext:
+          allowPrivilegeEscalation: false
+          runAsNonRoot: true
+          capabilities:
+            drop:
+              - ALL
           {{- with .Values.securityContext }}
             {{- . | toYaml | nindent 10 }}
           {{- end }}
diff --git a/helm/teleport-operator/templates/psp.yaml b/helm/teleport-operator/templates/psp.yaml
index 42641c04..17994186 100644
--- a/helm/teleport-operator/templates/psp.yaml
+++ b/helm/teleport-operator/templates/psp.yaml
@@ -1,3 +1,4 @@
+{{- if not .Values.global.podSecurityStandards.enforced }}
 apiVersion: policy/v1beta1
 kind: PodSecurityPolicy
 metadata:
@@ -31,3 +32,4 @@ spec:
   volumes:
     - 'projected'
     - 'secret'
+{{- end }}
diff --git a/helm/teleport-operator/values.schema.json b/helm/teleport-operator/values.schema.json
index 342c57aa..33a2980d 100644
--- a/helm/teleport-operator/values.schema.json
+++ b/helm/teleport-operator/values.schema.json
@@ -2,6 +2,19 @@
     "$schema": "http://json-schema.org/schema#",
     "type": "object",
     "properties": {
+        "global": {
+            "type": "object",
+            "properties": {
+                "podSecurityStandards": {
+                    "type": "object",
+                    "properties": {
+                        "enforced": {
+                            "type": "boolean"
+                        }
+                    }
+                }
+            }
+        },
         "image": {
             "type": "object",
             "properties": {
diff --git a/helm/teleport-operator/values.yaml b/helm/teleport-operator/values.yaml
index 75194670..075556f0 100644
--- a/helm/teleport-operator/values.yaml
+++ b/helm/teleport-operator/values.yaml
@@ -1,3 +1,7 @@
+global:
+  podSecurityStandards:
+    enforced: false
+
 image:
   name: "giantswarm/teleport-operator"
 registry: